summaryrefslogtreecommitdiffstats
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* apparmor: ensure that dfa state tables have entriesJohn Johansen2020-07-221-0/+5
* selinux: fix double freeTom Rix2020-06-241-0/+4
* apparmor: fix nnp subset test for unconfinedJohn Johansen2020-06-243-4/+39
* apparmor: check/put label on apparmor_sk_clone_security()Mauricio Faria de Oliveira2020-06-241-0/+5
* apparmor: fix introspection of of task mode for unconfined tasksJohn Johansen2020-06-241-2/+2
* ima: Set again build_ima_appraise variableKrzysztof Struczynski2020-06-221-2/+8
* ima: Remove redundant policy rule set in add_rules()Krzysztof Struczynski2020-06-221-4/+1
* evm: Fix possible memory leak in evm_calc_hmac_or_hash()Roberto Sassu2020-06-221-1/+1
* ima: Remove __init annotation from ima_pcrread()Roberto Sassu2020-06-221-1/+1
* ima: Call ima_calc_boot_aggregate() in ima_eventdigest_init()Roberto Sassu2020-06-224-5/+24
* ima: Directly assign the ima_default_policy pointer to ima_rulesRoberto Sassu2020-06-221-2/+1
* ima: Evaluate error in init_ima()Roberto Sassu2020-06-221-0/+3
* ima: Switch to ima_hash_algo for boot aggregateRoberto Sassu2020-06-222-11/+58
* ima: Fix ima digest hash table key calculationKrzysztof Struczynski2020-06-221-3/+4
* selinux: fix error return code in policydb_read()Wei Yongjun2020-06-221-0/+1
* lockdown: Allow unprivileged users to see lockdown statusJeremy Cline2020-06-221-1/+1
* Smack: slab-out-of-bounds in vsscanfCasey Schaufler2020-06-171-0/+10
* mm: add kvfree_sensitive() for freeing sensitive data objectsWaiman Long2020-06-172-22/+5
* smack: avoid unused 'sip' variable warningArnd Bergmann2020-06-172-23/+8
* evm: Fix RCU list related warningsMadhuparna Bhowmik2020-06-073-4/+11
* powerpc/xmon: Restrict when kernel is locked downChristopher M. Riedl2020-06-071-0/+2
* exec: Always set cap_ambient in cap_bprm_set_credsEric W. Biederman2020-06-031-0/+1
* apparmor: Fix aa_label refcnt leak in policy_updateXiyu Yang2020-05-271-1/+2
* apparmor: fix potential label refcnt leak in aa_change_profileXiyu Yang2020-05-271-2/+1
* apparmor: Fix use-after-free in aa_audit_rule_initNavid Emamdoost2020-05-271-1/+2
* evm: Fix a small race in init_desc()Dan Carpenter2020-05-271-22/+22
* ima: Fix return value of ima_write_policy()Roberto Sassu2020-05-271-2/+1
* evm: Check also if *tfm is an error pointer in init_desc()Roberto Sassu2020-05-271-1/+1
* ima: Set file->f_mode instead of file->f_flags in ima_calc_file_hash()Roberto Sassu2020-05-271-6/+6
* selinux: properly handle multiple messages in selinux_netlink_send()Paul Moore2020-05-061-25/+45
* KEYS: Avoid false positive ENOMEM error on key readWaiman Long2020-04-292-15/+55
* KEYS: Don't write out to userspace while holding key semaphoreWaiman Long2020-04-237-51/+72
* keys: Fix proc_keys_next to increase position indexVasily Averin2020-04-211-0/+2
* KEYS: reaching the keys quotas correctlyYang Xu2020-04-172-3/+3
* efi: Only print errors about failing to get certs if EFI vars are foundJavier Martinez Canillas2020-03-121-14/+26
* ima: ima/lsm policy rule loading logic bug fixesJanne Karhunen2020-03-051-18/+26
* selinux: ensure we cleanup the internal AVC counters on error in avc_update()Jaihind Yadav2020-02-241-1/+1
* selinux: ensure we cleanup the internal AVC counters on error in avc_insert()Paul Moore2020-02-241-27/+24
* selinux: fall back to ref-walk if audit is requiredStephen Smalley2020-02-143-26/+17
* selinux: fix regression introduced by move_mount(2) syscallStephen Smalley2020-02-141-0/+10
* selinux: revert "stop passing MAY_NOT_BLOCK to the AVC upon follow_link"Stephen Smalley2020-02-143-4/+30
* broken ping to ipv6 linklocal addresses on debian busterCasey Schaufler2020-02-111-22/+19
* tomoyo: Use atomic_t for statistics counterTetsuo Handa2020-02-051-7/+4
* tomoyo: Suppress RCU warning at list_for_each_entry_rcu().Tetsuo Handa2020-01-174-13/+26
* apparmor: fix aa_xattrs_match() may sleep while holding a RCU lockJohn Johansen2020-01-093-42/+46
* tomoyo: Don't use nifty names on sockets.Tetsuo Handa2020-01-041-31/+1
* apparmor: fix unsigned len comparison with less than zeroColin Ian King2020-01-041-5/+7
* efi/efi_test: Lock down /dev/efi_test and require CAP_SYS_ADMINJavier Martinez Canillas2019-10-311-0/+1
* Merge tag 'selinux-pr-20191007' of git://git.kernel.org/pub/scm/linux/kernel/...Linus Torvalds2019-10-081-1/+8
|\
| * selinux: fix context string corruption in convert_context()Ondrej Mosnacek2019-10-031-1/+8
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-21 16:01:45 +0000