Red Hat Bugzilla – Bug 1027752
CVE-2013-4270 kernel: net: permissions flaw in /proc/sys/net
Last modified: 2016-04-26 11:39:06 EDT
A flaw was found in the way net_ctl_permissions() function in the Linux kernel checked permissions.
As a result, an unprivileged local user could potentially use this flaw to access files in /proc/sys/net in a way that he would otherwise be unable to.
This issue was discovered by Miroslav Vadkerti of Red Hat.
This issue does not affect the version of the kernel package as shipped with Red Hat Enterprise Linux 5 and 6.
This issue has been addressed in following products:
MRG for RHEL-6 v.2
Via RHSA-2014:0100 https://rhn.redhat.com/errata/RHSA-2014-0100.html