Page MenuHomeFreeBSD

Still a memory corruption bug in vdev_read in loader ZFS support
ClosedPublic

Authored by pkelsey on Feb 17 2019, 4:16 AM.
Tags
None
Referenced Files
Unknown Object (File)
Wed, Nov 20, 2:43 PM
Unknown Object (File)
Oct 28 2024, 10:05 PM
Unknown Object (File)
Sep 16 2024, 7:52 PM
Unknown Object (File)
Sep 12 2024, 3:54 PM
Unknown Object (File)
Aug 24 2024, 7:00 AM
Unknown Object (File)
Aug 22 2024, 10:37 AM
Unknown Object (File)
Aug 13 2024, 7:35 PM
Unknown Object (File)
Aug 11 2024, 9:28 PM
Subscribers

Details

Summary

D19140 didn't quite expunge the memory corruption bug in vdev_read() in zfs.c. In that fix, the single-sector case with non-zero tail would overrun the output buffer by the tail size.

Diff Detail

Repository
rS FreeBSD src repository - subversion
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

This revision is now accepted and ready to land.Feb 17 2019, 7:02 AM
pkelsey retitled this revision from Still a memory corruption bug in vdev_readin loader ZFS support to Still a memory corruption bug in vdev_read in loader ZFS support.Feb 17 2019, 4:27 PM
This revision was automatically updated to reflect the committed changes.