diff options
| author | Andy Lutomirski <luto@amacapital.net> | 2014-10-08 23:32:47 +0400 |
|---|---|---|
| committer | Andy Lutomirski <luto@amacapital.net> | 2014-10-08 23:32:47 +0400 |
| commit | a1480dcc3c706e309a88884723446f2e84fedd5b (patch) | |
| tree | fa2a425b8607586c11127ea35344d893e6a4a4f0 /lib/cpu-notifier-error-inject.c | |
| parent | bfe01a5ba2490f299e1d2d5508cbbbadd897bbe9 (diff) | |
| download | linux-a1480dcc3c706e309a88884723446f2e84fedd5b.tar.xz | |
fs: Add a missing permission check to do_umount
Accessing do_remount_sb should require global CAP_SYS_ADMIN, but
only one of the two call sites was appropriately protected.
Fixes CVE-2014-7975.
Signed-off-by: Andy Lutomirski <luto@amacapital.net>
Diffstat (limited to 'lib/cpu-notifier-error-inject.c')
0 files changed, 0 insertions, 0 deletions