lxc: add upstream security fix for CVE-2017-5985 - buildroot

diff options

author	Peter Korsgaard <peter@korsgaard.com>	2017-03-10 14:04:00 +0100
committer	Peter Korsgaard <peter@korsgaard.com>	2017-03-10 17:19:09 +0100
commit	7ed1bc6976625ca504ec5406f68fdb096ba424eb (patch)
tree	49cc53fa71456c87a44ccff4a4e5a817ae4050d3 /package/rpi-userland/0006-host-apps-dtoverlay-don-t-install-script-in-random-l.patch
parent	34d19a23ad8d46166a83da9cd84910ae1c5b2a43 (diff)
download	buildroot-7ed1bc6976625ca504ec5406f68fdb096ba424eb.tar.gz buildroot-7ed1bc6976625ca504ec5406f68fdb096ba424eb.zip

lxc: add upstream security fix for CVE-2017-5985

Before this commit, lxc-user-nic could potentially have been tricked into operating on a network namespace over which the caller did not hold privilege. This commit ensures that the caller is privileged over the network namespace by temporarily dropping privilege. Signed-off-by: Peter Korsgaard <peter@korsgaard.com>

Diffstat (limited to 'package/rpi-userland/0006-host-apps-dtoverlay-don-t-install-script-in-random-l.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: