summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2 daysapparmor: fix aa_label to return state from compount and component matchJohn Johansen
2 daysapparmor: fix invalid deref of rawdata when export_binary is unsetGeorgia Garcia
2 daysapparmor: make label_match return a consistent valueJohn Johansen
2 daysapparmor: remove apply_modes_to_perms from label_matchJohn Johansen
2 daysapparmor: refcount the pdbJohn Johansen
2 daysapparmor: provide separate audit messages for file and policy checksJohn Johansen
2 daysapparmor: use passed in gfp flags in aa_alloc_null()Dan Carpenter
2 daysapparmor: fix rlimit for posix cpu timersJohn Johansen
2 daysapparmor: return -ENOMEM in unpack_perms_table upon alloc failureRyan Lee
2 daysapparmor: fix NULL sock in aa_sock_file_permJohn Johansen
2 dayssmack: /smack/doi: accept previously used valuesKonstantin Andreev
2 dayssmack: /smack/doi must be > 0Konstantin Andreev
2026-01-11KEYS: trusted: Fix a memory leak in tpm2_load_cmdJarkko Sakkinen
2026-01-11ima: Handle error code returned by ima_filter_rule_match()Zhao Yipeng
2026-01-11smack: fix bug: unprivileged task can create labelsKonstantin Andreev
2025-11-24ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattrCoiby Xu
2025-10-19KEYS: trusted_tpm1: Compare HMAC values in constant timeEric Biggers
2025-09-19ima: limit the number of ToMToU integrity violationsMimi Zohar
2025-08-28apparmor: use the condition in AA_BUG_FMT even with debug disabledMateusz Guzik
2025-08-28apparmor: shift ouid when mediating hard links in usernsGabriel Totev
2025-08-28securityfs: don't pin dentries twice, once is enough...Al Viro
2025-08-15apparmor: fix loop detection used in conflicting attachment resolutionRyan Lee
2025-08-15apparmor: ensure WB_HISTORY_SIZE value is a power of 2Ryan Lee
2025-06-27selinux: fix selinux_xfrm_alloc_user() to set correct ctx_lenStephen Smalley
2025-06-04smack: Revert "smackfs: Added check catlen"Konstantin Andreev
2025-06-04smack: recognize ipv4 CIPSO w/o categoriesKonstantin Andreev
2025-06-04ima: process_measurement() needlessly takes inode_lock() on MAY_READFrederick Lawler
2025-04-25landlock: Add the errata interfaceMickaël Salaün
2025-04-10smack: dont compile ipv6 code unless ipv6 is configuredKonstantin Andreev
2025-03-13ima: Reset IMA_NONACTION_RULE_FLAGS after post_setattrRoberto Sassu
2025-02-17tomoyo: don't emit warning in tomoyo_write_control()Tetsuo Handa
2025-02-17safesetid: check size of policy writesLeo Stone
2025-02-08landlock: Handle weird filesMickaël Salaün
2025-01-09selinux: ignore unknown extended permissionsThiébaud Weksteen
2024-12-09apparmor: test: Fix memory leak for aa_unpack_strdup()Jinjie Ruan
2024-12-09apparmor: fix 'Do simple duplicate message elimination'chao liu
2024-11-22ima: fix buffer overrun in ima_eventdigest_init_commonSamasth Norway Ananda
2024-11-14security/keys: fix slab-out-of-bounds in key_task_permissionChen Ridong
2024-11-01selinux: improve error checking in sel_write_load()Paul Moore
2024-10-10tomoyo: fallback to realpath if symlink's pathname does not existTetsuo Handa
2024-10-10proc: add config & param to block forcing mem writesAdrian Ratiu
2024-10-04bpf: lsm: Set bpf_lsm_blob_sizes.lbs_task to 0Song Liu
2024-10-04smackfs: Use rcu_assign_pointer() to ensure safe assignment in smk_set_cipsoJiawei Ye
2024-09-12smack: unix sockets: fix accept()ed socket labelKonstantin Andreev
2024-09-08smack: tcp: ipv4, fix incorrect labelingCasey Schaufler
2024-09-08apparmor: fix possible NULL pointer dereferenceLeesoo Ahn
2024-09-04apparmor: fix policy_unpack_test on big endian systemsGuenter Roeck
2024-09-04selinux,smack: don't bypass permissions check in inode_setsecctx hookScott Mayhew
2024-08-29evm: don't copy up 'security.evm' xattrMimi Zohar
2024-08-29selinux: add the processing of the failure of avc_add_xperms_decision()Zhen Lei
generated by cgit v1.2.3 (git 2.46.0) at 2026-03-06 23:19:44 +0000