Merge ~cascardo/ubuntu/+source/kmod:dccp into ubuntu/+source/kmod:ubuntu/devel
Proposed by
Thadeu Lima de Souza Cascardo
Status: | Needs review |
---|---|
Proposed branch: | ~cascardo/ubuntu/+source/kmod:dccp |
Merge into: | ubuntu/+source/kmod:ubuntu/devel |
Diff against target: |
14 lines (+6/-0) 1 file modified
debian/modprobe.d/blacklist-rare-network.conf (+6/-0) |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Steve Beattie | Pending | ||
Review via email: mp+393446@code.launchpad.net |
Commit message
DCCP has had many vulnerabilities reported and is not well maintained upstream. It seems to not be used by packages in the archive. Doing a quick scan on codesearch.
Sysadmins can still modify the modprobe file or manually load the necessary modules.
Description of the change
Running a program that tries to use a DCCP socket, it fails to create such a socket when this fix is applied. Programs that could have been used to DoS the system will fail in such situations.
To post a comment you must log in.