| commit | 910c9e41186762de3717baaf392ab5ff0c454496 | |
| author | Eugene Teo <eteo@redhat.com> | |
| Mon, 13 Apr 2009 02:04:41 +0000 (13 10:04 +0800) | ||
| committer | Greg Kroah-Hartman <gregkh@suse.de> | |
| Sat, 2 May 2009 17:25:09 +0000 (2 10:25 -0700) | ||
| tree | 4825f4f0133111f3d7c117e513d75ec3e5bef050 | treesnapshot (tar.gz zip) |
| parent | f685eb05970821bc79ff0cba4e8f6d35cf8a5862 | commitdiff |
unreached code in selinux_ip_postroute_iptables_compat() (CVE-2009-1184)
Not upstream in 2.6.30, as the function was removed there, making this a
non-issue.
Node and port send checks can skip in the compat_net=1 case. This bug
was introduced in commit effad8d.
Signed-off-by: Eugene Teo <eugeneteo@kernel.sg>
Reported-by: Dan Carpenter <error27@gmail.com>
Acked-by: James Morris <jmorris@namei.org>
Acked-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
Not upstream in 2.6.30, as the function was removed there, making this a
non-issue.
Node and port send checks can skip in the compat_net=1 case. This bug
was introduced in commit effad8d.
Signed-off-by: Eugene Teo <eugeneteo@kernel.sg>
Reported-by: Dan Carpenter <error27@gmail.com>
Acked-by: James Morris <jmorris@namei.org>
Acked-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
| security/selinux/hooks.c | diffblobblamehistory |