projects / unionfs-2.6.39.y.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9817e23) | patch
unreached code in selinux_ip_postroute_iptables_compat() (CVE-2009-1184)
authorEugene Teo <eteo@redhat.com>
Mon, 13 Apr 2009 02:04:41 +0000 (10:04 +0800)
committerGreg Kroah-Hartman <gregkh@suse.de>
Sat, 2 May 2009 17:57:21 +0000 (10:57 -0700)
commite0021955d0511e0f3ed867d5dcc7e6c3aefe7371
treeee3165623276d8528fc7d2130ed1d582b78fe1d8tree | snapshot
parent9817e237916af43481820974759da79df7487c6fcommit | diff
unreached code in selinux_ip_postroute_iptables_compat() (CVE-2009-1184)

Not upstream in 2.6.30, as the function was removed there, making this a
non-issue.

Node and port send checks can skip in the compat_net=1 case. This bug
was introduced in commit effad8d.

Signed-off-by: Eugene Teo <eugeneteo@kernel.sg>
Reported-by: Dan Carpenter <error27@gmail.com>
Acked-by: James Morris <jmorris@namei.org>
Acked-by: Paul Moore <paul.moore@hp.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
security/selinux/hooks.c diff | blob | history
unionfs2-2.6.39.y