dgit.raspbian.org Git - linux-4.9.git/commit

author	Matthew Garrett <mjg59@srcf.ucam.org>
	Fri, 9 Mar 2012 14:28:15 +0000 (09:28 -0500)
committer	Salvatore Bonaccorso <carnil@debian.org>
	Sun, 6 Aug 2017 04:24:47 +0000 (05:24 +0100)
commit	c5c55bd8a2eadaf5798c425fb281e4608ed22c60
tree	fcd9c9d44256ac3974cffeea902d27bcc188c088	tree \| snapshot
parent	1a281bd9f0db4d7fac68c4d93c6c2a6bb68e7d92	commit \| diff

Restrict /dev/mem and /dev/kmem when securelevel is set.

Allowing users to write to address space provides mechanisms that may permit
modification of the kernel at runtime. Prevent this if securelevel has been
set.

Signed-off-by: Matthew Garrett <mjg59@srcf.ucam.org>
[bwh: Forward-ported to 4.9: adjust context]

Gbp-Pq: Topic features/all/securelevel
Gbp-Pq: Name restrict-dev-mem-and-dev-kmem-when-securelevel-is-se.patch

drivers/char/mem.c

diff | blob | history

Unnamed repository; edit this file 'description' to name the repository.

RSS Atom