svn commit: r322764 - stable/11/sys/kern

Gleb Smirnoff glebius at FreeBSD.org
Mon Aug 21 17:40:52 UTC 2017


Author: glebius
Date: Mon Aug 21 17:40:51 2017
New Revision: 322764
URL: https://svnweb.freebsd.org/changeset/base/322764

Log:
  Merge r322321:
  
    Plug uninitialized stack variable leak in sendfile(2).
  
  Reported by:	Ilja Van Sprundel <ivansprundel ioactive.com>
  Submitted by:	Domagoj Stolfa <domagoj.stolfa gmail.com>
  Security:	uninitialized stack variable leak

Modified:
  stable/11/sys/kern/kern_sendfile.c
Directory Properties:
  stable/11/   (props changed)

Modified: stable/11/sys/kern/kern_sendfile.c
==============================================================================
--- stable/11/sys/kern/kern_sendfile.c	Mon Aug 21 17:39:12 2017	(r322763)
+++ stable/11/sys/kern/kern_sendfile.c	Mon Aug 21 17:40:51 2017	(r322764)
@@ -930,6 +930,7 @@ sendfile(struct thread *td, struct sendfile_args *uap,
 	if (uap->offset < 0)
 		return (EINVAL);
 
+	sbytes = 0;
 	hdr_uio = trl_uio = NULL;
 
 	if (uap->hdtr != NULL) {


More information about the svn-src-all mailing list