summaryrefslogtreecommitdiff
path: root/drivers
diff options
context:
space:
mode:
authorOri Nimron <orinimron123@gmail.com>2019-09-20 09:35:45 +0200
committerDavid S. Miller <davem@davemloft.net>2019-09-24 16:37:18 +0200
commitb91ee4aa2a2199ba4d4650706c272985a5a32d80 (patch)
tree8cb6491912c098e9f31289e4d7d6412f8289507e /drivers
parent3d66b89c30f9220a72e92847768fc8ba4d027d88 (diff)
mISDN: enforce CAP_NET_RAW for raw sockets
When creating a raw AF_ISDN socket, CAP_NET_RAW needs to be checked first. Signed-off-by: Ori Nimron <orinimron123@gmail.com> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org> Signed-off-by: David S. Miller <davem@davemloft.net>
Diffstat (limited to 'drivers')
-rw-r--r--drivers/isdn/mISDN/socket.c2
1 files changed, 2 insertions, 0 deletions
diff --git a/drivers/isdn/mISDN/socket.c b/drivers/isdn/mISDN/socket.c
index c6ba37df4b9d..dff4132b3702 100644
--- a/drivers/isdn/mISDN/socket.c
+++ b/drivers/isdn/mISDN/socket.c
@@ -754,6 +754,8 @@ base_sock_create(struct net *net, struct socket *sock, int protocol, int kern)
if (sock->type != SOCK_RAW)
return -ESOCKTNOSUPPORT;
+ if (!capable(CAP_NET_RAW))
+ return -EPERM;
sk = sk_alloc(net, PF_ISDN, GFP_KERNEL, &mISDN_proto, kern);
if (!sk)