summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2021-05-22security: commoncap: fix -Wstringop-overread warningArnd Bergmann1-1/+1
2021-03-17Revert 95ebabde382c ("capabilities: Don't allow writing ambiguous v3 file cap...Eric W. Biederman1-11/+1
2021-03-07smackfs: restrict bytes count in smackfs write functionsSabyrzhan Tasbolatov1-2/+19
2021-03-03KEYS: trusted: Fix migratable=1 failingJarkko Sakkinen1-1/+1
2021-03-03certs: Fix blacklist flag type confusionDavid Howells2-3/+4
2021-03-03capabilities: Don't allow writing ambiguous v3 file capabilitiesEric W. Biederman1-1/+11
2021-03-03ima: Free IMA measurement buffer after kexec syscallLakshmi Ramasubramanian1-0/+2
2021-03-03ima: Free IMA measurement buffer on errorLakshmi Ramasubramanian1-0/+1
2021-02-23cap: fix conversions on getxattrMiklos Szeredi1-24/+43
2021-01-23dump_common_audit_data(): fix racy accesses to ->d_nameAl Viro1-2/+5
2020-12-29ima: Don't modify file descriptor mode on the flyRoberto Sassu1-15/+5
2020-12-29selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handlingPaul Moore1-18/+13
2020-12-29selinux: fix error initialization in inode_doinit_with_dentry()Tianyue Ren1-3/+16
2020-11-18selinux: Fix error return code in sel_ib_pkey_sid_slow()Chen Zhou1-1/+3
2020-10-29ima: Don't ignore errors from crypto_shash_update()Roberto Sassu1-0/+2
2020-10-01selinux: sel_avc_get_stat_idx should increase position indexVasily Averin1-0/+1
2020-08-21Smack: prevent underflow in smk_set_cipso()Dan Carpenter1-1/+1
2020-08-21Smack: fix another vsscanf out of boundsDan Carpenter1-0/+4
2020-08-21Smack: fix use-after-free in smk_write_relabel_self()Eric Biggers1-2/+11
2020-06-30apparmor: don't try to replace stale label in ptraceme checkJann Horn1-2/+2
2020-06-25selinux: fix double freeTom Rix1-0/+4
2020-06-25apparmor: fix introspection of of task mode for unconfined tasksJohn Johansen1-2/+2
2020-06-20evm: Fix possible memory leak in evm_calc_hmac_or_hash()Roberto Sassu1-1/+1
2020-06-20ima: Directly assign the ima_default_policy pointer to ima_rulesRoberto Sassu1-2/+1
2020-06-20ima: Fix ima digest hash table key calculationKrzysztof Struczynski1-3/+4
2020-06-20Smack: slab-out-of-bounds in vsscanfCasey Schaufler1-0/+10
2020-06-20mm: add kvfree_sensitive() for freeing sensitive data objectsWaiman Long2-22/+5
2020-06-03exec: Always set cap_ambient in cap_bprm_set_credsEric W. Biederman1-0/+1
2020-05-27apparmor: Fix aa_label refcnt leak in policy_updateXiyu Yang1-1/+2
2020-05-27ima: Fix return value of ima_write_policy()Roberto Sassu1-2/+1
2020-05-27evm: Check also if *tfm is an error pointer in init_desc()Roberto Sassu1-1/+1
2020-05-27ima: Set file->f_mode instead of file->f_flags in ima_calc_file_hash()Roberto Sassu1-6/+6
2020-05-05selinux: properly handle multiple messages in selinux_netlink_send()Paul Moore1-24/+44
2020-05-02KEYS: Avoid false positive ENOMEM error on key readWaiman Long2-15/+55
2020-04-24KEYS: Don't write out to userspace while holding key semaphoreWaiman Long7-51/+72
2020-04-24KEYS: Use individual pages in big_key for crypto buffersDavid Howells1-23/+87
2020-04-24KEYS: reaching the keys quotas correctlyYang Xu2-3/+3
2020-02-28selinux: ensure we cleanup the internal AVC counters on error in avc_update()Jaihind Yadav1-1/+1
2020-01-27keys: Timestamp new keysDavid Howells1-0/+1
2020-01-27apparmor: don't try to replace stale label in ptrace access checkJann Horn2-2/+4
2020-01-04apparmor: fix unsigned len comparison with less than zeroColin Ian King1-5/+7
2019-12-05apparmor: delete the dentry in aafs_remove() to avoid a leakChris Coulson1-0/+1
2019-10-11ima: always return negative code for errorSascha Hauer1-1/+4
2019-10-07smack: use GFP_NOFS while holding inode_smack::smk_lockEric Biggers2-4/+4
2019-10-07Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is setJann Horn1-1/+2
2019-10-07security: smack: Fix possible null-pointer dereferences in smack_socket_sock_...Jia-Ju Bai1-0/+2
2019-09-21keys: Fix missing null pointer check in request_key_auth_describe()Hillf Danton1-0/+6
2019-08-06selinux: fix memory leak in policydb_init()Ondrej Mosnacek1-1/+5
2019-06-25apparmor: enforce nullbyte at end of tag stringJann Horn1-1/+1
2019-06-09ima: show rules with IMA_INMASK correctlyRoberto Sassu1-9/+12
generated by cgit v1.2.3 (git 2.39.0) at 2024-10-04 21:52:02 +0300