Diffusion FreeBSD src repository f284bed200b0

geom_gate: ensure readprov is null-terminated
f284bed200b0
Actions

Description

geom_gate: ensure readprov is null-terminated

With crafted input to the G_GATE_CMD_CREATE ioctl, geom_gate can be made
to print kernel memory to the system console, potentially revealing
sensitive data from whatever was previously in that memory page.

But but but: this is a case of the sys admin misconfiguring, and you'd
need root privileges to do this.

Submitted By: Johannes Totz <jo@bruelltuete.com>
MFC after: 2 weeks
Reviewed By: asomers
Differential Revision: https://reviews.freebsd.org/D31727

Details

Provenance

asomers

Authored on Jan 3 2022, 1:00 AM

Reviewer

asomers

Differential Revision

D31727: geom_gate: ensure readprov is null-terminated

Parents

rG6226477a462f: Various fixes for ggatec and ggated

Branches

Unknown

Tags

Unknown

Event Timeline

asomers committed rGf284bed200b0: geom_gate: ensure readprov is null-terminated (authored by asomers).Jan 3 2022, 1:01 AM

asomers added an edge: D31727: geom_gate: ensure readprov is null-terminated.Jan 3 2022, 1:34 AM

asomers mentioned this in rG2af3758a3294: Various fixes for ggatec and ggated.Feb 17 2022, 4:08 AM

Changes (1)

Path

Size

sys/

geom/

gate/

g_gate.c

rGf284bed200b0

View Options