summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* security: commoncap: fix -Wstringop-overread warningArnd Bergmann2021-05-221-1/+1
* Revert 95ebabde382c ("capabilities: Don't allow writing ambiguous v3 file cap...Eric W. Biederman2021-03-171-11/+1
* smackfs: restrict bytes count in smackfs write functionsSabyrzhan Tasbolatov2021-03-071-2/+19
* KEYS: trusted: Fix migratable=1 failingJarkko Sakkinen2021-03-041-1/+1
* certs: Fix blacklist flag type confusionDavid Howells2021-03-042-3/+4
* capabilities: Don't allow writing ambiguous v3 file capabilitiesEric W. Biederman2021-03-041-1/+11
* ima: Free IMA measurement buffer after kexec syscallLakshmi Ramasubramanian2021-03-041-0/+2
* ima: Free IMA measurement buffer on errorLakshmi Ramasubramanian2021-03-041-0/+1
* cap: fix conversions on getxattrMiklos Szeredi2021-02-231-24/+43
* dump_common_audit_data(): fix racy accesses to ->d_nameAl Viro2021-01-191-2/+5
* ima: Remove __init annotation from ima_pcrread()Roberto Sassu2021-01-191-1/+1
* ima: Don't modify file descriptor mode on the flyRoberto Sassu2020-12-301-15/+5
* selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handlingPaul Moore2020-12-301-18/+13
* selinux: fix error initialization in inode_doinit_with_dentry()Tianyue Ren2020-12-301-3/+16
* selinux: Fix error return code in sel_ib_pkey_sid_slow()Chen Zhou2020-11-181-1/+3
* evm: Check size of security.evm before using itRoberto Sassu2020-11-051-0/+6
* ima: Don't ignore errors from crypto_shash_update()Roberto Sassu2020-10-291-0/+2
* selinux: sel_avc_get_stat_idx should increase position indexVasily Averin2020-10-011-0/+1
* selinux: allow labeling before policy is loadedJonathan Lebon2020-10-011-0/+12
* Smack: prevent underflow in smk_set_cipso()Dan Carpenter2020-08-191-1/+1
* Smack: fix another vsscanf out of boundsDan Carpenter2020-08-191-0/+4
* Smack: fix use-after-free in smk_write_relabel_self()Eric Biggers2020-08-111-2/+11
* apparmor: ensure that dfa state tables have entriesJohn Johansen2020-07-221-0/+5
* apparmor: don't try to replace stale label in ptraceme checkJann Horn2020-06-301-2/+2
* selinux: fix double freeTom Rix2020-06-251-0/+4
* apparmor: fix nnp subset test for unconfinedJohn Johansen2020-06-253-4/+39
* apparmor: check/put label on apparmor_sk_clone_security()Mauricio Faria de Oliveira2020-06-251-0/+5
* apparmor: fix introspection of of task mode for unconfined tasksJohn Johansen2020-06-251-2/+2
* ima: Call ima_calc_boot_aggregate() in ima_eventdigest_init()Roberto Sassu2020-06-224-5/+24
* evm: Fix possible memory leak in evm_calc_hmac_or_hash()Roberto Sassu2020-06-221-1/+1
* ima: Directly assign the ima_default_policy pointer to ima_rulesRoberto Sassu2020-06-221-2/+1
* ima: Fix ima digest hash table key calculationKrzysztof Struczynski2020-06-221-3/+4
* Smack: slab-out-of-bounds in vsscanfCasey Schaufler2020-06-221-0/+10
* mm: add kvfree_sensitive() for freeing sensitive data objectsWaiman Long2020-06-222-22/+5
* evm: Fix RCU list related warningsMadhuparna Bhowmik2020-06-073-4/+11
* exec: Always set cap_ambient in cap_bprm_set_credsEric W. Biederman2020-06-031-0/+1
* apparmor: Fix aa_label refcnt leak in policy_updateXiyu Yang2020-05-271-1/+2
* apparmor: fix potential label refcnt leak in aa_change_profileXiyu Yang2020-05-271-2/+1
* apparmor: Fix use-after-free in aa_audit_rule_initNavid Emamdoost2020-05-271-1/+2
* ima: Fix return value of ima_write_policy()Roberto Sassu2020-05-271-2/+1
* evm: Check also if *tfm is an error pointer in init_desc()Roberto Sassu2020-05-271-1/+1
* ima: Set file->f_mode instead of file->f_flags in ima_calc_file_hash()Roberto Sassu2020-05-271-6/+6
* selinux: properly handle multiple messages in selinux_netlink_send()Paul Moore2020-05-061-25/+45
* KEYS: Avoid false positive ENOMEM error on key readWaiman Long2020-04-292-15/+55
* KEYS: Don't write out to userspace while holding key semaphoreWaiman Long2020-04-237-51/+72
* keys: Fix proc_keys_next to increase position indexVasily Averin2020-04-211-0/+2
* KEYS: reaching the keys quotas correctlyYang Xu2020-04-172-3/+3
* selinux: ensure we cleanup the internal AVC counters on error in avc_update()Jaihind Yadav2020-02-241-1/+1
* selinux: ensure we cleanup the internal AVC counters on error in avc_insert()Paul Moore2020-02-241-27/+24
* selinux: fall back to ref-walk if audit is requiredStephen Smalley2020-02-243-26/+17
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-09 19:56:02 +0000