Date: Tue, 19 Nov 2013 09:35:20 +0000 (UTC) From: Dag-Erling Smørgrav <des@FreeBSD.org> To: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-stable@freebsd.org, svn-src-stable-10@freebsd.org Subject: svn commit: r258335 - stable/10/crypto/openssh Message-ID: <201311190935.rAJ9ZKgJ037825@svn.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: des Date: Tue Nov 19 09:35:20 2013 New Revision: 258335 URL: http://svnweb.freebsd.org/changeset/base/258335 Log: Pre-zero the MAC context. Security: CVE-2013-4548 Security: FreeBSD-SA-13:14.openssh Approved by: re (implicit) Modified: stable/10/crypto/openssh/monitor_wrap.c Modified: stable/10/crypto/openssh/monitor_wrap.c ============================================================================== --- stable/10/crypto/openssh/monitor_wrap.c Tue Nov 19 01:07:25 2013 (r258334) +++ stable/10/crypto/openssh/monitor_wrap.c Tue Nov 19 09:35:20 2013 (r258335) @@ -482,7 +482,7 @@ mm_newkeys_from_blob(u_char *blob, int b buffer_init(&b); buffer_append(&b, blob, blen); - newkey = xmalloc(sizeof(*newkey)); + newkey = xcalloc(1, sizeof(*newkey)); enc = &newkey->enc; mac = &newkey->mac; comp = &newkey->comp;
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?201311190935.rAJ9ZKgJ037825>