[PATCH 4.14 22/30] can: dev: prevent potential information leak in can_fill_info()

2 Feb 2021

From: Dan Carpenter dan.carpenter@oracle.com
[ Upstream commit b552766c872f5b0d90323b24e4c9e8fa67486dd5 ]
The "bec" struct isn't necessarily always initialized. For example, the
mcp251xfd_get_berr_counter() function doesn't initialize anything if the
interface is down.
Fixes: 52c793f24054 ("can: netlink support for bus-error reporting and counters")
Link: https://lore.kernel.org/r/YAkaRdRJncsJO8Ve@mwanda
Signed-off-by: Dan Carpenter dan.carpenter@oracle.com
Signed-off-by: Marc Kleine-Budde mkl@pengutronix.de
Signed-off-by: Sasha Levin sashal@kernel.org
---
 drivers/net/can/dev.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/drivers/net/can/dev.c b/drivers/net/can/dev.c
index 1025cfd463ece..0ebee99a3e857 100644
--- a/drivers/net/can/dev.c
+++ b/drivers/net/can/dev.c
@@ -1102,7 +1102,7 @@ static int can_fill_info(struct sk_buff *skb, const struct net_device *dev)
 {
    struct can_priv *priv = netdev_priv(dev);
    struct can_ctrlmode cm = {.flags = priv->ctrlmode};
-	struct can_berr_counter bec;
+	struct can_berr_counter bec = { };
    enum can_state state = priv->state;
if (priv->do_get_state)
-- 
2.27.0




    

2024

2023

2022

2021

2020

2019

2018

2017

[PATCH 4.14 22/30] can: dev: prevent potential information leak in can_fill_info()