summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* selinux: properly handle multiple messages in selinux_netlink_send()Paul Moore2020-06-111-24/+44
* selinux: rate-limit netlink message warnings in selinux_nlmsg_perm()Vladis Dronov2020-06-111-4/+5
* selinux: Print 'sclass' as string when unrecognized netlink message occursMarek Milkovic2020-06-111-2/+3
* selinux: convert WARN_ONCE() to printk() in selinux_nlmsg_perm()Richard Guy Briggs2020-06-111-3/+4
* selinux: cleanup error reporting in selinux_nlmsg_perm()Richard Guy Briggs2020-06-111-4/+3
* smack: use GFP_NOFS while holding inode_smack::smk_lockEric Biggers2019-12-102-3/+3
* Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is setJann Horn2019-12-101-1/+2
* keys: Fix missing null pointer check in request_key_auth_describe()Hillf Danton2019-11-221-0/+6
* selinux: fix memory leak in policydb_init()Ondrej Mosnacek2019-11-221-1/+5
* apparmor: enforce nullbyte at end of tag stringJann Horn2019-10-051-1/+1
* device_cgroup: fix RCU imbalance in error caseJann Horn2019-08-131-1/+1
* selinux: avoid silent denials in permissive mode under RCU walkStephen Smalley2019-07-093-5/+28
* security/selinux: pass 'flags' arg to avc_audit() and avc_has_perm_flags()NeilBrown2019-07-093-4/+25
* apparmor: provide userspace flag indicating binfmt_elf_mmap changeJohn Johansen2019-05-021-0/+1
* KEYS: always initialize keyring_index_key::desc_lenEric Biggers2019-05-024-6/+4
* KEYS: restrict /proc/keys by credentials at open timeEric Biggers2019-05-021-6/+2
* KEYS: allow reaching the keys quotas exactlyEric Biggers2019-05-021-2/+2
* Yama: Check for pid death before checking ancestryKees Cook2019-05-021-1/+3
* ima: fix showing large 'violations' or 'runtime_measurements_count'Eric Biggers2019-02-111-3/+3
* KEYS: encrypted: fix buffer overread in valid_master_desc()Eric Biggers2018-12-161-16/+15
* apparmor: remove no-op permission check in policy_unpackJohn Johansen2018-12-161-32/+0
* selinux: KASAN: slab-out-of-bounds in xattr_getsecuritySachin Grover2018-10-211-1/+1
* ima: relax requiring a file signature for new files with zero lengthMimi Zohar2018-06-161-1/+2
* apparmor: ensure that undecidable profile attachments failJohn Johansen2018-02-131-16/+37
* ima: fix hash algorithm initializationBoshi Wang2018-02-131-0/+4
* KPTI: Rename to PAGE_TABLE_ISOLATIONKees Cook2018-01-091-1/+1
* x86/kaiser: Reenable PARAVIRTBorislav Petkov2018-01-091-1/+1
* KAISER: Kernel Address IsolationRichard Fellner2018-01-091-0/+10
* KEYS: add missing permission check for request_key() destinationEric Biggers2018-01-011-9/+37
* security: let security modules use PTRACE_MODE_* with bitmasksJann Horn2018-01-012-7/+5
* KEYS: trusted: fix writing past end of buffer in trusted_read()Eric Biggers2018-01-011-11/+12
* KEYS: trusted: sanitize all key materialEric Biggers2018-01-011-27/+21
* KEYS: return full count in keyring_read() if buffer is too smallEric Biggers2018-01-011-20/+19
* KEYS: encrypted: fix dereference of NULL user_key_payloadEric Biggers2018-01-011-0/+7
* lsm: fix smack_inode_removexattr and xattr_getsecurity memleakCasey Schaufler2018-01-011-30/+25
* Smack: remove unneeded NULL-termination from securtity labelKonstantin Khlebnikov2018-01-011-3/+3
* security/keys: properly zero out sensitive key material in big_keyJason A. Donenfeld2018-01-011-1/+1
* KEYS: prevent creating a different user's keyringsEric Biggers2018-01-014-12/+23
* KEYS: fix writing past end of user-supplied buffer in keyring_read()Eric Biggers2018-01-011-9/+5
* KEYS: fix key refcount leak in keyctl_read_key()Eric Biggers2018-01-011-1/+1
* KEYS: fix key refcount leak in keyctl_assume_authority()Eric Biggers2018-01-011-4/+2
* KEYS: don't revoke uninstantiated key in request_key_auth_new()Eric Biggers2018-01-011-1/+0
* KEYS: fix cred refcount leak in request_key_auth_new()Eric Biggers2018-01-011-37/+31
* KEYS: don't let add_key() update an uninstantiated keyDavid Howells2017-11-111-0/+10
* KEYS: prevent KEYCTL_READ on negative keyEric Biggers2017-11-111-0/+5
* sched: move no_new_privs into new atomic flagsKees Cook2017-10-121-2/+2
* ptrace: use fsuid, fsgid, effective creds for fs access checksJann Horn2017-09-151-1/+6
* selinux: fix double free in selinux_parse_opts_str()Paul Moore2017-09-151-3/+2
* KEYS: fix dereferencing NULL payload with nonzero lengthEric Biggers2017-09-151-2/+2
* ima: accept previously set IMA_NEW_FILEDaniel Glöckner2017-08-261-2/+3
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-02 09:19:24 +0000