af_key: Fix heap information leak

Since x->encap of pfkey_msg2xfrm_state() is not initialized to 0, kernel heap data can be leaked. Fix with kzalloc() to prevent this. Signed-off-by: N Hyunwoo Kim <v4bel@theori.io> Acked-by: N Herbert Xu <herbert@gondor.apana.org.au> Reviewed-by: N Sabrina Dubroca <sd@queasysnail.net> Signed-off-by: N David S. Miller <davem@davemloft.net>

af_key: Fix heap information leak
Since x->encap of pfkey_msg2xfrm_state() is not initialized to 0, kernel heap data can be leaked. Fix with kzalloc() to prevent this. Signed-off-by: N Hyunwoo Kim <v4bel@theori.io> Acked-by: N Herbert Xu <herbert@gondor.apana.org.au> Reviewed-by: N Sabrina Dubroca <sd@queasysnail.net> Signed-off-by: N David S. Miller <davem@davemloft.net>
2f479651 · Hyunwoo Kim · David S. Miller · 20ab8432 · 2f479651
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

net/key/af_key.c net/key/af_key.c +1 -1

未找到文件。
--- a/net/key/af_key.c
+++ b/net/key/af_key.c
@@ -1261,7 +1261,7 @@ static struct xfrm_state * pfkey_msg2xfrm_state(struct net *net,
 		const struct sadb_x_nat_t_type* n_type;
 		struct xfrm_encap_tmpl *natt;
-		x->encap = kmalloc(sizeof(*x->encap), GFP_KERNEL);
+		x->encap = kzalloc(sizeof(*x->encap), GFP_KERNEL);
 		if (!x->encap) {
 			err = -ENOMEM;
 			goto out;