Diffusion FreeBSD src repository db87c98168b1

ctl: avoid heap info leak in ctl_request_sense
db87c98168b1
Actions

Description

ctl: avoid heap info leak in ctl_request_sense

Previously 3 bytes of data from the heap could be leaked to ctl
consumers.

Reported by: Synacktiv
Reviewed by: asomers, mav
Sponsored by: The Alpha-Omega Project
Sponsored by: The FreeBSD Foundation
Differential Revision: https://reviews.freebsd.org/D46091

Details

Provenance

emaste

Authored on Aug 20 2024, 6:12 PM

Reviewer

asomers

Differential Revision

Restricted Differential Revision

Parents

rG1af7d5f38953: libfetch: don't include fragments in HTTP requests

Branches

Unknown

Tags

Unknown

Event Timeline

emaste committed rGdb87c98168b1: ctl: avoid heap info leak in ctl_request_sense (authored by emaste).Aug 21 2024, 1:32 PM

emaste added an edge: Restricted Differential Revision.

emaste mentioned this in rG131b7dcb2fbf: ctl: avoid heap info leak in ctl_request_sense.Aug 26 2024, 1:27 PM

emaste mentioned this in rG51768dc31df6: ctl: avoid heap info leak in ctl_request_sense.

emaste mentioned this in rG27777283da79: ctl: avoid heap info leak in ctl_request_sense.Aug 26 2024, 6:30 PM

emaste mentioned this in rG639494a3c1e6: ctl: avoid heap info leak in ctl_request_sense.Wed, Sep 4, 8:30 PM

emaste mentioned this in rG4c60b8289d0e: ctl: avoid heap info leak in ctl_request_sense.Wed, Sep 4, 8:55 PM

emaste mentioned this in rGd30ffde0806e: ctl: avoid heap info leak in ctl_request_sense.Wed, Sep 4, 9:08 PM

Changes (1)

Path

Size

sys/

cam/

ctl/

ctl.c

rGdb87c98168b1

View Options