projects / systemd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 786897d) | patch
seccomp: more comprehensive protection against libseccomp's __NR_xyz namespace invasion
authorLennart Poettering <lennart@poettering.net>
Thu, 14 Nov 2019 16:51:30 +0000 (17:51 +0100)
committerMichael Biebl <biebl@debian.org>
Tue, 19 Nov 2019 08:17:12 +0000 (08:17 +0000)
commit4b85ae1baf43f5e2775c6a85658a631bc8438222
tree2aa26362bcac894c8c69812e7c6d30df7fdd4238tree | snapshot
parent786897d1db60d95c4f095f952912c809a481cb02commit | diff
seccomp: more comprehensive protection against libseccomp's __NR_xyz namespace invasion

A follow-up for 59b657296a2fe104f112b91bbf9301724067cc81, adding the
same conditioning for all cases of our __NR_xyz use.

Fixes: #14031
(cherry picked from commit 4df8fe8415eaf4abd5b93c3447452547c6ea9e5f)

Gbp-Pq: Name seccomp-more-comprehensive-protection-against-libseccomp-.patch
src/basic/missing_syscall.h diff | blob | history
src/test/test-seccomp.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.