On Sun, Apr 22, 2007 at 01:50:45AM -0700, Andrew Morton wrote: > On Sun, 22 Apr 2007 10:39:41 +0200 Bastian Blank <[EMAIL PROTECTED]> wrote: > > > The commit 34f5a39899f3f3e815da64f48ddb72942d86c366 restricted reading > > of the tainted value. The attached patch changes this back to a > > write-only check and restores the read behaviour of older versions. > > > > Signed-off-by: Bastian Blank <[EMAIL PROTECTED]> > > there's no patch here.
Ups.
diff --git a/kernel/sysctl.c b/kernel/sysctl.c
index 1b255df..c904748 100644
--- a/kernel/sysctl.c
+++ b/kernel/sysctl.c
@@ -1676,7 +1676,7 @@ static int proc_dointvec_taint(ctl_table *table, int
write, struct file *filp,
{
int op;
- if (!capable(CAP_SYS_ADMIN))
+ if (write && !capable(CAP_SYS_ADMIN))
return -EPERM;
op = OP_OR;
--
Captain's Log, star date 21:34.5...
signature.asc
Description: Digital signature
