OpenAFS Master Repository branch, openafs-stable-1_6_x, updated. openafs-stable-1_6_22_2-73-g0cdb370

Gerrit Code Review Tue, 11 Sep 2018 12:02:22 -0700

The following commit has been merged in the openafs-stable-1_6_x branch:
commit 7ee25861685a4f56b304627ca2a0dbfed179646d
Author: Mark Vitale <[email protected]>
Date:   Tue Jun 26 03:37:37 2018 -0400


    OPENAFS-SA-2018-002 ptserver: prevent PR_ListEntries information leak
    
    PR_ListEntries (pts listentries) does not properly initialize its output
    buffers.  This leaks ptserver memory over the wire:
    
    struct prlistentries
    - up to 62 bytes for each entry name (PR_MAXNAMELEN 64 - 'a\0')
    
    Initialize the buffer, and remove the now redundant memset for the
    reserved fields.
    
    (cherry picked from commit 9d1aeb5d761581a35bef2042e9116b96e9ae3bf5)
    
    (cherry picked from commit e19ad4cdde463d2bbb4b815525da992bd5fc2648)
    
    Change-Id: I441f54edb218eb8ce018a07394bb6e9d706d353a

 src/ptserver/ptprocs.c |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

-- 
OpenAFS Master Repository
_______________________________________________
OpenAFS-cvs mailing list
[email protected]
https://lists.openafs.org/mailman/listinfo/openafs-cvs

OpenAFS Master Repository branch, openafs-stable-1_6_x, updated. openafs-stable-1_6_22_2-73-g0cdb370

Reply via email to