projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4b6f853) | patch
hamradio: Disable auto-loading as mitigation against local exploits
authorBen Hutchings <ben@decadent.org.uk>
Sun, 4 Aug 2019 23:29:11 +0000 (00:29 +0100)
committerSalvatore Bonaccorso <carnil@debian.org>
Mon, 19 Aug 2024 19:59:45 +0000 (21:59 +0200)
commit8cc6a0f0dbbf2e16077fbfd9d0e37e8b6c4cbc24
treee94146255673e0850189d6d9e14f4d1a2db60345tree | snapshot
parent4b6f8539adda76515f7d047c33ba57ebad1c44f0commit | diff
hamradio: Disable auto-loading as mitigation against local exploits

Forwarded: not-needed

We can mitigate the effect of vulnerabilities in obscure protocols by
preventing unprivileged users from loading the modules, so that they
are only exploitable on systems where the administrator has chosen to
load the protocol.

The 'ham' radio protocols (ax25, netrom, rose) are not actively
maintained or widely used.  Therefore disable auto-loading.

Signed-off-by: Ben Hutchings <ben@decadent.org.uk>
Gbp-Pq: Topic debian
Gbp-Pq: Name hamradio-disable-auto-loading-as-mitigation-against-local-exploits.patch
net/ax25/af_ax25.c diff | blob | history
net/netrom/af_netrom.c diff | blob | history
net/rose/af_rose.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.