[Kernel] Re: [PATCH OpenHarmony-5.10 17/18] NFC: add necessary privilege flags in netlink layer

24 Jan 2022


      在 2022/1/24 9:03, yiyuchangchun@126.com 写道:
...
From: Lin Ma 
mainline inclusion
from mainline-v5.16-rc1
commit aedddb4e45b34426cfbfa84454b6f203712733c5
category: bugfix
issue: #I4RVJ4
CVE: CVE-2021-4202
Signed-off-by: Yu Changchun 
----------------------------------
The CAP_NET_ADMIN checks are needed to prevent attackers faking a
device under NCIUARTSETDRIVER and exploit privileged commands.
This patch add GENL_ADMIN_PERM flags in genl_ops to fulfill the check.
Except for commands like NFC_CMD_GET_DEVICE, NFC_CMD_GET_TARGET,
NFC_CMD_LLC_GET_PARAMS, and NFC_CMD_GET_SE, which are mainly information-
read operations.
Signed-off-by: Lin Ma 
Signed-off-by: David S. Miller 
Signed-off-by: Yu Changchun 
---
  net/nfc/netlink.c | 15 +++++++++++++++
  1 file changed, 15 insertions(+)
Reviewed-by: Wei Yongjun

[Kernel] Re: [PATCH OpenHarmony-5.10 17/18] NFC: add necessary privilege flags in netlink layer

weiyongjun (A)