linux: Disable syscalls that allows processes to r/w other processes' memory

Backported from IPFire 3.x as 48931178ff83911c5bbc86194dea694845ae1608. Signed-off-by: Peter Müller <peter.mueller@ipfire.org> Acked-by: Michael Tremer <michael.tremer@ipfire.org>
2026-04-24 01:42:58 +02:00 · 2022-12-26 19:25:39 +00:00
parent a5fbbcf464
commit 00efe232b7
1 changed files with 1 additions and 1 deletions
--- a/config/kernel/kernel.config.x86_64-ipfire
+++ b/config/kernel/kernel.config.x86_64-ipfire
@@ -53,7 +53,7 @@ CONFIG_SYSVIPC_SYSCTL=y
 CONFIG_POSIX_MQUEUE=y
 CONFIG_POSIX_MQUEUE_SYSCTL=y
 # CONFIG_WATCH_QUEUE is not set
-CONFIG_CROSS_MEMORY_ATTACH=y
+# CONFIG_CROSS_MEMORY_ATTACH is not set
 # CONFIG_USELIB is not set
 # CONFIG_AUDIT is not set
 CONFIG_HAVE_ARCH_AUDITSYSCALL=y