| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 9 Apr 2013 09:33:08 -0700 From: Kees Cook <keescook@...omium.org> To: Josh Boyer <jwboyer@...hat.com> Cc: Andrew Morton <akpm@...ux-foundation.org>, Eric Paris <eparis@...hat.com>, Linus Torvalds <torvalds@...ux-foundation.org>, Christian Kujau <lists@...dbynature.de>, "# 3.4.x" <stable@...r.kernel.org>, LKML <linux-kernel@...r.kernel.org> Subject: Re: [PATCH v2] kmsg: Honor dmesg_restrict sysctl on /dev/kmsg On Tue, Apr 9, 2013 at 8:48 AM, Josh Boyer <jwboyer@...hat.com> wrote: > The dmesg_restrict sysctl currently covers the syslog method for access > dmesg, however /dev/kmsg isn't covered by the same protections. Most > people haven't noticed because util-linux dmesg(1) defaults to using the > syslog method for access in older versions. With util-linux dmesg(1) > defaults to reading directly from /dev/kmsg. > > Fix this by reworking all of the access methods to use the > check_syslog_permissions function and adding checks to devkmsg_open and > devkmsg_read. > > This fixes https://bugzilla.redhat.com/show_bug.cgi?id=903192 > > Reported-by: Christian Kujau <lists@...dbynature.de> > CC: stable@...r.kernel.org > Signed-off-by: Eric Paris <eparis@...hat.com> > Signed-off-by: Josh Boyer <jwboyer@...hat.com> Thanks! Acked-by: Kees Cook <keescook@...omium.org> -- Kees Cook Chrome OS Security -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists