]> git.michaelhowe.org Git - packages/o/openafs.git/commit
projects / packages / o / openafs.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2d22756) | patch
OPENAFS-SA-2018-002 ptserver: prevent PR_ListEntries information leak
authorMark Vitale <mvitale@sinenomine.net>
Tue, 26 Jun 2018 07:37:37 +0000 (03:37 -0400)
committerBenjamin Kaduk <kaduk@mit.edu>
Sun, 9 Sep 2018 23:34:57 +0000 (18:34 -0500)
commite19ad4cdde463d2bbb4b815525da992bd5fc2648
tree18fd02385b5dd5bafd46cf316f3a9516e6f2f6a5tree | snapshot
parent2d22756de7af2c72b8aca6969825f8e921f01d6ccommit | diff
OPENAFS-SA-2018-002 ptserver: prevent PR_ListEntries information leak

PR_ListEntries (pts listentries) does not properly initialize its output
buffers.  This leaks ptserver memory over the wire:

struct prlistentries
- up to 62 bytes for each entry name (PR_MAXNAMELEN 64 - 'a\0')

Initialize the buffer, and remove the now redundant memset for the
reserved fields.

(cherry picked from commit 9d1aeb5d761581a35bef2042e9116b96e9ae3bf5)

Change-Id: I679c205502941891cbb34f10e648a6f9d83c3c60
src/ptserver/ptprocs.c diff | blob | history