summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2020-10-29ima: Don't ignore errors from crypto_shash_update()Roberto Sassu
2020-10-01selinux: sel_avc_get_stat_idx should increase position indexVasily Averin
2020-08-21Smack: prevent underflow in smk_set_cipso()Dan Carpenter
2020-08-21Smack: fix another vsscanf out of boundsDan Carpenter
2020-08-21Smack: fix use-after-free in smk_write_relabel_self()Eric Biggers
2020-06-30apparmor: don't try to replace stale label in ptraceme checkJann Horn
2020-06-25selinux: fix double freeTom Rix
2020-06-25apparmor: fix introspection of of task mode for unconfined tasksJohn Johansen
2020-06-20evm: Fix possible memory leak in evm_calc_hmac_or_hash()Roberto Sassu
2020-06-20ima: Directly assign the ima_default_policy pointer to ima_rulesRoberto Sassu
2020-06-20ima: Fix ima digest hash table key calculationKrzysztof Struczynski
2020-06-20Smack: slab-out-of-bounds in vsscanfCasey Schaufler
2020-06-20mm: add kvfree_sensitive() for freeing sensitive data objectsWaiman Long
2020-06-03exec: Always set cap_ambient in cap_bprm_set_credsEric W. Biederman
2020-05-27apparmor: Fix aa_label refcnt leak in policy_updateXiyu Yang
2020-05-27ima: Fix return value of ima_write_policy()Roberto Sassu
2020-05-27evm: Check also if *tfm is an error pointer in init_desc()Roberto Sassu
2020-05-27ima: Set file->f_mode instead of file->f_flags in ima_calc_file_hash()Roberto Sassu
2020-05-05selinux: properly handle multiple messages in selinux_netlink_send()Paul Moore
2020-05-02KEYS: Avoid false positive ENOMEM error on key readWaiman Long
2020-04-24KEYS: Don't write out to userspace while holding key semaphoreWaiman Long
2020-04-24KEYS: Use individual pages in big_key for crypto buffersDavid Howells
2020-04-24KEYS: reaching the keys quotas correctlyYang Xu
2020-02-28selinux: ensure we cleanup the internal AVC counters on error in avc_update()Jaihind Yadav
2020-01-27keys: Timestamp new keysDavid Howells
2020-01-27apparmor: don't try to replace stale label in ptrace access checkJann Horn
2020-01-04apparmor: fix unsigned len comparison with less than zeroColin Ian King
2019-12-05apparmor: delete the dentry in aafs_remove() to avoid a leakChris Coulson
2019-10-11ima: always return negative code for errorSascha Hauer
2019-10-07smack: use GFP_NOFS while holding inode_smack::smk_lockEric Biggers
2019-10-07Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is setJann Horn
2019-10-07security: smack: Fix possible null-pointer dereferences in smack_socket_sock_...Jia-Ju Bai
2019-09-21keys: Fix missing null pointer check in request_key_auth_describe()Hillf Danton
2019-08-06selinux: fix memory leak in policydb_init()Ondrej Mosnacek
2019-06-25apparmor: enforce nullbyte at end of tag stringJann Horn
2019-06-09ima: show rules with IMA_INMASK correctlyRoberto Sassu
2019-05-25apparmorfs: fix use-after-free on symlink traversalAl Viro
2019-05-25securityfs: fix use-after-free on symlink traversalAl Viro
2019-05-16ima: open a new file instance if no read permissionsGoldwyn Rodrigues
2019-05-08selinux: never allow relabeling on context mountsOndrej Mosnacek
2019-05-04selinux: use kernel linux/socket.h for genheaders and mdpPaulo Alcantara
2019-04-27device_cgroup: fix RCU imbalance in error caseJann Horn
2019-04-05selinux: do not override context on context mountsOndrej Mosnacek
2019-03-23security/selinux: fix SECURITY_LSM_NATIVE_LABELS on reused superblockJ. Bruce Fields
2019-03-23keys: Fix dependency loop between construction record and auth keyDavid Howells
2019-03-19missing barriers in some of unix_sock ->addr and ->path accessesAl Viro
2019-03-13apparmor: Fix aa_label_build() error handling for failed mergesJohn Johansen
2019-02-27KEYS: always initialize keyring_index_key::desc_lenEric Biggers
2019-02-27KEYS: allow reaching the keys quotas exactlyEric Biggers
2019-02-12smack: fix access permissions for keyringZoran Markovic
generated by cgit v1.2.3 (git 2.46.0) at 2025-12-30 20:22:43 +0000