github-mirror/linux
1
0
Fork 0
mirror of https://github.com/torvalds/linux.git synced 2026-06-09 15:12:59 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity Graph
65d56d9355
linux/net/bridge
History
Florian Westphal 635b4f931d netfilter: ebtables: enforce CAP_NET_ADMIN 
commit dce766af54 upstream.

normal users are currently allowed to set/modify ebtables rules.
Restrict it to processes with CAP_NET_ADMIN.

Note that this cannot be reproduced with unmodified ebtables binary
because it uses SOCK_RAW.

Signed-off-by: Florian Westphal <fwestphal@astaro.com>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
2010-01-18 10:19:40 -08:00
..
netfilter netfilter: ebtables: enforce CAP_NET_ADMIN 2010-01-18 10:19:40 -08:00
br_device.c netdev: convert pseudo-devices to netdev_tx_t 2009-09-01 01:13:07 -07:00
br_fdb.c
br_forward.c
br_if.c bridge: prevent bridging wrong device 2009-11-05 20:46:52 -08:00
br_input.c
br_ioctl.c
br_netfilter.c sysctl: remove "struct file *" argument of ->proc_handler 2009-09-24 07:21:04 -07:00
br_netlink.c
br_notify.c
br_private_stp.h
br_private.h netdev: convert pseudo-devices to netdev_tx_t 2009-09-01 01:13:07 -07:00
br_stp_bpdu.c
br_stp_if.c
br_stp_timer.c
br_stp.c
br_sysfs_br.c
br_sysfs_if.c
br.c
Kconfig
Makefile