svn commit: r322764 - stable/11/sys/kern
Gleb Smirnoff
glebius at FreeBSD.org
Mon Aug 21 17:40:52 UTC 2017
Author: glebius
Date: Mon Aug 21 17:40:51 2017
New Revision: 322764
URL: https://svnweb.freebsd.org/changeset/base/322764
Log:
Merge r322321:
Plug uninitialized stack variable leak in sendfile(2).
Reported by: Ilja Van Sprundel <ivansprundel ioactive.com>
Submitted by: Domagoj Stolfa <domagoj.stolfa gmail.com>
Security: uninitialized stack variable leak
Modified:
stable/11/sys/kern/kern_sendfile.c
Directory Properties:
stable/11/ (props changed)
Modified: stable/11/sys/kern/kern_sendfile.c
==============================================================================
--- stable/11/sys/kern/kern_sendfile.c Mon Aug 21 17:39:12 2017 (r322763)
+++ stable/11/sys/kern/kern_sendfile.c Mon Aug 21 17:40:51 2017 (r322764)
@@ -930,6 +930,7 @@ sendfile(struct thread *td, struct sendfile_args *uap,
if (uap->offset < 0)
return (EINVAL);
+ sbytes = 0;
hdr_uio = trl_uio = NULL;
if (uap->hdtr != NULL) {
More information about the svn-src-all
mailing list