Google Git
Sign in
android / kernel / common / b2f5d4dc38e034eecb7987e513255265ff9aa1cf
commitb2f5d4dc38e034eecb7987e513255265ff9aa1cf[log] [tgz]
authorEric W. Biederman <[email protected]>Sat Oct 04 14:44:03 2014 -0700
committerEric W. Biederman <[email protected]>Tue Dec 02 10:46:48 2014 -0600
tree7a2205fdc3392feb549dfc55ce2c9f567b730936
parent4a44a19b470a886997d6647a77bb3e38dcbfa8c5 [diff]
umount: Disallow unprivileged mount force

Forced unmount affects not just the mount namespace but the underlying
superblock as well.  Restrict forced unmount to the global root user
for now.  Otherwise it becomes possible a user in a less privileged
mount namespace to force the shutdown of a superblock of a filesystem
in a more privileged mount namespace, allowing a DOS attack on root.

Cc: [email protected]
Signed-off-by: "Eric W. Biederman" <[email protected]>
1 file changed
tree: 7a2205fdc3392feb549dfc55ce2c9f567b730936
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. firmware/
  7. fs/
  8. include/
  9. init/
  10. ipc/
  11. kernel/
  12. lib/
  13. mm/
  14. net/
  15. samples/
  16. scripts/
  17. security/
  18. sound/
  19. tools/
  20. usr/
  21. virt/
  22. .gitignore
  23. .mailmap
  24. COPYING
  25. CREDITS
  26. Kbuild
  27. Kconfig
  28. MAINTAINERS
  29. Makefile
  30. README
  31. REPORTING-BUGS