proc connector: reject unprivileged listener bumps (e70ab977) · Commits · Mirrors / github.com / raspberrypi_linux

Commit e70ab977 authored Feb 25, 2013 by

Kees Cook Committed by David S. Miller Feb 27, 2013

proc connector: reject unprivileged listener bumps

While PROC_CN_MCAST_LISTEN/IGNORE is entirely advisory, it was possible
for an unprivileged user to turn off notifications for all listeners by
sending PROC_CN_MCAST_IGNORE. Instead, require the same privileges as
required for a multicast bind.

Signed-off-by: Kees Cook <keescook@chromium.org>
Cc: Evgeniy Polyakov <zbr@ioremap.net>
Cc: Matt Helsley <matthltc@us.ibm.com>
Cc: stable@vger.kernel.org
Acked-by: Evgeniy Polyakov <zbr@ioremap.net>
Acked-by: Matt Helsley <matthltc@us.ibm.com>
Signed-off-by: David S. Miller <davem@davemloft.net>

parent 114a6f8b

Hide whitespace changes

Inline Side-by-side

Please register or to comment