redonkable/alistair23-linux
redonkable/alistair23-linux
1
0
Fork 0
Code Releases Activity
alistair23-linux/net/bridge/netfilter
History
Florian Westphal dce766af54 netfilter: ebtables: enforce CAP_NET_ADMIN 
normal users are currently allowed to set/modify ebtables rules.
Restrict it to processes with CAP_NET_ADMIN.

Note that this cannot be reproduced with unmodified ebtables binary
because it uses SOCK_RAW.

Signed-off-by: Florian Westphal <fwestphal@astaro.com>
Cc: stable@kernel.org
Signed-off-by: Patrick McHardy <kaber@trash.net>
2010-01-08 17:31:24 +01:00
..
ebt_802_3.c netfilter: xtables: move extension arguments into compound structure (2/6) 2008-10-08 11:35:18 +02:00
ebt_among.c netfilter: xtables: move extension arguments into compound structure (2/6) 2008-10-08 11:35:18 +02:00
ebt_arp.c netfilter: xtables: move extension arguments into compound structure (2/6) 2008-10-08 11:35:18 +02:00
ebt_arpreply.c netfilter: xtables: move extension arguments into compound structure (5/6) 2008-10-08 11:35:19 +02:00
ebt_dnat.c netfilter: xtables: move extension arguments into compound structure (5/6) 2008-10-08 11:35:19 +02:00
ebt_ip.c netfilter: xtables: move extension arguments into compound structure (2/6) 2008-10-08 11:35:18 +02:00
ebt_ip6.c netfilter: xtables: move extension arguments into compound structure (2/6) 2008-10-08 11:35:18 +02:00
ebt_limit.c netfilter: xtables: move extension arguments into compound structure (2/6) 2008-10-08 11:35:18 +02:00
ebt_log.c netfilter: ebtables: Use %pM conversion specifier 2009-08-10 10:10:55 +02:00
ebt_mark.c netfilter: xtables: move extension arguments into compound structure (5/6) 2008-10-08 11:35:19 +02:00
ebt_mark_m.c netfilter: xtables: move extension arguments into compound structure (2/6) 2008-10-08 11:35:18 +02:00
ebt_nflog.c netfilter: xtables: move extension arguments into compound structure (5/6) 2008-10-08 11:35:19 +02:00
ebt_pkttype.c netfilter: xtables: move extension arguments into compound structure (2/6) 2008-10-08 11:35:18 +02:00
ebt_redirect.c netfilter: xtables: move extension arguments into compound structure (5/6) 2008-10-08 11:35:19 +02:00
ebt_snat.c netfilter: xtables: move extension arguments into compound structure (5/6) 2008-10-08 11:35:19 +02:00
ebt_stp.c net: Move && and || to end of previous line 2009-11-29 16:55:45 -08:00
ebt_ulog.c netfilter: ebt_ulog: fix checkentry return value 2009-09-01 14:34:01 +02:00
ebt_vlan.c netfilter: xtables: move extension arguments into compound structure (2/6) 2008-10-08 11:35:18 +02:00
ebtable_broute.c netfilter: xtables: mark initial tables constant 2009-08-24 14:56:30 +02:00
ebtable_filter.c netfilter: xtables: mark initial tables constant 2009-08-24 14:56:30 +02:00
ebtable_nat.c netfilter: xtables: switch hook PFs to nfproto 2009-08-10 13:35:21 +02:00
ebtables.c netfilter: ebtables: enforce CAP_NET_ADMIN 2010-01-08 17:31:24 +01:00
Kconfig netfilter: fix ebtables dependencies 2008-10-14 11:57:33 -07:00
Makefile bridge: fix IPV6=n build 2008-06-17 16:16:13 -07:00