projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b3efa12) | patch
hamradio: Disable auto-loading as mitigation against local exploits
authorBen Hutchings <ben@decadent.org.uk>
Sun, 4 Aug 2019 23:29:11 +0000 (00:29 +0100)
committerSalvatore Bonaccorso <carnil@debian.org>
Thu, 9 Jun 2022 21:37:36 +0000 (22:37 +0100)
commit4295aeded2d0e0235fea6974bfe67dfd607b69af
tree787480b5f99ee8c78b9a91d9da7e5930aa26dc8atree | snapshot
parentb3efa12b0d2a8a8b941708fc658389294e03b4e4commit | diff
hamradio: Disable auto-loading as mitigation against local exploits

Forwarded: not-needed

We can mitigate the effect of vulnerabilities in obscure protocols by
preventing unprivileged users from loading the modules, so that they
are only exploitable on systems where the administrator has chosen to
load the protocol.

The 'ham' radio protocols (ax25, netrom, rose) are not actively
maintained or widely used.  Therefore disable auto-loading.

Signed-off-by: Ben Hutchings <ben@decadent.org.uk>
Gbp-Pq: Topic debian
Gbp-Pq: Name hamradio-disable-auto-loading-as-mitigation-against-local-exploits.patch
net/ax25/af_ax25.c diff | blob | history
net/netrom/af_netrom.c diff | blob | history
net/rose/af_rose.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.