OpenAFS Master Repository branch, openafs-stable-1_6_x, updated. openafs-stable-1_6_22_2-73-g0cdb370

Gerrit Code Review
Tue, 11 Sep 2018 15:00:57 -0400

The following commit has been merged in the openafs-stable-1_6_x branch:
commit a41b75a13b9a96a929fa69db43fbc4ca071ee717
Author: Mark Vitale <>
Date:   Tue Jun 26 05:12:32 2018 -0400

    OPENAFS-SA-2018-002 butc: prevent TC_DumpStatus, TC_ScanStatus information leaks
    TC_ScanStatus (backup status) and TC_GetStatus (internal backup status
    watcher) do not initialize their output buffers.  They leak memory
    contents over the wire:
    struct tciStatusS
    - up to 64 bytes in member taskName (TC_MAXNAMELEN 64)
    - up to 64 bytes in member volumeName  "
    Initialize the buffers.
    [ move initialization to top of server routines]
    (cherry picked from commit be0142707ca54f3de99c4886530e7ac9f48dd61c)
    (cherry picked from commit 43b3efd4f8cd3227b2b24ff673adeb834f6a3f0b)
    Change-Id: I03ebbf76a9e22d15b774e04deb0f2750625c3646

 src/butc/tcstatus.c |    4 ++--
 1 files changed, 2 insertions(+), 2 deletions(-)

OpenAFS Master Repository