Gitiles
Code Review Sign In
git01.mediatek.com / haproxy / 0c86fce8028d409de4181e82eec967cfb1e6268e
commit0c86fce8028d409de4181e82eec967cfb1e6268e[log] [tgz]
authorYoufu Zhang <zhangyoufu@gmail.com>Fri Dec 09 19:15:48 2022 +0800
committerChristopher Faulet <cfaulet@haproxy.com>Fri Jan 20 11:08:26 2023 +0100
treeda91234a0fff5e47377f487d2fff37165d3d406e
parent82e495c790192c1cb09c6b9efaa12f14ab1a6e2f [diff]
BUG/MAJOR: fcgi: Fix uninitialized reserved bytes

The output buffer is not zero-initialized. If we don't clear reserved
bytes, fcgi requests sent to backend will leak sensitive data.

This patch must be backported as far as 2.2.

(cherry picked from commit 2e6bf0a2722866ae0128a4392fa2375bd1f03ff8)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
(cherry picked from commit db03179fee55c60a92ce6b86a0f04dbb9ba0328b)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
(cherry picked from commit f988992d16f45ef03d5bbb024a1042ed8123e4c5)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
(cherry picked from commit 0dc4cdc276d4a0e3347b7c3c4aedca2a2e0ab428)
Signed-off-by: Christopher Faulet <cfaulet@haproxy.com>
1 file changed
tree: da91234a0fff5e47377f487d2fff37165d3d406e
  1. .github/
  2. addons/
  3. admin/
  4. dev/
  5. doc/
  6. examples/
  7. include/
  8. reg-tests/
  9. scripts/
  10. src/
  11. tests/
  12. .cirrus.yml
  13. .gitattributes
  14. .gitignore
  15. .travis.yml
  16. BRANCHES
  17. CHANGELOG
  18. CONTRIBUTING
  19. INSTALL
  20. LICENSE
  21. MAINTAINERS
  22. Makefile
  23. README
  24. ROADMAP
  25. SUBVERS
  26. VERDATE
  27. VERSION