summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2017-11-02KEYS: Fix an error code in request_master_key()Dan Carpenter
2017-11-02KEYS: encrypted: fix dereference of NULL user_key_payloadEric Biggers
2017-11-02KEYS: prevent creating a different user's keyringsEric Biggers
2017-11-02KEYS: don't let add_key() update an uninstantiated keyDavid Howells
2017-11-01KEYS: fix dereferencing NULL payload with nonzero lengthEric Biggers
2017-06-20apparmor: do not expose kernel stackHeinrich Schuchardt
2017-06-20apparmor: fix module parameters can be changed after policy is lockedJohn Johansen
2017-06-20apparmor: fix oops in profile_unpack() when policy_db is not presentJohn Johansen
2017-06-20apparmor: don't check for vmalloc_addr if kvzalloc() failedJohn Johansen
2017-06-20apparmor: add missing id bounds check on dfa verificationJohn Johansen
2017-06-20apparmor: check that xindex is in trans_table boundsJohn Johansen
2017-06-20apparmor: internal paths should be treated as disconnectedJohn Johansen
2017-06-20apparmor: fix disconnected bind mnts reconnectionJohn Johansen
2017-06-20apparmor: exec should not be returning ENOENT when it deniesJohn Johansen
2017-06-20apparmor: fix uninitialized lsm_audit memberJohn Johansen
2017-06-08KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyringsEric Biggers
2017-06-08KEYS: Change the name of the dead type to ".dead" to prevent user accessDavid Howells
2017-06-08KEYS: Disallow keyrings beginning with '.' to be joined as session keyringsDavid Howells
2017-06-08selinux: fix off-by-one in setprocattrStephen Smalley
2017-06-08EVM: Use crypto_memneq() for digest comparisonsRyan Ware
2017-02-10KEYS: Fix short sprintf buffer in /proc/keys show functionDavid Howells
2016-10-20security: let security modules use PTRACE_MODE_* with bitmasksJann Horn
2016-08-21KEYS: potential uninitialized variableDan Carpenter
2016-02-25ptrace: use fsuid, fsgid, effective creds for fs access checksJann Horn
2016-01-22KEYS: Fix keyring ref leak in join_session_keyring()Yevgeny Pats
2016-01-22KEYS: Fix race between read and revokeDavid Howells
2016-01-22KEYS: Fix crash when attempt to garbage collect an uninstantiated keyringDavid Howells
2016-01-22KEYS: Fix race between key destruction and finding a keyring by nameDavid Howells
2015-04-29move d_rcu from overlapping d_child to overlapping d_aliasAl Viro
2015-04-19selinux: fix sel_write_enforce broken return valueJoe Perches
2015-01-29KEYS: close race between key lookup and freeingSasha Levin
2015-01-08KEYS: Fix stale key registration at error pathTakashi Iwai
2014-11-14selinux: fix inode security list corruptionStephen Smalley
2014-11-14evm: check xattr value length and type in evm_inode_setxattr()Dmitry Kasatkin
2014-09-17CAPABILITIES: remove undefined caps from all processesEric Paris
2014-06-26evm: prohibit userspace writing 'security.evm' HMAC valueMimi Zohar
2014-06-26ima: introduce ima_kernel_read()Dmitry Kasatkin
2014-04-14selinux: correctly label /proc inodes in use before the policy is loadedPaul Moore
2014-03-06SELinux: bigendian problems with filename trans rulesEric Paris
2014-02-20SELinux: Fix kernel BUG on empty security contexts.Stephen Smalley
2014-02-13SELinux: Fix memory leak upon loading policyTetsuo Handa
2014-01-25SELinux: Fix possible NULL pointer dereference in selinux_inode_permission()Steven Rostedt
2014-01-09selinux: process labeled IPsec TCP SYN-ACK packets properly in selinux_ip_pos...Paul Moore
2014-01-09selinux: look for IPsec labels on both inbound and outbound packetsPaul Moore
2014-01-09selinux: selinux_setprocattr()->ptrace_parent() needs rcu_read_lock()Oleg Nesterov
2014-01-09selinux: fix broken peer recv checkChad Hanson
2013-12-20selinux: handle TCP SYN-ACK packets correctly in selinux_ip_postroute()Paul Moore
2013-12-20selinux: handle TCP SYN-ACK packets correctly in selinux_ip_output()Paul Moore
2013-12-04selinux: correct locking in selinux_netlbl_socket_connect)Paul Moore
2013-11-29Revert "ima: policy for RAMFS"Mimi Zohar
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-18 07:28:39 +0000