Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 300955 (CVE-2010-0007)

Summary: Kernel: netfilter: enforce CAP_NET_ADMIN (CVE-2010-0007)
Product: Gentoo Security Reporter: Bjoern Tropf (RETIRED) <asym>
Component: KernelAssignee: Gentoo Security <security>
Severity: normal CC: jaak
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: [linux <2.6.33]
Package list:
Runtime testing required: ---

Description Bjoern Tropf (RETIRED) gentoo-dev 2010-01-14 09:38:31 UTC
Cve pending...
Comment 1 Alex Legler (RETIRED) archtester gentoo-dev Security 2010-03-02 09:47:45 UTC
CVE-2010-0007 (
  net/bridge/netfilter/ebtables.c in the ebtables module in the
  netfilter framework in the Linux kernel before 2.6.33-rc4 does not
  require the CAP_NET_ADMIN capability for setting or modifying rules,
  which allows local users to bypass intended access restrictions and
  configure arbitrary network-traffic filtering via a modified ebtables