Age | Commit message (Expand) | Author | Files | Lines |
2021-11-26 | smackfs: use netlbl_cfg_cipsov4_del() for deleting cipso_v4_doi | Tetsuo Handa | 1 | -1/+1 |
2021-11-26 | smackfs: use __GFP_NOFAIL for smk_cipso_doi() | Tetsuo Handa | 1 | -3/+1 |
2021-11-26 | smackfs: Fix use-after-free in netlbl_catmap_walk() | Pawan Gupta | 1 | -1/+4 |
2021-11-26 | evm: mark evm_fixmode as __ro_after_init | Austin Kim | 1 | -1/+1 |
2021-11-26 | binder: use cred instead of task for selinux checks | Todd Kjos | 2 | -25/+20 |
2021-09-22 | Smack: Fix wrong semantics in smk_access_entry() | Tianjia Zhang | 1 | -9/+8 |
2021-09-22 | IMA: remove -Wmissing-prototypes warning | Austin Kim | 1 | -1/+1 |
2021-07-20 | smackfs: restrict bytes count in smk_set_cipso() | Tetsuo Handa | 1 | -0/+2 |
2021-07-20 | selinux: use __GFP_NOWARN with GFP_NOWAIT in the AVC | Minchan Kim | 1 | -6/+7 |
2021-03-07 | smackfs: restrict bytes count in smackfs write functions | Sabyrzhan Tasbolatov | 1 | -2/+19 |
2021-03-03 | KEYS: trusted: Fix migratable=1 failing | Jarkko Sakkinen | 1 | -1/+1 |
2021-01-23 | dump_common_audit_data(): fix racy accesses to ->d_name | Al Viro | 1 | -2/+5 |
2020-10-29 | ima: Don't ignore errors from crypto_shash_update() | Roberto Sassu | 1 | -0/+2 |
2020-10-01 | selinux: sel_avc_get_stat_idx should increase position index | Vasily Averin | 1 | -0/+1 |
2020-08-21 | Smack: prevent underflow in smk_set_cipso() | Dan Carpenter | 1 | -1/+1 |
2020-08-21 | Smack: fix another vsscanf out of bounds | Dan Carpenter | 1 | -0/+4 |
2020-08-21 | Smack: fix use-after-free in smk_write_relabel_self() | Eric Biggers | 1 | -2/+11 |
2020-06-30 | selinux: fix double free | Tom Rix | 1 | -0/+4 |
2020-06-20 | evm: Fix possible memory leak in evm_calc_hmac_or_hash() | Roberto Sassu | 1 | -1/+1 |
2020-06-20 | ima: Directly assign the ima_default_policy pointer to ima_rules | Roberto Sassu | 1 | -2/+1 |
2020-06-20 | ima: Fix ima digest hash table key calculation | Krzysztof Struczynski | 1 | -3/+4 |
2020-06-20 | Smack: slab-out-of-bounds in vsscanf | Casey Schaufler | 1 | -0/+10 |
2020-06-03 | exec: Always set cap_ambient in cap_bprm_set_creds | Eric W. Biederman | 1 | -0/+1 |
2020-05-27 | ima: Fix return value of ima_write_policy() | Roberto Sassu | 1 | -2/+1 |
2020-05-27 | evm: Check also if *tfm is an error pointer in init_desc() | Roberto Sassu | 1 | -1/+1 |
2020-05-05 | selinux: properly handle multiple messages in selinux_netlink_send() | Paul Moore | 1 | -24/+44 |
2020-04-24 | KEYS: reaching the keys quotas correctly | Yang Xu | 2 | -3/+3 |
2020-02-28 | selinux: ensure we cleanup the internal AVC counters on error in avc_update() | Jaihind Yadav | 1 | -1/+1 |
2020-01-29 | keys: Timestamp new keys | David Howells | 1 | -0/+1 |
2019-10-17 | ima: always return negative code for error | Sascha Hauer | 1 | -1/+4 |
2019-10-07 | smack: use GFP_NOFS while holding inode_smack::smk_lock | Eric Biggers | 2 | -3/+3 |
2019-10-07 | Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is set | Jann Horn | 1 | -1/+2 |
2019-10-07 | security: smack: Fix possible null-pointer dereferences in smack_socket_sock_... | Jia-Ju Bai | 1 | -0/+2 |
2019-09-21 | keys: Fix missing null pointer check in request_key_auth_describe() | Hillf Danton | 1 | -0/+6 |
2019-08-06 | selinux: fix memory leak in policydb_init() | Ondrej Mosnacek | 1 | -1/+5 |
2019-07-10 | apparmor: enforce nullbyte at end of tag string | Jann Horn | 1 | -1/+1 |
2019-05-08 | selinux: never allow relabeling on context mounts | Ondrej Mosnacek | 1 | -9/+31 |
2019-04-27 | device_cgroup: fix RCU imbalance in error case | Jann Horn | 1 | -1/+1 |
2019-04-05 | selinux: do not override context on context mounts | Ondrej Mosnacek | 1 | -1/+8 |
2019-03-19 | missing barriers in some of unix_sock ->addr and ->path accesses | Al Viro | 1 | -4/+6 |
2019-03-19 | KEYS: restrict /proc/keys by credentials at open time | Eric Biggers | 1 | -6/+2 |
2019-02-27 | KEYS: always initialize keyring_index_key::desc_len | Eric Biggers | 4 | -6/+4 |
2019-02-27 | KEYS: allow reaching the keys quotas exactly | Eric Biggers | 1 | -2/+2 |
2019-02-12 | smack: fix access permissions for keyring | Zoran Markovic | 1 | -3/+9 |
2019-01-26 | selinux: always allow mounting submounts | Ondrej Mosnacek | 1 | -1/+1 |
2019-01-23 | selinux: fix GPF on invalid policy | Stephen Smalley | 1 | -1/+2 |
2019-01-23 | LSM: Check for NULL cred-security on free | James Morris | 1 | -0/+7 |
2019-01-23 | Yama: Check for pid death before checking ancestry | Kees Cook | 1 | -1/+3 |
2018-12-01 | ima: re-initialize iint->atomic_flags | Mimi Zohar | 1 | -0/+1 |
2018-12-01 | ima: re-introduce own integrity cache lock | Dmitry Kasatkin | 4 | -40/+77 |