[Coverity] Untrusted user data in kernel

James Morris jmorris at redhat.com
Fri Dec 17 16:38:46 CET 2004

Previous message: strange INVALID SYN in ip_conntrack (tcp window tracking enabled) in 2.4.27 kernel
Next message: UDP checksum problems after switching from kernel 2.4 to 2.6
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Fri, 17 Dec 2004, Pavel Machek wrote:

> Hi!
> 
> > This at least needs CAP_NET_ADMIN.
> 
> Hmm, but that means that CAP_NET_ADMIN implies all other capabilities,
> unless you fix this.

I'm not saying it doesn't need to be fixed, but that it is not exploitable 
by unprivileged users.

- James
-- 
James Morris
<jmorris at redhat.com>

Previous message: strange INVALID SYN in ip_conntrack (tcp window tracking enabled) in 2.4.27 kernel
Next message: UDP checksum problems after switching from kernel 2.4 to 2.6
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the netfilter-devel mailing list