summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
4 daysselinux: ignore unknown extended permissionsThiébaud Weksteen1-2/+6
2024-12-14apparmor: test: Fix memory leak for aa_unpack_strdup()Jinjie Ruan1-0/+6
2024-12-14apparmor: fix 'Do simple duplicate message elimination'chao liu1-0/+2
2024-11-22ima: fix buffer overrun in ima_eventdigest_init_commonSamasth Norway Ananda1-4/+10
2024-11-14security/keys: fix slab-out-of-bounds in key_task_permissionChen Ridong1-2/+5
2024-11-01selinux: improve error checking in sel_write_load()Paul Moore1-13/+14
2024-10-17tomoyo: fallback to realpath if symlink's pathname does not existTetsuo Handa1-3/+6
2024-10-17proc: add config & param to block forcing mem writesAdrian Ratiu1-0/+32
2024-10-17bpf: lsm: Set bpf_lsm_blob_sizes.lbs_task to 0Song Liu1-1/+0
2024-10-17selinux,smack: don't bypass permissions check in inode_setsecctx hookScott Mayhew2-4/+4
2024-10-17smackfs: Use rcu_assign_pointer() to ensure safe assignment in smk_set_cipsoJiawei Ye1-1/+1
2024-09-12smack: unix sockets: fix accept()ed socket labelKonstantin Andreev1-3/+9
2024-09-08smack: tcp: ipv4, fix incorrect labelingCasey Schaufler1-1/+1
2024-09-08apparmor: fix possible NULL pointer dereferenceLeesoo Ahn1-0/+4
2024-09-04apparmor: fix policy_unpack_test on big endian systemsGuenter Roeck1-3/+3
2024-08-29selinux: fix potential counting error in avc_add_xperms_decision()Zhen Lei1-1/+1
2024-08-03apparmor: Fix null pointer deref when receiving skb during sock creationXiao Liang1-0/+7
2024-08-03task_work: s/task_work_cancel()/task_work_cancel_func()/Frederic Weisbecker1-1/+1
2024-08-03apparmor: use kvfree_sensitive to free data->dataFedor Pchelkin2-1/+2
2024-08-03landlock: Don't lose track of restrictions on cred_transferJann Horn1-2/+9
2024-07-11ima: Avoid blocking in RCU read-side critical sectionGUO Zihua8-17/+27
2024-07-05ima: Fix use-after-free on a dentry's dname.nameStefan Berger2-7/+26
2024-06-21landlock: Fix d_parent walkMickaël Salaün1-2/+11
2024-05-25KEYS: trusted: Do not use WARN when encode failsJarkko Sakkinen1-1/+2
2024-05-25KEYS: trusted: Fix memory leak in tpm2_key_encode()Jarkko Sakkinen1-6/+18
2024-05-17keys: Fix overwrite of key expiration on instantiationSilvio Gissi1-1/+2
2024-04-03landlock: Warn once if a Landlock action is requested while disabledMickaël Salaün1-3/+15
2024-04-03smack: Handle SMACK64TRANSMUTE in smack_inode_setsecurity()Roberto Sassu1-0/+9
2024-04-03smack: Set SMACK64TRANSMUTE only for dirs in smack_inode_setxattr()Roberto Sassu1-1/+2
2024-03-06landlock: Fix asymmetric private inodes referringMickaël Salaün1-2/+2
2024-03-06tomoyo: fix UAF write bug in tomoyo_write_control()Tetsuo Handa1-1/+2
2024-02-23apparmor: Free up __cleanup() namePeter Zijlstra1-3/+3
2024-02-23lsm: fix the logic in security_inode_getsecctx()Ondrej Mosnacek1-1/+13
2024-02-01lsm: new security_file_ioctl_compat() hookAlfred Piccioni4-0/+48
2024-01-26Revert "KEYS: encrypted: Add check for strsep"Mimi Zohar1-4/+0
2024-01-26apparmor: avoid crash when parsed profile name is emptyFedor Pchelkin1-0/+4
2024-01-26selinux: Fix error priority for bind with AF_UNSPEC on PF_INET6 socketMickaël Salaün1-0/+7
2024-01-26KEYS: encrypted: Add check for strsepChen Ni1-0/+4
2024-01-01keys, dns: Allow key types (eg. DNS) to be reclaimed immediately on expiryDavid Howells4-22/+37
2023-11-28ima: detect changes to the backing overlay fileMimi Zohar3-1/+22
2023-11-28ima: annotate iint mutex to avoid lockdep false positive warningsAmir Goldstein1-11/+37
2023-11-28KEYS: trusted: Rollback init_trusted() consistentlyJarkko Sakkinen1-10/+10
2023-11-28KEYS: trusted: tee: Refactor register SHM usageSumit Garg1-44/+20
2023-11-20apparmor: fix invalid reference on profile->disconnectedGeorgia Garcia2-2/+4
2023-11-20apparmor: test: make static symbols visible during kunit testingRae Moar5-168/+196
2023-10-20KEYS: trusted: Remove redundant static calls usageSumit Garg1-8/+5
2023-10-10ima: rework CONFIG_IMA dependency blockArnd Bergmann1-12/+6
2023-10-10ima: Finish deprecation of IMA_TRUSTED_KEYRING KconfigOleksandr Tymoshenko1-2/+2
2023-10-06smack: Retrieve transmuting information in smack_inode_getsecurity()Roberto Sassu1-4/+18
2023-10-06smack: Record transmuting in smk_transmutedRoberto Sassu2-12/+30
generated by cgit v1.2.3 (git 2.39.0) at 2025-01-13 15:35:10 +0300