Please sign in to comment.
xfrm_user: fix info leak in copy_to_user_policy()
The memory reserved to dump the xfrm policy includes multiple padding bytes added by the compiler for alignment (padding bytes in struct xfrm_selector and struct xfrm_userpolicy_info). Add an explicit memset(0) before filling the buffer to avoid the heap info leak. Signed-off-by: Mathias Krause <firstname.lastname@example.org> Acked-by: Steffen Klassert <email@example.com> Signed-off-by: David S. Miller <firstname.lastname@example.org>
- Loading branch information...