OpenAFS Master Repository branch, openafs-stable-1_6_x, updated. openafs-stable-1_6_22_2-73-g0cdb370
Gerrit Code Review
gerrit@openafs.org
Tue, 11 Sep 2018 15:00:57 -0400
The following commit has been merged in the openafs-stable-1_6_x branch:
commit 04fb009f15b75aca8e62675972ce23526a62ba80
Author: Mark Vitale <mvitale@sinenomine.net>
Date: Tue Jun 26 05:26:21 2018 -0400
OPENAFS-SA-2018-002 kaserver: prevent KAM_ListEntry information leak
KAM_ListEntry (kas list) does not initialize its output correctly. It
leaks kaserver memory contents over the wire:
struct kaindex
- up to 64 bytes for member name
- up to 64 bytes for member instance
Initialize the buffer.
[kaduk@mit.edu: move initialization to top of server routine]
(cherry picked from commit b604ee7add7be416bf20973422a041e913d20761)
(cherry picked from commit c912830e9c82d91bccf85018ef1e6a75edc410c4)
Change-Id: I51229a121cbc4e428169635e8fc46321fb52b813
src/kauth/kaprocs.c | 1 +
1 files changed, 1 insertions(+), 0 deletions(-)
--
OpenAFS Master Repository