linux-stable.git - Linux kernel stable tree

diff options

author	Andrei Vagin <avagin@openvz.org>	2017-10-25 10:16:42 -0700
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2017-11-18 11:06:30 +0100
commit	5c39875a93d64fc2a3581b93e1db77dc25ca67b0 (patch)
tree	8549e136ede66decb321bed91b49a7235809ce5e /drivers
parent	698b423e409fc4c169afd43d50ba2f16a0b9fd73 (diff)
download	linux-stable-5c39875a93d64fc2a3581b93e1db77dc25ca67b0.tar.gz linux-stable-5c39875a93d64fc2a3581b93e1db77dc25ca67b0.tar.bz2 linux-stable-5c39875a93d64fc2a3581b93e1db77dc25ca67b0.zip

net/unix: don't show information about sockets from other namespaces

[ Upstream commit 0f5da659d8f1810f44de14acf2c80cd6499623a0 ] socket_diag shows information only about sockets from a namespace where a diag socket lives. But if we request information about one unix socket, the kernel don't check that its netns is matched with a diag socket namespace, so any user can get information about any unix socket in a system. This looks like a bug. v2: add a Fixes tag Fixes: 51d7cccf0723 ("net: make sock diag per-namespace") Signed-off-by: Andrei Vagin <avagin@openvz.org> Signed-off-by: David S. Miller <davem@davemloft.net> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'drivers')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: