summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* smackfs: restrict bytes count in smk_set_cipso()Tetsuo Handa2021-07-201-0/+2
* selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVCMinchan Kim2021-07-201-6/+7
* security: commoncap: fix -Wstringop-overread warningArnd Bergmann2021-05-221-1/+1
* Revert 95ebabde382c ("capabilities: Don't allow writing ambiguous v3 file cap...Eric W. Biederman2021-03-171-11/+1
* smackfs: restrict bytes count in smackfs write functionsSabyrzhan Tasbolatov2021-03-071-2/+19
* KEYS: trusted: Fix migratable=1 failingJarkko Sakkinen2021-03-031-1/+1
* certs: Fix blacklist flag type confusionDavid Howells2021-03-032-3/+4
* capabilities: Don't allow writing ambiguous v3 file capabilitiesEric W. Biederman2021-03-031-1/+11
* ima: Free IMA measurement buffer after kexec syscallLakshmi Ramasubramanian2021-03-031-0/+2
* ima: Free IMA measurement buffer on errorLakshmi Ramasubramanian2021-03-031-0/+1
* cap: fix conversions on getxattrMiklos Szeredi2021-02-231-24/+43
* dump_common_audit_data(): fix racy accesses to ->d_nameAl Viro2021-01-231-2/+5
* ima: Don't modify file descriptor mode on the flyRoberto Sassu2020-12-291-15/+5
* selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handlingPaul Moore2020-12-291-18/+13
* selinux: fix error initialization in inode_doinit_with_dentry()Tianyue Ren2020-12-291-3/+16
* selinux: Fix error return code in sel_ib_pkey_sid_slow()Chen Zhou2020-11-181-1/+3
* ima: Don't ignore errors from crypto_shash_update()Roberto Sassu2020-10-291-0/+2
* selinux: sel_avc_get_stat_idx should increase position indexVasily Averin2020-10-011-0/+1
* Smack: prevent underflow in smk_set_cipso()Dan Carpenter2020-08-211-1/+1
* Smack: fix another vsscanf out of boundsDan Carpenter2020-08-211-0/+4
* Smack: fix use-after-free in smk_write_relabel_self()Eric Biggers2020-08-211-2/+11
* apparmor: don't try to replace stale label in ptraceme checkJann Horn2020-06-301-2/+2
* selinux: fix double freeTom Rix2020-06-251-0/+4
* apparmor: fix introspection of of task mode for unconfined tasksJohn Johansen2020-06-251-2/+2
* evm: Fix possible memory leak in evm_calc_hmac_or_hash()Roberto Sassu2020-06-201-1/+1
* ima: Directly assign the ima_default_policy pointer to ima_rulesRoberto Sassu2020-06-201-2/+1
* ima: Fix ima digest hash table key calculationKrzysztof Struczynski2020-06-201-3/+4
* Smack: slab-out-of-bounds in vsscanfCasey Schaufler2020-06-201-0/+10
* mm: add kvfree_sensitive() for freeing sensitive data objectsWaiman Long2020-06-202-22/+5
* exec: Always set cap_ambient in cap_bprm_set_credsEric W. Biederman2020-06-031-0/+1
* apparmor: Fix aa_label refcnt leak in policy_updateXiyu Yang2020-05-271-1/+2
* ima: Fix return value of ima_write_policy()Roberto Sassu2020-05-271-2/+1
* evm: Check also if *tfm is an error pointer in init_desc()Roberto Sassu2020-05-271-1/+1
* ima: Set file->f_mode instead of file->f_flags in ima_calc_file_hash()Roberto Sassu2020-05-271-6/+6
* selinux: properly handle multiple messages in selinux_netlink_send()Paul Moore2020-05-051-24/+44
* KEYS: Avoid false positive ENOMEM error on key readWaiman Long2020-05-022-15/+55
* KEYS: Don't write out to userspace while holding key semaphoreWaiman Long2020-04-247-51/+72
* KEYS: Use individual pages in big_key for crypto buffersDavid Howells2020-04-241-23/+87
* KEYS: reaching the keys quotas correctlyYang Xu2020-04-242-3/+3
* selinux: ensure we cleanup the internal AVC counters on error in avc_update()Jaihind Yadav2020-02-281-1/+1
* keys: Timestamp new keysDavid Howells2020-01-271-0/+1
* apparmor: don't try to replace stale label in ptrace access checkJann Horn2020-01-272-2/+4
* apparmor: fix unsigned len comparison with less than zeroColin Ian King2020-01-041-5/+7
* apparmor: delete the dentry in aafs_remove() to avoid a leakChris Coulson2019-12-051-0/+1
* ima: always return negative code for errorSascha Hauer2019-10-111-1/+4
* smack: use GFP_NOFS while holding inode_smack::smk_lockEric Biggers2019-10-072-4/+4
* Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is setJann Horn2019-10-071-1/+2
* security: smack: Fix possible null-pointer dereferences in smack_socket_sock_...Jia-Ju Bai2019-10-071-0/+2
* keys: Fix missing null pointer check in request_key_auth_describe()Hillf Danton2019-09-211-0/+6
* selinux: fix memory leak in policydb_init()Ondrej Mosnacek2019-08-061-1/+5
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-09 23:05:30 +0000