summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* selinux: ensure av_permissions.h is built when neededPaul Moore2023-05-171-1/+1
* selinux: fix Makefile dependencies of flask.hOndrej Mosnacek2023-05-171-2/+2
* keys: Do not cache key in task struct if key is requested from kernel threadDavid Howells2023-04-051-3/+6
* ima: Align ima_file_mmap() parameters with mmap_file LSM hookRoberto Sassu2023-03-112-5/+9
* tomoyo: fix broken dependency on *.conf.defaultMasahiro Yamada2023-02-011-1/+1
* device_cgroup: Roll back to original exceptions after copy failureWang Weiyang2023-01-141-4/+29
* ima: Fix a potential NULL pointer access in ima_restore_measurement_listHuaxin Lu2023-01-141-1/+4
* efi: Add iMac Pro 2017 to uefi skip cert quirkAditya Garg2023-01-141-0/+1
* ima: Simplify ima_lsm_copy_ruleGUO Zihua2023-01-141-7/+3
* LoadPin: Ignore the "contents" argument of the LSM hooksKees Cook2023-01-141-12/+18
* apparmor: Fix memleak in alloc_ns()Xiu Jianfeng2023-01-141-1/+1
* apparmor: Use pointer to struct aa_label for lbs_credXiu Jianfeng2023-01-141-2/+2
* apparmor: Fix abi check to include v8 abiJohn Johansen2023-01-141-1/+1
* apparmor: fix lockdep warning when removing a namespaceJohn Johansen2023-01-141-1/+1
* apparmor: fix a memleak in multi_transaction_new()Gaosheng Cui2023-01-141-1/+3
* ima: Fix misuse of dereference of pointer in template_desc_init_fields()Xiu Jianfeng2023-01-141-2/+2
* integrity: Fix memory leakage in keyring allocation error pathGUO Zihua2023-01-141-1/+5
* ima: Handle -ESTALE returned by ima_filter_rule_match()GUO Zihua2023-01-141-9/+32
* ima: Fix fall-through warnings for ClangGustavo A. R. Silva2023-01-142-0/+3
* capabilities: fix potential memleak on error path from vfs_getxattr_alloc()Gaosheng Cui2022-11-101-2/+4
* selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context()GONG, Ruiqi2022-10-303-5/+6
* hardening: Remove Clang's enable flag for -ftrivial-auto-var-init=zeroKees Cook2022-10-261-4/+10
* hardening: Avoid harmless Clang option under CONFIG_INIT_STACK_ALL_ZEROKees Cook2022-10-261-1/+4
* hardening: Clarify Kconfig text for auto-var-initKees Cook2022-10-261-20/+32
* efi: Correct Macmini DMI match in uefi cert quirkOrlando Chamberlain2022-10-151-1/+1
* apparmor: Fix memleak in aa_simple_write_to_buffer()Xiu Jianfeng2022-08-251-1/+1
* apparmor: fix reference count leak in aa_pivotroot()Xin Xiong2022-08-251-0/+1
* apparmor: fix overlapping attachment computationJohn Johansen2022-08-252-2/+2
* apparmor: fix setting unconfined mode on a loaded profileJohn Johansen2022-08-251-5/+7
* apparmor: fix aa_label_asxprint return checkTom Rix2022-08-251-3/+3
* apparmor: Fix failed mount permission check error messageJohn Johansen2022-08-251-3/+4
* apparmor: fix absroot causing audited secids to begin with =John Johansen2022-08-252-3/+9
* apparmor: fix quiet_denied for file rulesJohn Johansen2022-08-251-1/+1
* selinux: Add boundary check in put_entry()Xiu Jianfeng2022-08-211-0/+2
* lockdown: Fix kexec lockdown bypass with ima policyEric Snowberg2022-07-291-0/+4
* x86/retbleed: Add fine grained Kconfig knobsPeter Zijlstra2022-07-251-11/+0
* ima: Fix potential memory leak in ima_init_crypto()Jianglei Nie2022-07-211-0/+1
* ima: Fix a potential integer overflow in ima_appraise_measurementHuaxin Lu2022-07-211-1/+2
* Revert "evm: Fix memleak in init_desc"Xiu Jianfeng2022-07-211-5/+2
* ima: remove the IMA_TEMPLATE Kconfig optionGUO Zihua2022-06-091-8/+6
* efi: Do not import certificates from UEFI Secure Boot for T2 MacsAditya Garg2022-06-092-0/+41
* lsm,selinux: pass flowi_common instead of flowi to the LSM hooksPaul Moore2022-06-094-17/+19
* lockdown: also lock down previous kgdb useDaniel Thompson2022-05-301-0/+2
* include/uapi/linux/xfrm.h: Fix XFRM_MSG_MAPPING ABI breakageEugene Syromiatnikov2022-05-251-1/+3
* selinux: fix bad cleanup on error in hashtab_duplicate()Ondrej Mosnacek2022-05-251-1/+2
* Fix incorrect type in assignment of ipv6 port for auditCasey Schaufler2022-04-081-1/+1
* selinux: allow FIOCLEX and FIONCLEX with policy capabilityRichard Haines2022-04-084-1/+16
* selinux: use correct type for context lengthChristian Göttsche2022-04-081-1/+1
* LSM: general protection fault in legacy_parse_paramCasey Schaufler2022-04-082-5/+17
* TOMOYO: fix __setup handlers return valuesRandy Dunlap2022-04-081-2/+2
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-29 03:48:16 +0000