OpenAFS Master Repository branch, master, updated. openafs-devel-1_5_76-4793-ge63c257

[Gerrit Code Review]

The following commit has been merged in the master branch:
commit 67646c7c901a1f346d78666f432b673c5b341380
Author: Benjamin Kaduk <kaduk@mit.edu>
Date:   Mon Mar 14 23:15:20 2016 -0500

    OPENAFS-SA-2016-002 AFSStoreVolumeStatus information leak
    
    The AFSStoreVolumeStatus structure is used as an input to the
    RXAFS_SetVolumeStatus RPC; it contains a Mask field that controls
    which of the other fields will actually be read by the server
    during the RPC processing.  Unfortunately, the client only
    wrote to the fields indicated by the mask, leaving the other
    fields uninitialized for transmission on the wire, leaking
    some contents of kernel memory.
    
    Plug the information leak by zeroing the entire structure before use.
    
    FIXES 132847
    
    Change-Id: Ib309e6b00b95bc4178740352899d7f940f2eb1ea

 src/WINNT/afsd/cm_ioctl.c |    1 +
 src/afs/afs_pioctl.c      |    1 +
 2 files changed, 2 insertions(+), 0 deletions(-)

-- 
OpenAFS Master Repository