SVNews r327498

NOTE: This service is experimental and subject to change! Use at your own risk!

2018-01-02 18:31:32 - r327498 by emaste (Ed Maste)

Complete list of files affected by revision r327498:

(Note: At the moment, these links point to ViewVC on svn.freebsd.org. They are probably slow. Do not overuse.)

  History   Contents   Diff   MODIFY   /head/sys/dev/hptnr/hptnr_osm_bsd.c  
  History   Contents   Diff   MODIFY   /head/sys/dev/hptrr/hptrr_osm_bsd.c  

Commit message:

hpt{nr,rr}: plug info leak in hpt_ioctl

The hpt{nr,rr} ioctl handler allocates a buffer without M_ZERO and calls
hpt_do_ioctl(), which might not overwrite the entire buffer.

Also zero bytesReturned in case it is not written by hpt_do_ioctl().

The hpt27{nr,rr} device has permissions only for root so this is not urgent,
and the fix can be MFCd and considered for a future EN.

The same issue was reported in the hpt27xx driver by Ilja Van Sprundel.

Reviewed by: jhb, kib
MFC after: 3 days
Sponsored by: The FreeBSD Foundation

 


Powered by Python FreeBSD support by secnetix GmbH & Co. KG

Page generated in 1 ms, 2 files printed. Current time is 2018-01-18 19:37:24. All times are in UTC/GMT.