CVSROOT: /cvs
Module name: src
Changes by: bl...@cvs.openbsd.org 2021/12/15 13:17:19
Modified files:
sys/netinet : Tag: OPENBSD_7_0 ip_mroute.c
sys/netinet6 : Tag: OPENBSD_7_0 ip6_mroute.c
Log message:
structure pads can leak uninitialized memory to userland via copyout,
therefore the mandatory idiom is completely clearing structs before
building them for copyout -- that means ALMOST ALL STRUCTS, because
we never know when some architecture will pad a struct.. In two more
cases, the clearing wasn't performed.
from Reno Robert ZDI
ok millert bluhm
from deraadt@
this is errata/7.0/008_mrt.patch.sig
