[LLC]: Restrict LLC sockets to root (3480c63b) · Commits · Mirrors / git.yoctoproject.org / linux-yocto

Commit 3480c63b authored Mar 27, 2008 by

Patrick McHardy Committed by David S. Miller Mar 27, 2008

[LLC]: Restrict LLC sockets to root



LLC currently allows users to inject raw frames, including IP packets
encapsulated in SNAP. While Linux doesn't handle IP over SNAP, other
systems do. Restrict LLC sockets to root similar to packet sockets.

[ Modified Patrick's patch to use CAP_NEW_RAW --DaveM ]

Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: David S. Miller <davem@davemloft.net>

parent 349fb2d6

Hide whitespace changes

Inline Side-by-side

Please register or to comment