Date: Wed, 22 Oct 2014 17:00:30 -0700 From: Colin Percival <cperciva@freebsd.org> To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: Re: svn commit: r273487 - head/sys/kern Message-ID: <5448451E.1040104@freebsd.org> In-Reply-To: <201410222335.s9MNZW62045167@svn.freebsd.org> References: <201410222335.s9MNZW62045167@svn.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 10/22/14 16:35, Colin Percival wrote: > Author: cperciva > Date: Wed Oct 22 23:35:32 2014 > New Revision: 273487 > URL: https://svnweb.freebsd.org/changeset/base/273487 > > Log: > Avoid leaking data from the kernel environment: When we convert the > initial static environment to a dynamic one, zero the static environment > buffer, and zero individual values when kern_unsetenv and freeenv are > called. Forgot to add, this will not be MFCed, since it would break KBI to zero out the static environment when kernel modules could conceivably have pointers into it. Colin Percival
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5448451E.1040104>