summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2018-02-13apparmor: ensure that undecidable profile attachments failJohn Johansen
2018-02-13ima: fix hash algorithm initializationBoshi Wang
2018-01-09KPTI: Rename to PAGE_TABLE_ISOLATIONKees Cook
2018-01-09x86/kaiser: Reenable PARAVIRTBorislav Petkov
2018-01-09KAISER: Kernel Address IsolationRichard Fellner
2018-01-01KEYS: add missing permission check for request_key() destinationEric Biggers
2018-01-01security: let security modules use PTRACE_MODE_* with bitmasksJann Horn
2018-01-01KEYS: trusted: fix writing past end of buffer in trusted_read()Eric Biggers
2018-01-01KEYS: trusted: sanitize all key materialEric Biggers
2018-01-01KEYS: return full count in keyring_read() if buffer is too smallEric Biggers
2018-01-01KEYS: encrypted: fix dereference of NULL user_key_payloadEric Biggers
2018-01-01lsm: fix smack_inode_removexattr and xattr_getsecurity memleakCasey Schaufler
2018-01-01Smack: remove unneeded NULL-termination from securtity labelKonstantin Khlebnikov
2018-01-01security/keys: properly zero out sensitive key material in big_keyJason A. Donenfeld
2018-01-01KEYS: prevent creating a different user's keyringsEric Biggers
2018-01-01KEYS: fix writing past end of user-supplied buffer in keyring_read()Eric Biggers
2018-01-01KEYS: fix key refcount leak in keyctl_read_key()Eric Biggers
2018-01-01KEYS: fix key refcount leak in keyctl_assume_authority()Eric Biggers
2018-01-01KEYS: don't revoke uninstantiated key in request_key_auth_new()Eric Biggers
2018-01-01KEYS: fix cred refcount leak in request_key_auth_new()Eric Biggers
2017-11-11KEYS: don't let add_key() update an uninstantiated keyDavid Howells
2017-11-11KEYS: prevent KEYCTL_READ on negative keyEric Biggers
2017-10-12sched: move no_new_privs into new atomic flagsKees Cook
2017-09-15ptrace: use fsuid, fsgid, effective creds for fs access checksJann Horn
2017-09-15selinux: fix double free in selinux_parse_opts_str()Paul Moore
2017-09-15KEYS: fix dereferencing NULL payload with nonzero lengthEric Biggers
2017-08-26ima: accept previously set IMA_NEW_FILEDaniel Glöckner
2017-08-26ima: pass 'opened' flag to identify newly created filesDmitry Kasatkin
2017-07-18KEYS: Change the name of the dead type to ".dead" to prevent user accessDavid Howells
2017-06-05KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyringsEric Biggers
2017-06-05KEYS: Disallow keyrings beginning with '.' to be joined as session keyringsDavid Howells
2017-06-05KEYS: Reinstate EPERM for a key type name beginning with a '.'David Howells
2017-06-05KEYS: special dot prefixed keyring name bug fixMimi Zohar
2017-06-05KEYS: Fix an error code in request_master_key()Dan Carpenter
2017-04-04keys: Guard against null match function in keyring_search_aux()Ben Hutchings
2017-04-04vfs: Commit to never having exectuables on proc and sysfs.Eric W. Biederman
2017-02-26selinux: fix off-by-one in setprocattrStephen Smalley
2017-02-23apparmor: fix change_hat not finding hat after policy replacementJohn Johansen
2016-11-20KEYS: Fix short sprintf buffer in /proc/keys show functionDavid Howells
2016-08-22KEYS: potential uninitialized variableDan Carpenter
2016-02-16EVM: Use crypto_memneq() for digest comparisonsRyan Ware
2016-01-25KEYS: Fix keyring ref leak in join_session_keyring()Yevgeny Pats
2016-01-05KEYS: Fix race between read and revokeDavid Howells
2015-10-28KEYS: Don't permit request_key() to construct a new keyringDavid Howells
2015-10-28KEYS: Fix crash when attempt to garbage collect an uninstantiated keyringDavid Howells
2015-10-28KEYS: Fix race between key destruction and finding a keyring by nameDavid Howells
2015-09-29fs: create and use seq_show_option for escapingKees Cook
2015-08-27ima: extend "mask" policy matching supportMimi Zohar
2015-08-27ima: add support for new "euid" policy conditionMimi Zohar
2015-08-20sysfs: Create mountpoints with sysfs_create_mount_pointEric W. Biederman
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-18 20:07:39 +0000