projects / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9175c34) | patch
hamradio: Disable auto-loading as mitigation against local exploits
authorBen Hutchings <ben@decadent.org.uk>
Sun, 4 Aug 2019 23:29:11 +0000 (00:29 +0100)
committerBen Hutchings <benh@debian.org>
Wed, 15 Apr 2020 02:37:48 +0000 (03:37 +0100)
commitb96013903e313308b5340a4a0a51c186b63ba64c
tree9c56d4dbb6fe37e151badbfd23b24b37b80c64b1tree | snapshot
parent9175c34b14bde0fbb9f81604ebb456c75bf9a949commit | diff
hamradio: Disable auto-loading as mitigation against local exploits

Forwarded: not-needed

We can mitigate the effect of vulnerabilities in obscure protocols by
preventing unprivileged users from loading the modules, so that they
are only exploitable on systems where the administrator has chosen to
load the protocol.

The 'ham' radio protocols (ax25, netrom, rose) are not actively
maintained or widely used.  Therefore disable auto-loading.

Signed-off-by: Ben Hutchings <ben@decadent.org.uk>
Gbp-Pq: Topic debian
Gbp-Pq: Name hamradio-disable-auto-loading-as-mitigation-against-local-exploits.patch
net/ax25/af_ax25.c diff | blob | history
net/netrom/af_netrom.c diff | blob | history
net/rose/af_rose.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.