summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
4 daysxen/privcmd: add boot control for restricted usage in domUJuergen Gross
2026-03-13apparmor: fix race between freeing data and fs accessing itJohn Johansen
2026-03-13apparmor: fix race on rawdata dereferenceJohn Johansen
2026-03-13apparmor: fix differential encoding verificationJohn Johansen
2026-03-13apparmor: fix unprivileged local user can do privileged policy managementJohn Johansen
2026-03-13apparmor: Fix double free of ns_name in aa_replace_profiles()John Johansen
2026-03-13apparmor: fix missing bounds check on DEFAULT table in verify_dfa()Massimiliano Pellizzer
2026-03-13apparmor: fix side-effect bug in match_char() macro usageMassimiliano Pellizzer
2026-03-13apparmor: fix: limit the number of levels of policy namespacesJohn Johansen
2026-03-13apparmor: replace recursive profile removal with iterative approachMassimiliano Pellizzer
2026-03-13apparmor: fix memory leak in verify_headerMassimiliano Pellizzer
2026-03-13apparmor: validate DFA start states are in bounds in unpack_pdbMassimiliano Pellizzer
2026-03-13ima: verify the previous kernel's IMA buffer lies in addressable RAMHarshit Mogalapalli
2026-03-13ima: kexec: define functions to copy IMA log at soft bootSteven Chen
2026-03-13ima: define and call ima_alloc_kexec_file_buf()Steven Chen
2026-03-13ima: rename variable the seq_file "file" to "ima_kexec_file"Steven Chen
2026-03-13ima: kexec: silence RCU list traversal warningBreno Leitao
2026-03-04apparmor: fix aa_label to return state from compount and component matchJohn Johansen
2026-03-04apparmor: fix invalid deref of rawdata when export_binary is unsetGeorgia Garcia
2026-03-04apparmor: avoid per-cpu hold underflow in aa_get_bufferZhengmian Hu
2026-03-04apparmor: make label_match return a consistent valueJohn Johansen
2026-03-04apparmor: remove apply_modes_to_perms from label_matchJohn Johansen
2026-03-04apparmor: fix rlimit for posix cpu timersJohn Johansen
2026-03-04apparmor: return -ENOMEM in unpack_perms_table upon alloc failureRyan Lee
2026-03-04apparmor: Fix & Optimize table creation from possibly unaligned memoryHelge Deller
2026-03-04AppArmor: Allow apparmor to handle unaligned dfa tablesHelge Deller
2026-03-04apparmor: fix NULL sock in aa_sock_file_permJohn Johansen
2026-03-04evm: Use ordered xattrs list to calculate HMAC in evm_init_hmac()Roberto Sassu
2026-03-04smack: /smack/doi: accept previously used valuesKonstantin Andreev
2026-03-04smack: /smack/doi must be > 0Konstantin Andreev
2026-01-30keys/trusted_keys: fix handle passed to tpm_buf_append_name during unsealSrish Srinivasan
2026-01-17tpm2-sessions: Fix out of range indexing in name_sizeJarkko Sakkinen
2026-01-08KEYS: trusted: Fix a memory leak in tpm2_load_cmdJarkko Sakkinen
2025-12-18ima: Handle error code returned by ima_filter_rule_match()Zhao Yipeng
2025-12-18smack: fix bug: setting task label silently ignores input garbageKonstantin Andreev
2025-12-18smack: fix bug: unprivileged task can create labelsKonstantin Andreev
2025-12-18smack: fix bug: invalid label of unix socket fileKonstantin Andreev
2025-12-18smack: always "instantiate" inode in smack_inode_init_security()Konstantin Andreev
2025-12-18smack: deduplicate xattr setting in smack_inode_init_security()Konstantin Andreev
2025-12-18smack: fix bug: SMACK64TRANSMUTE set on non-directoryKonstantin Andreev
2025-12-18smack: deduplicate "does access rule request transmutation"Konstantin Andreev
2025-11-13ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattrCoiby Xu
2025-10-19KEYS: trusted_tpm1: Compare HMAC values in constant timeEric Biggers
2025-10-15lsm: CONFIG_LSM can depend on CONFIG_SECURITYRandy Dunlap
2025-08-28apparmor: Fix 8-byte alignment for initial dfa blob streamsHelge Deller
2025-08-20apparmor: fix x_table_lookup when stacking is not the first entryJohn Johansen
2025-08-20apparmor: use the condition in AA_BUG_FMT even with debug disabledMateusz Guzik
2025-08-20apparmor: shift ouid when mediating hard links in usernsGabriel Totev
2025-08-20securityfs: don't pin dentries twice, once is enough...Al Viro
2025-08-15apparmor: Fix unaligned memory accesses in KUnit testHelge Deller
generated by cgit v1.3 (git 2.53.0) at 2026-03-29 10:24:14 +0000