projects / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: be70b29) | patch
seccomp: more comprehensive protection against libseccomp's __NR_xyz namespace invasion
authorLennart Poettering <lennart@poettering.net>
Thu, 14 Nov 2019 16:51:30 +0000 (17:51 +0100)
committerMichael Biebl <biebl@debian.org>
Fri, 15 Nov 2019 21:01:17 +0000 (21:01 +0000)
commit1c1a181751115285a824f5a6d2148613183629e3
tree01131802ddb0e67143b4de2b896b504eb97faf29tree | snapshot
parentbe70b294585732a59ce36dcfec4d9e6494c1845dcommit | diff
seccomp: more comprehensive protection against libseccomp's __NR_xyz namespace invasion

A follow-up for 59b657296a2fe104f112b91bbf9301724067cc81, adding the
same conditioning for all cases of our __NR_xyz use.

Fixes: #14031
(cherry picked from commit 4df8fe8415eaf4abd5b93c3447452547c6ea9e5f)

Gbp-Pq: Name seccomp-more-comprehensive-protection-against-libseccomp-.patch
src/basic/missing_syscall.h diff | blob | history
src/test/test-seccomp.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.