mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-07-09 07:19:44 +07:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #57 from madaidan/sysctl

Browse Source 
Prevent symlink/hardlink TOCTOU races
This commit is contained in:
Patrick Schleizer
2020-02-13 18:40:58 +00:00
committed by GitHub
parent 14140ad41b 14f8458374
commit ad6b766886
2 changed files with 17 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
debian/control vendored
View File

@ -48,7 +48,9 @@ Description: enhances misc security settings
attacks and enabling reverse path filtering to prevent IP spoofing and
mitigate vulnerabilities such as CVE-2019-14899.
.
* Some data spoofing attacks are made harder.
* Avoids unintentional writes to attacker-controlled files.
.
* Prevents symlink/hardlink TOCTOU races.
.
* SACK can be disabled as it is commonly exploited and is rarely used by
uncommenting settings in file /etc/sysctl.d/30_security-misc.conf.