OpenAFS Master Repository branch, openafs-stable-1_6_x, updated. openafs-stable-1_6_23-74-ge654f63

Gerrit Code Review gerrit@openafs.org
Fri, 14 Sep 2018 09:13:46 -0400 

The following commit has been merged in the openafs-stable-1_6_x branch:
commit ab8a6ab1230f5274630e0d0b9e35a778b6d9f79b
Author: Mark Vitale <mvitale@sinenomine.net>
Date:   Tue Jun 26 06:01:16 2018 -0400

    OPENAFS-SA-2018-002 ubik: prevent VOTE_Debug, VOTE_XDebug information leak
    
    VOTE_Debug and VOTE_XDebug (udebug) both leave a single field
    uninitialized if there is no current transaction.  This leaks the memory
    contents of the ubik server over the wire.
    
    struct ubik_debug
    - 4 bytes in member writeTrans
    
    In common code to both RPCs, ensure that writeTrans is always
    initialized.
    
    [kaduk@mit.edu: switch to memset]
    
    (cherry picked from commit 7a7c1f751cdb06c0d95339c999b2c035c2d2168b)
    
    (cherry picked from commit 0ee86cc3f986365df9de21ede5735cc1f40db7e5)
    
    (cherry picked from commit 9db5fcf460988b605ba8ba7078b9c8d702aba370)
    
    Change-Id: I1c9fc9a6a8bb8aed04f814e4da041af3f49a7401

 src/ubik/vote.c |    1 +
 1 files changed, 1 insertions(+), 0 deletions(-)

-- 
OpenAFS Master Repository