From afbd35a816254adcd4a5660a2e9089ee986f9457 Mon Sep 17 00:00:00 2001 Message-Id: From: Michal Privoznik Date: Thu, 12 Sep 2013 11:37:33 -0600 Subject: [PATCH] virFileNBDDeviceAssociate: Avoid use of uninitialized variable CVE-2013-4297: https://bugzilla.redhat.com/show_bug.cgi?id=1006513 The @qemunbd variable can be used uninitialized. (cherry picked from commit 2dba0323ff0cec31bdcea9dd3b2428af297401f2) --- src/util/virfile.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/util/virfile.c b/src/util/virfile.c index 2b07ac9..7af0843 100644 --- a/src/util/virfile.c +++ b/src/util/virfile.c @@ -732,7 +732,7 @@ int virFileNBDDeviceAssociate(const char *file, char **dev) { char *nbddev; - char *qemunbd; + char *qemunbd = NULL; virCommandPtr cmd = NULL; int ret = -1; const char *fmtstr = NULL; -- 1.8.3.2