Pre-zero the MAC context.

Security: CVE-2013-4548 Security: FreeBSD-SA-13:14.openssh Approved by: re (implicit)
author: des <des@FreeBSD.org> 2013-11-19 09:35:20 +0000
committer: des <des@FreeBSD.org> 2013-11-19 09:35:20 +0000
commit: 1dfe9ec22ad343727441d0d1e9a574a2f03804df (patch)
tree: ad21fabafe183ca984f368b5c5cc580890f3d751 /crypto/openssh
parent: d0736de43b0cd139e9d472088560404f89888bc6 (diff)
download: FreeBSD-src-1dfe9ec22ad343727441d0d1e9a574a2f03804df.zip
FreeBSD-src-1dfe9ec22ad343727441d0d1e9a574a2f03804df.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/crypto/openssh/monitor_wrap.c b/crypto/openssh/monitor_wrap.c
index 88ff683..c004d37 100644
--- a/crypto/openssh/monitor_wrap.c
+++ b/crypto/openssh/monitor_wrap.c
@@ -482,7 +482,7 @@ mm_newkeys_from_blob(u_char *blob, int blen)
 	buffer_init(&b);
 	buffer_append(&b, blob, blen);
 
-	newkey = xmalloc(sizeof(*newkey));
+	newkey = xcalloc(1, sizeof(*newkey));
 	enc = &newkey->enc;
 	mac = &newkey->mac;
 	comp = &newkey->comp;
author	des <des@FreeBSD.org>	2013-11-19 09:35:20 +0000
committer	des <des@FreeBSD.org>	2013-11-19 09:35:20 +0000
commit	1dfe9ec22ad343727441d0d1e9a574a2f03804df (patch)
tree	ad21fabafe183ca984f368b5c5cc580890f3d751 /crypto/openssh
parent	d0736de43b0cd139e9d472088560404f89888bc6 (diff)
download	FreeBSD-src-1dfe9ec22ad343727441d0d1e9a574a2f03804df.zip FreeBSD-src-1dfe9ec22ad343727441d0d1e9a574a2f03804df.tar.gz