[Midnightbsd-cvs] [MidnightBSD/src] 2df1fc: | kern_jail: missing \0 termination check on osre...
Lucas Holt
noreply at github.com
Tue Nov 17 23:24:40 EST 2020
Branch: refs/heads/master
Home: https://github.com/MidnightBSD/src
Commit: 2df1fc53367c128afc282ba1ebdbfac6316eff5b
https://github.com/MidnightBSD/src/commit/2df1fc53367c128afc282ba1ebdbfac6316eff5b
Author: Lucas Holt <luke at foolishgames.com>
Date: 2020-11-17 (Tue, 17 Nov 2020)
Changed paths:
M sys/kern/kern_jail.c
Log Message:
-----------
| kern_jail: missing \0 termination check on osrelease parameter
|
| If a user spplies a non-\0 terminated osrelease parameter reading it back
| may disclose kernel memory.
| This is a problem in case of nested jails (children.max > 0, which is not
| the default). Otherwise root outside the jail has access to kernel memory
| by other means and root inside a jail cannot create a child jail.
|
| Add the proper \0 check at the end of a supplied osrelease parameter and
| make sure any copies of the field will be \0-terminated.
Commit: ad9e25051365567731ace4f30b5c8937e187ca0b
https://github.com/MidnightBSD/src/commit/ad9e25051365567731ace4f30b5c8937e187ca0b
Author: Lucas Holt <luke at foolishgames.com>
Date: 2020-11-17 (Tue, 17 Nov 2020)
Changed paths:
M usr.bin/whereis/pathnames.h
Log Message:
-----------
Merge branch 'master' of ssh://github.com/midnightbsd/src into master
Compare: https://github.com/MidnightBSD/src/compare/cdda9b21ca27...ad9e25051365
More information about the Midnightbsd-cvs
mailing list