CVE-2010-0007

Published: 19 January 2010

net/bridge/netfilter/ebtables.c in the ebtables module in the netfilter framework in the Linux kernel before 2.6.33-rc4 does not require the CAP_NET_ADMIN capability for setting or modifying rules, which allows local users to bypass intended access restrictions and configure arbitrary network-traffic filtering via a modified ebtables application.

Priority

Low

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc4)
Patches:
Upstream: http://git.kernel.org/linus/dce766af541f6605fa9889892c0280bab31c66ab
linux-source-2.6.15
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.33~rc4)