main/linux-virt-grsec: upgrade to 3.10.17

author: Leonardo Arena <rnalrd@alpinelinux.org> 2013-10-25 20:22:15 +0000
committer: Leonardo Arena <rnalrd@alpinelinux.org> 2013-10-25 20:22:15 +0000
commit: d19fa4e2ecd7a4d7c8fb7ba04d48f863e0fc71b7 (patch)
tree: 4a9ff41c4cfbc31087adbc488c5b4f02d4f6bfa6 /main/linux-virt-grsec/remove-cap-sys-admin-for-proc-sys.patch
parent: cfb194a63842ea6d7828b0499927ca1681dad718 (diff)
download: aports-d19fa4e2ecd7a4d7c8fb7ba04d48f863e0fc71b7.tar.bz2
aports-d19fa4e2ecd7a4d7c8fb7ba04d48f863e0fc71b7.tar.xz
1 files changed, 14 insertions, 0 deletions
diff --git a/main/linux-virt-grsec/remove-cap-sys-admin-for-proc-sys.patch b/main/linux-virt-grsec/remove-cap-sys-admin-for-proc-sys.patch
new file mode 100644
index 000000000..6fa56ba13
--- /dev/null
+++ b/main/linux-virt-grsec/remove-cap-sys-admin-for-proc-sys.patch
@@ -0,0 +1,14 @@
+diff --git a/fs/proc/proc_sysctl.c b/fs/proc/proc_sysctl.c
+index 1e6dc7e..d65d119 100644
+--- a/fs/proc/proc_sysctl.c
++++ b/fs/proc/proc_sysctl.c
+@@ -521,8 +521,6 @@ static ssize_t proc_sys_call_handler(struct file *filp, void __user *buf,
+ 	dput(filp->f_path.dentry);
+ 	if (!gr_acl_handle_open(filp->f_path.dentry, filp->f_path.mnt, op))
+ 		goto out;
+-	if (write && !capable(CAP_SYS_ADMIN))
+-		goto out;
+ #endif
+ 
+ 	/* careful: calling conventions are nasty here */
+
author	Leonardo Arena <rnalrd@alpinelinux.org>	2013-10-25 20:22:15 +0000
committer	Leonardo Arena <rnalrd@alpinelinux.org>	2013-10-25 20:22:15 +0000
commit	d19fa4e2ecd7a4d7c8fb7ba04d48f863e0fc71b7 (patch)
tree	4a9ff41c4cfbc31087adbc488c5b4f02d4f6bfa6 /main/linux-virt-grsec/remove-cap-sys-admin-for-proc-sys.patch
parent	cfb194a63842ea6d7828b0499927ca1681dad718 (diff)
download	aports-d19fa4e2ecd7a4d7c8fb7ba04d48f863e0fc71b7.tar.bz2 aports-d19fa4e2ecd7a4d7c8fb7ba04d48f863e0fc71b7.tar.xz