From: Andrei Vagin <ava...@openvz.org>
Date: Wed, 25 Oct 2017 10:16:42 -0700
> socket_diag shows information only about sockets from a namespace where
> a diag socket lives.
>
> But if we request information about one unix socket, the kernel don't
> check that its netns is matched with a diag socket namespace, so any
> user can get information about any unix socket in a system. This looks
> like a bug.
>
> v2: add a Fixes tag
>
> Fixes: 51d7cccf0723 ("net: make sock diag per-namespace")
> Signed-off-by: Andrei Vagin <ava...@openvz.org>
Applied and queued up for -stable, thanks!
