summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2018-03-22ima: relax requiring a file signature for new files with zero lengthMimi Zohar
2018-03-22apparmor: Make path_max parameter readonlyJohn Johansen
2018-03-22selinux: check for address length in selinux_socket_bind()Alexander Potapenko
2018-02-25selinux: ensure the context is NUL terminated in security_context_to_sid_core()Paul Moore
2018-02-25selinux: skip bounded transition processing if the policy isn't loadedPaul Moore
2018-02-16KEYS: encrypted: fix buffer overread in valid_master_desc()Eric Biggers
2018-02-07selinux: general protection fault in sock_has_permMark Salyzyn
2017-12-20KEYS: Don't permit request_key() to construct a new keyringDavid Howells
2017-12-20Don't leak a key reference if request_key() tries to use a revoked keyringDavid Jeffery
2017-12-16KEYS: add missing permission check for request_key() destinationEric Biggers
2017-12-09ima: fix hash algorithm initializationBoshi Wang
2017-11-24ima: do not update security.ima if appraisal status is not INTEGRITY_PASSRoberto Sassu
2017-11-18security/keys: add CONFIG_KEYS_COMPAT to KconfigBilal Amarni
2017-11-15KEYS: trusted: fix writing past end of buffer in trusted_read()Eric Biggers
2017-11-15KEYS: trusted: sanitize all key materialEric Biggers
2017-11-08KEYS: return full count in keyring_read() if buffer is too smallEric Biggers
2017-10-27KEYS: don't let add_key() update an uninstantiated keyDavid Howells
2017-10-27KEYS: encrypted: fix dereference of NULL user_key_payloadEric Biggers
2017-10-12lsm: fix smack_inode_removexattr and xattr_getsecurity memleakCasey Schaufler
2017-10-05KEYS: prevent KEYCTL_READ on negative keyEric Biggers
2017-10-05KEYS: prevent creating a different user's keyringsEric Biggers
2017-10-05KEYS: fix writing past end of user-supplied buffer in keyring_read()Eric Biggers
2017-07-15KEYS: Fix an error code in request_master_key()Dan Carpenter
2017-06-14KEYS: fix freeing uninitialized memory in key_update()Eric Biggers
2017-06-14KEYS: fix dereferencing NULL payload with nonzero lengthEric Biggers
2017-05-25ima: accept previously set IMA_NEW_FILEDaniel Glöckner
2017-04-30KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyringsEric Biggers
2017-04-30KEYS: Change the name of the dead type to ".dead" to prevent user accessDavid Howells
2017-04-30KEYS: Disallow keyrings beginning with '.' to be joined as session keyringsDavid Howells
2017-04-18selinux: fix off-by-one in setprocattrStephen Smalley
2016-11-23KEYS: Fix short sprintf buffer in /proc/keys show functionDavid Howells
2016-07-12KEYS: potential uninitialized variableDan Carpenter
2016-04-13KEYS: Fix handling of stored error in a negatively instantiated user keyDavid Howells
2016-04-13security: let security modules use PTRACE_MODE_* with bitmasksJann Horn
2016-04-12ptrace: use fsuid, fsgid, effective creds for fs access checksJann Horn
2016-03-04EVM: Use crypto_memneq() for digest comparisonsRyan Ware
2016-01-25KEYS: Fix keyring ref leak in join_session_keyring()Yevgeny Pats
2016-01-22KEYS: Fix race between read and revokeDavid Howells
2015-11-18KEYS: Fix crash when attempt to garbage collect an uninstantiated keyringDavid Howells
2015-11-18KEYS: Fix race between key destruction and finding a keyring by nameDavid Howells
2015-08-27ima: extend "mask" policy matching supportMimi Zohar
2015-08-27ima: add support for new "euid" policy conditionMimi Zohar
2015-08-04evm: labeling pseudo filesystems exceptionMimi Zohar
2015-08-04KEYS: ensure we free the assoc array edit if edit is validColin Ian King
2015-07-20selinux: fix setting of security labels on NFSJ. Bruce Fields
2015-07-03ima: fix ima_show_template_data_ascii()Mimi Zohar
2015-06-28selinux/nlmsg: add XFRM_MSG_MAPPINGNicolas Dichtel
2015-06-28selinux/nlmsg: add XFRM_MSG_MIGRATENicolas Dichtel
2015-06-28selinux/nlmsg: add XFRM_MSG_REPORTNicolas Dichtel
2015-06-28selinux/nlmsg: add XFRM_MSG_[NEW|GET]SADINFONicolas Dichtel
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-12 19:48:48 +0000