summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
4 daysxen/privcmd: add boot control for restricted usage in domUJuergen Gross
4 daysapparmor: fix race between freeing data and fs accessing itJohn Johansen
4 daysapparmor: fix race on rawdata dereferenceJohn Johansen
4 daysapparmor: fix differential encoding verificationJohn Johansen
4 daysapparmor: fix unprivileged local user can do privileged policy managementJohn Johansen
4 daysapparmor: Fix double free of ns_name in aa_replace_profiles()John Johansen
4 daysapparmor: fix missing bounds check on DEFAULT table in verify_dfa()Massimiliano Pellizzer
4 daysapparmor: fix side-effect bug in match_char() macro usageMassimiliano Pellizzer
4 daysapparmor: fix: limit the number of levels of policy namespacesJohn Johansen
4 daysapparmor: replace recursive profile removal with iterative approachMassimiliano Pellizzer
4 daysapparmor: fix memory leak in verify_headerMassimiliano Pellizzer
4 daysapparmor: validate DFA start states are in bounds in unpack_pdbMassimiliano Pellizzer
2026-03-04apparmor: fix aa_label to return state from compount and component matchJohn Johansen
2026-03-04apparmor: fix invalid deref of rawdata when export_binary is unsetGeorgia Garcia
2026-03-04apparmor: make label_match return a consistent valueJohn Johansen
2026-03-04apparmor: remove apply_modes_to_perms from label_matchJohn Johansen
2026-03-04apparmor: refcount the pdbJohn Johansen
2026-03-04apparmor: provide separate audit messages for file and policy checksJohn Johansen
2026-03-04apparmor: use passed in gfp flags in aa_alloc_null()Dan Carpenter
2026-03-04apparmor: fix rlimit for posix cpu timersJohn Johansen
2026-03-04apparmor: return -ENOMEM in unpack_perms_table upon alloc failureRyan Lee
2026-03-04apparmor: fix NULL sock in aa_sock_file_permJohn Johansen
2026-03-04smack: /smack/doi: accept previously used valuesKonstantin Andreev
2026-03-04smack: /smack/doi must be > 0Konstantin Andreev
2026-01-11KEYS: trusted: Fix a memory leak in tpm2_load_cmdJarkko Sakkinen
2026-01-11ima: Handle error code returned by ima_filter_rule_match()Zhao Yipeng
2026-01-11smack: fix bug: unprivileged task can create labelsKonstantin Andreev
2025-11-24ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattrCoiby Xu
2025-10-19KEYS: trusted_tpm1: Compare HMAC values in constant timeEric Biggers
2025-09-19ima: limit the number of ToMToU integrity violationsMimi Zohar
2025-08-28apparmor: use the condition in AA_BUG_FMT even with debug disabledMateusz Guzik
2025-08-28apparmor: shift ouid when mediating hard links in usernsGabriel Totev
2025-08-28securityfs: don't pin dentries twice, once is enough...Al Viro
2025-08-15apparmor: fix loop detection used in conflicting attachment resolutionRyan Lee
2025-08-15apparmor: ensure WB_HISTORY_SIZE value is a power of 2Ryan Lee
2025-06-27selinux: fix selinux_xfrm_alloc_user() to set correct ctx_lenStephen Smalley
2025-06-04smack: Revert "smackfs: Added check catlen"Konstantin Andreev
2025-06-04smack: recognize ipv4 CIPSO w/o categoriesKonstantin Andreev
2025-06-04ima: process_measurement() needlessly takes inode_lock() on MAY_READFrederick Lawler
2025-04-25landlock: Add the errata interfaceMickaël Salaün
2025-04-10smack: dont compile ipv6 code unless ipv6 is configuredKonstantin Andreev
2025-03-13ima: Reset IMA_NONACTION_RULE_FLAGS after post_setattrRoberto Sassu
2025-02-17tomoyo: don't emit warning in tomoyo_write_control()Tetsuo Handa
2025-02-17safesetid: check size of policy writesLeo Stone
2025-02-08landlock: Handle weird filesMickaël Salaün
2025-01-09selinux: ignore unknown extended permissionsThiébaud Weksteen
2024-12-09apparmor: test: Fix memory leak for aa_unpack_strdup()Jinjie Ruan
2024-12-09apparmor: fix 'Do simple duplicate message elimination'chao liu
2024-11-22ima: fix buffer overrun in ima_eventdigest_init_commonSamasth Norway Ananda
2024-11-14security/keys: fix slab-out-of-bounds in key_task_permissionChen Ridong
generated by cgit v1.3 (git 2.53.0) at 2026-03-29 06:14:09 +0000