netdev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Coverity] Untrusted user data in kernel

from [David S. Miller] [Permanent Link][Original]
To: Tomas Carnecky <tom@xxxxxxxxxxxxx>
Subject: Re: [Coverity] Untrusted user data in kernel
From: "David S. Miller" <davem@xxxxxxxxxxxxx>
Date: Fri, 17 Dec 2004 11:30:06 -0800
Cc: jmorris@xxxxxxxxxx, kaber@xxxxxxxxx, bryan@xxxxxxxxxxxx, netdev@xxxxxxxxxxx, netfilter-devel@xxxxxxxxxxxxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx
In-reply-to: <41C334DF.107@dbservice.com>
References: <Xine.LNX.4.44.0412170144410.12579-100000@thoron.boston.redhat.com> <41C2DCBC.1080302@dbservice.com> <20041217111634.740d4d46.davem@davemloft.net> <41C334DF.107@dbservice.com>
Sender: netdev-bounce@xxxxxxxxxxx 
On Fri, 17 Dec 2004 20:34:55 +0100
Tomas Carnecky <tom@xxxxxxxxxxxxx> wrote:

>  > It is already checked in do_ip6t_set_ctl(). Otherwise anyone could
>  > replace iptables rules :)
> For me it seems that only CAP_NET_ADMIN is checked and not the data.

If that's the case then I agree with you Tomas.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Coverity] Untrusted user data in kernel, Tomas Carnecky
Next by Date:  Re: primary and secondary ip addresses, Henrik Nordstrom
Previous by Thread:  Re: [Coverity] Untrusted user data in kernel, Tomas Carnecky
Next by Thread:  Re: [Coverity] Untrusted user data in kernel, Bill Davidsen
Indexes:  [Date] [Thread] [Top] [All Lists]