[CVE-2017-11792] Partially initialized data in chakra JIT leads to OOB read/write in RPC - Internal

MikeHolman · agarwal-sandeep · commit 4e319aa937ee · 2017-10-10T09:36:12.000-07:00
diff --git a/lib/JITClient/JITManager.cpp b/lib/JITClient/JITManager.cpp
@@ -13,7 +13,7 @@ void * __RPC_USER midl_user_allocate(
 #endif
     size_t size)
 {
-    return (HeapAlloc(GetProcessHeap(), 0, size));
+    return (HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, size));
 }
 
 void __RPC_USER midl_user_free(_Pre_maybenull_ _Post_invalid_ void * ptr)

Original file line number	Diff line number	Diff line change
`@@ -13,7 +13,7 @@ void * __RPC_USER midl_user_allocate(`
`13`	`13`	`#endif`
`14`	`14`	`size_t size)`
`15`	`15`	`{`
`16`		`- return (HeapAlloc(GetProcessHeap(), 0, size));`
	`16`	`+ return (HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, size));`
`17`	`17`	`}`
`18`	`18`
`19`	`19`	`void __RPC_USER midl_user_free(_Pre_maybenull_ _Post_invalid_ void * ptr)`