www.infradead.org Git - users/jedix/linux-maple.git/commit

]> www.infradead.org Git - users/jedix/linux-maple.git/commit

projects / users / jedix / linux-maple.git / commit

author	Thomas Gleixner <tglx@linutronix.de>
	Fri, 4 May 2018 07:40:03 +0000 (09:40 +0200)
committer	Brian Maly <brian.maly@oracle.com>
	Mon, 21 May 2018 22:05:33 +0000 (18:05 -0400)
commit	06a542b497e5c4a083873680df82e0134b2c2148
tree	dfb32b4ab06127eab34e048c68e701df9fe23d49	tree
parent	68666b6652bb64d65be3564990dcdd038e48732a	commit \| diff

seccomp: Use PR_SPEC_FORCE_DISABLE

Use PR_SPEC_FORCE_DISABLE in seccomp() because seccomp does not allow to
widen restrictions.

OraBug: 28041771
CVE: CVE-2018-3639

Signed-off-by: Thomas Gleixner <tglx@linutronix.de>
(cherry picked from commit b849a812f7eb92e96d1c8239b06581b2cfd8b275)
Signed-off-by: Konrad Rzeszutek Wilk <konrad.wilk@oracle.com>
Reviewed-by: Mihai Carabas <mihai.carabas@oracle.com>
Signed-off-by: Brian Maly <brian.maly@oracle.com>

kernel/seccomp.c

diff | blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom