Date: Wed, 9 Aug 2017 17:48:38 +0000 (UTC) From: Gleb Smirnoff <glebius@FreeBSD.org> To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: svn commit: r322321 - head/sys/kern Message-ID: <201708091748.v79HmcP7019966@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: glebius Date: Wed Aug 9 17:48:38 2017 New Revision: 322321 URL: https://svnweb.freebsd.org/changeset/base/322321 Log: Plug uninitialized stack variable leak in sendfile(2). Reported by: Ilja Van Sprundel <ivansprundel ioactive.com> Submitted by: Domagoj Stolfa <domagoj.stolfa gmail.com> MFC after: 1 week Security: uninitialized stack variable leak Modified: head/sys/kern/kern_sendfile.c Modified: head/sys/kern/kern_sendfile.c ============================================================================== --- head/sys/kern/kern_sendfile.c Wed Aug 9 17:32:39 2017 (r322320) +++ head/sys/kern/kern_sendfile.c Wed Aug 9 17:48:38 2017 (r322321) @@ -945,6 +945,7 @@ sendfile(struct thread *td, struct sendfile_args *uap, if (uap->offset < 0) return (EINVAL); + sbytes = 0; hdr_uio = trl_uio = NULL; if (uap->hdtr != NULL) {
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201708091748.v79HmcP7019966>