22 Apr
2020
22 Apr
'20
1:45 p.m.
From: Colin Ian King <colin.king@canonical.com>
Field header.tlv is uninitialized and being copied back to userspace ^^^^^^^^^^
On Wed, Apr 22, 2020 at 12:24:17PM +0100, Colin King wrote: header.tlv is a zero element array so it doens't have any stack data.
and hence leaking data from the stack to userspace. Fix this by ensuring the header structure is zero'd.
regards, dan carpenter