[Bug 199518] [patch] use uninitialized field td_sel of struct thread
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Sat Apr 18 12:54:39 UTC 2015
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=199518
Bug ID: 199518
Summary: [patch] use uninitialized field td_sel of struct
thread
Product: Base System
Version: 11.0-CURRENT
Hardware: Any
OS: Any
Status: New
Keywords: patch
Severity: Affects Only Me
Priority: ---
Component: kern
Assignee: freebsd-bugs at FreeBSD.org
Reporter: luke.tw at gmail.com
Keywords: patch
Created attachment 155694
--> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=155694&action=edit
patch for thread_init()
When thread_alloc() allocates struct thread from thread_zone, the field td_sel
is not initialized.
Later in seltdinit(), if td_sel is not NULL, then this field will not allocate
memory.
While not easy to run into the bug in normal configuration, it is easy to panic
when memguard deliberately overwrites the freed memory with 'M'.
--
You are receiving this mail because:
You are the assignee for the bug.
More information about the freebsd-bugs
mailing list