d/freebsd-skq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
19fe57fdb4
freebsd-skq/sys
History
Bjoern A. Zeeb 1b786d0191 kern_jail: missing \0 termination check on osrelease parameter 
If a user spplies a non-\0 terminated osrelease parameter reading it back
may disclose kernel memory.
This is a problem in case of nested jails (children.max > 0, which is not
the default).  Otherwise root outside the jail has access to kernel memory
by other means and root inside a jail cannot create a child jail.

Add the proper \0 check at the end of a supplied osrelease parameter and
make sure any copies of the field will be \0-terminated.

Submitted by:	Hans Christian Woithe (chwoithe yahoo.com)
MFC after:	3 days
2020-03-14 14:04:55 +00:00
..
amd64 Untangle TPR shadowing and APIC virtualization. 2020-03-10 16:53:49 +00:00
arm arm: zynq: An SPI driver for Zynq platforms 2020-02-28 10:57:23 +00:00
arm64 Add the missing brackets to the logical expression. 2020-03-09 13:36:45 +00:00
bsm vfs: add realpathat syscall 2020-02-20 16:58:19 +00:00
cam Add comment about how the deferred callback for AC_FOUND_DEVICE we 2020-03-14 02:36:45 +00:00
cddl TODO DONE: Use sx_xholder in SPL rwlock.h 2020-03-14 00:16:15 +00:00
compat Add support for the device statistics IOCTL, needed by the coming 2020-03-10 15:56:49 +00:00
conf Enable ixl device on PowerPC64 2020-03-12 12:47:10 +00:00
contrib Retire macros: 2020-03-02 23:25:02 +00:00
crypto Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
ddb Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
dev muge: correct RX checksum offload 2020-03-14 01:52:38 +00:00
dts arm: zynq: An SPI driver for Zynq platforms 2020-02-28 10:57:23 +00:00
fs fusefs: avoid cache corruption with buggy fuse servers 2020-03-11 04:29:45 +00:00
gdb Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
geom Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
gnu dts: Update our copy for arm, arm64 and riscv dts to Linux 5.5 2020-02-28 15:42:51 +00:00
i386 Finish removal of bktr 2020-03-01 20:37:42 +00:00
isa sc(4) md bits: stop setting sc->kbd entirely 2019-12-30 02:07:55 +00:00
kern kern_jail: missing \0 termination check on osrelease parameter 2020-03-14 14:04:55 +00:00
kgssapi
libkern Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
mips Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
modules Enable ixl device on PowerPC64 2020-03-12 12:47:10 +00:00
net make lacp's use_numa hashing aware of send tags 2020-03-09 13:44:51 +00:00
net80211 Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (7 of many) 2020-02-21 16:32:17 +00:00
netgraph Fix spelling of "dropped". 2020-03-04 22:32:40 +00:00
netinet Use KMOD_TCPSTAT_INC instead of TCPSTAT_INC for RACK and BBR, since 2020-03-12 15:37:41 +00:00
netinet6 ip6: retire in6_selectroute_fib() as promised 8 years ago 2020-03-03 13:48:12 +00:00
netipsec Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
netpfil Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
netsmb Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
nfs Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
nfsclient
nfsserver
nlm Remove stale FreeBSD_version checks. 2020-03-01 23:01:37 +00:00
ofed Fix some whitespace issues in ipoib. 2020-03-06 09:59:07 +00:00
opencrypto Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
powerpc powerpc: Simplify _nodrop variants of FPU and vector register saves 2020-03-13 01:27:37 +00:00
riscv fuspi: silence build warning, plug resource leak 2020-03-09 04:09:36 +00:00
rpc Remove obsolete old-freebsd version compat shim. 2020-03-01 23:01:51 +00:00
security In r358471, we interrupted the case block that would eventually lead 2020-03-03 01:46:35 +00:00
sys Return reschedule_signals() to being static again. 2020-03-10 20:04:38 +00:00
teken
tests Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
tools vfs: stop null checking routines in vop wrappers 2020-01-26 00:41:38 +00:00
ufs When mounting a UFS filesystem, return EINTEGRITY rather than EIO 2020-03-11 21:00:40 +00:00
vm Check for busy or wired in vm_page_relookup(). Some callers will only keep 2020-03-11 22:25:45 +00:00
x86 Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (17 of many) 2020-02-26 14:26:36 +00:00
xdr typo: s/impelmentation/implementation/. 2020-02-07 15:14:29 +00:00
xen Mark more nodes as CTLFLAG_MPSAFE or CTLFLAG_NEEDGIANT (16 of many) 2020-02-25 19:04:39 +00:00
Makefile Remove sparc64 kernel support 2020-02-03 17:35:11 +00:00