releases/2.6.32.27/decnet-don-t-leak-uninitialized-stack-byte.patch

   1 From 3c6f27bf33052ea6ba9d82369fb460726fb779c0 Mon Sep 17 00:00:00 2001
   2 From: Dan Rosenberg <drosenberg@vsecurity.com>
   3 Date: Tue, 23 Nov 2010 11:02:13 +0000
   4 Subject: DECnet: don't leak uninitialized stack byte
   5
   6 From: Dan Rosenberg <drosenberg@vsecurity.com>
   7
   8 commit 3c6f27bf33052ea6ba9d82369fb460726fb779c0 upstream.
   9
  10 A single uninitialized padding byte is leaked to userspace.
  11
  12 Signed-off-by: Dan Rosenberg <drosenberg@vsecurity.com>
  13 Signed-off-by: David S. Miller <davem@davemloft.net>
  14 Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
  15
  16 ---
  17  net/decnet/af_decnet.c |    2 ++
  18  1 file changed, 2 insertions(+)
  19
  20 --- a/net/decnet/af_decnet.c
  21 +++ b/net/decnet/af_decnet.c
  22 @@ -1555,6 +1555,8 @@ static int __dn_getsockopt(struct socket
  23                         if (r_len > sizeof(struct linkinfo_dn))
  24                                 r_len = sizeof(struct linkinfo_dn);
  25
  26 +                       memset(&link, 0, sizeof(link));
  27 +
  28                         switch(sock->state) {
  29                                 case SS_CONNECTING:
  30                                         link.idn_linkstate = LL_CONNECTING;