CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2013/11/23 12:07:51
Modified files:
sys/ufs/ufs : ufs_vnops.c
Log message:
Verify that the directory entry being looked at is entirely present in
the read buffer before trying to process it, so that invalidated
or bogus offsets can't trigger access past the end of the read buffer.
Also, zero out the dirent buffer to avoid leaking stack garbage to userspace.
Problem pointed out by Pedro Martelletto (pedro (at) ambientworks.net)
ok deraadt@
