projects / GitHub / LineageOS / android_kernel_samsung_universal7580.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e5eae4a) | patch
net: Fix ns_capable check in sock_diag_put_filterinfo
authorAndrew Lutomirski <luto@amacapital.net>
Thu, 17 Apr 2014 04:41:34 +0000 (21:41 -0700)
committerGreg Kroah-Hartman <gregkh@linuxfoundation.org>
Sat, 31 May 2014 04:52:15 +0000 (21:52 -0700)
commiteac664d2832178c1d3a5e7560a26c10001717b77
tree55cd18545fc8724151d52779cec90822fcbe63b4tree | snapshot (tar.gz zip)
parente5eae4a0511241959498b180fa0df0d4f1b11b9ccommit | diff
net: Fix ns_capable check in sock_diag_put_filterinfo

[ Upstream commit 78541c1dc60b65ecfce5a6a096fc260219d6784e ]

The caller needs capabilities on the namespace being queried, not on
their own namespace.  This is a security bug, although it likely has
only a minor impact.

Cc: stable@vger.kernel.org
Signed-off-by: Andy Lutomirski <luto@amacapital.net>
Acked-by: Nicolas Dichtel <nicolas.dichtel@6wind.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
include/linux/sock_diag.h diff | blob | blame | history
net/core/sock_diag.c diff | blob | blame | history
net/packet/diag.c diff | blob | blame | history