CVSROOT: /cvs Module name: src Changes by: bl...@cvs.openbsd.org 2021/12/15 13:17:19
Modified files: sys/netinet : Tag: OPENBSD_7_0 ip_mroute.c sys/netinet6 : Tag: OPENBSD_7_0 ip6_mroute.c Log message: structure pads can leak uninitialized memory to userland via copyout, therefore the mandatory idiom is completely clearing structs before building them for copyout -- that means ALMOST ALL STRUCTS, because we never know when some architecture will pad a struct.. In two more cases, the clearing wasn't performed. from Reno Robert ZDI ok millert bluhm from deraadt@ this is errata/7.0/008_mrt.patch.sig