Re: [PATCH] proc connector: reject unprivileged listener bumps

From: Evgeniy Polyakov
Date: Tue Feb 26 2013 - 03:46:16 EST


On Mon, Feb 25, 2013 at 11:32:25PM -0800, Kees Cook (keescook@xxxxxxxxxxxx) wrote:
> While PROC_CN_MCAST_LISTEN/IGNORE is entirely advisory, it was possible
> for an unprivileged user to turn off notifications for all listeners by
> sending PROC_CN_MCAST_IGNORE. Instead, require the same privileges as
> required for a multicast bind.

Sounds resonable.
Not sure whether this is a candidate for stable release, but otherwise
Acked-by: Evgeniy Polyakov <zbr@xxxxxxxxxxx>

Evgeniy Polyakov
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at
Please read the FAQ at