freebsd-nq/sys/compat
Eric van Gyzen 4cf66812ea nanosleep: plug a kernel memory disclosure
nanosleep() updates rmtp on EINVAL.  In that case, kern_nanosleep()
has not updated rmt, so sys_nanosleep() updates the user-space rmtp
by copying garbage from its stack frame.  This is not only a kernel
memory disclosure, it's also not POSIX-compliant.  Fix it to update
rmtp only on EINTR.

Reviewed by:	jilles (via D10020), dchagin
MFC after:	3 days
Security:	possibly
Sponsored by:	Dell EMC
Differential Revision:	https://reviews.freebsd.org/D10044
2017-03-18 20:16:23 +00:00
..
cloudabi Rework r313352. 2017-02-13 09:04:38 +00:00
cloudabi32 Regenerate all the system call tables to drop "created from" lines. 2017-02-10 19:45:02 +00:00
cloudabi64 Regenerate all the system call tables to drop "created from" lines. 2017-02-10 19:45:02 +00:00
freebsd32 nanosleep: plug a kernel memory disclosure 2017-03-18 20:16:23 +00:00
ia32 With the removal of IA64, the only arch which uses ia32 compat is amd64. 2017-03-01 11:39:29 +00:00
linprocfs Add /proc/self/mounts to linprocfs; some linux binaries need it. 2017-02-20 17:33:25 +00:00
linsysfs Glibc get_nprocs() and get_nprocs_conf() uses the sysfs cpu infrastructure 2017-03-18 18:38:12 +00:00
linux nanosleep: plug a kernel memory disclosure 2017-03-18 20:16:23 +00:00
linuxkpi/common Implement get_pid_task(), pid_task() and some other PID helper 2017-03-17 15:40:24 +00:00
ndis ndis(4): Undo unneeded workarounds in ndis' rand(). 2016-05-22 14:13:20 +00:00
netbsd
x86bios x86bios: spelling fix in a comment. 2016-04-30 00:34:04 +00:00