Project

General

Profile

Actions

Bug #9612

closed

Run fsck with -z for ufs on upgrade to address FreeBSD-SA-19:10.ufs

Added by Jim Pingle over 2 years ago. Updated almost 2 years ago.

Status:
Resolved
Priority:
High
Category:
Operating System
Target version:
Start date:
07/03/2019
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
All
Affected Architecture:
All

Description

Full details at https://www.freebsd.org/security/advisories/FreeBSD-SA-19:10.ufs.asc but long story short, on UFS filesystems uninitialized directory padding may contain a few bytes of content from kernel memory readable by anyone who can access a directory.

To clean it up, at boot time before mounting root, this must be run:

fsck -t ufs -f -p -T ufs:-z

We already have code to run fsck then, but we need to trigger this special run just once for everyone unconditionally on upgrade to a release containing the fix.

Actions

Also available in: Atom PDF