Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-05-02 19:44:52 -04:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #57 from madaidan/sysctl

Browse source 
Prevent symlink/hardlink TOCTOU races
This commit is contained in:
Patrick Schleizer 2020-02-13 18:40:58 +00:00 committed by GitHub
commit ad6b766886
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 17 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

4
debian/control vendored
View file

@ -48,7 +48,9 @@ Description: enhances misc security settings
attacks and enabling reverse path filtering to prevent IP spoofing and
mitigate vulnerabilities such as CVE-2019-14899.
.
* Some data spoofing attacks are made harder.
* Avoids unintentional writes to attacker-controlled files.
.
* Prevents symlink/hardlink TOCTOU races.
.
* SACK can be disabled as it is commonly exploited and is rarely used by
uncommenting settings in file /etc/sysctl.d/30_security-misc.conf.