summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)AuthorFilesLines
2026-03-04apparmor: fix aa_label to return state from compount and component matchJohn Johansen1-6/+6
2026-03-04apparmor: fix invalid deref of rawdata when export_binary is unsetGeorgia Garcia1-0/+9
2026-03-04apparmor: make label_match return a consistent valueJohn Johansen1-11/+9
2026-03-04apparmor: remove apply_modes_to_perms from label_matchJohn Johansen1-3/+0
2026-03-04apparmor: refcount the pdbJohn Johansen15-210/+260
2026-03-04apparmor: provide separate audit messages for file and policy checksJohn Johansen1-5/+11
2026-03-04apparmor: use passed in gfp flags in aa_alloc_null()Dan Carpenter1-2/+2
2026-03-04apparmor: fix rlimit for posix cpu timersJohn Johansen1-0/+5
2026-03-04apparmor: return -ENOMEM in unpack_perms_table upon alloc failureRyan Lee1-2/+4
2026-03-04apparmor: fix NULL sock in aa_sock_file_permJohn Johansen1-2/+4
2026-03-04smack: /smack/doi: accept previously used valuesKonstantin Andreev1-26/+45
2026-03-04smack: /smack/doi must be > 0Konstantin Andreev1-5/+7
2026-01-11KEYS: trusted: Fix a memory leak in tpm2_load_cmdJarkko Sakkinen1-2/+4
2026-01-11ima: Handle error code returned by ima_filter_rule_match()Zhao Yipeng1-1/+1
2026-01-11smack: fix bug: unprivileged task can create labelsKonstantin Andreev1-14/+27
2025-11-24ima: don't clear IMA_DIGSIG flag when setting or removing non-IMA xattrCoiby Xu1-5/+18
2025-10-19KEYS: trusted_tpm1: Compare HMAC values in constant timeEric Biggers1-3/+4
2025-09-19ima: limit the number of ToMToU integrity violationsMimi Zohar2-6/+13
2025-08-28apparmor: use the condition in AA_BUG_FMT even with debug disabledMateusz Guzik1-1/+5
2025-08-28apparmor: shift ouid when mediating hard links in usernsGabriel Totev1-2/+4
2025-08-28securityfs: don't pin dentries twice, once is enough...Al Viro1-2/+0
2025-08-15apparmor: fix loop detection used in conflicting attachment resolutionRyan Lee2-15/+12
2025-08-15apparmor: ensure WB_HISTORY_SIZE value is a power of 2Ryan Lee2-1/+3
2025-06-27selinux: fix selinux_xfrm_alloc_user() to set correct ctx_lenStephen Smalley1-1/+1
2025-06-04smack: Revert "smackfs: Added check catlen"Konstantin Andreev1-14/+3
2025-06-04smack: recognize ipv4 CIPSO w/o categoriesKonstantin Andreev1-0/+4
2025-06-04ima: process_measurement() needlessly takes inode_lock() on MAY_READFrederick Lawler1-1/+3
2025-04-25landlock: Add the errata interfaceMickaël Salaün4-4/+138
2025-04-10smack: dont compile ipv6 code unless ipv6 is configuredKonstantin Andreev2-1/+15
2025-03-13ima: Reset IMA_NONACTION_RULE_FLAGS after post_setattrRoberto Sassu2-2/+8
2025-02-17tomoyo: don't emit warning in tomoyo_write_control()Tetsuo Handa1-1/+1
2025-02-17safesetid: check size of policy writesLeo Stone1-0/+3
2025-02-08landlock: Handle weird filesMickaël Salaün1-6/+5
2025-01-09selinux: ignore unknown extended permissionsThiébaud Weksteen1-2/+6
2024-12-09apparmor: test: Fix memory leak for aa_unpack_strdup()Jinjie Ruan1-0/+6
2024-12-09apparmor: fix 'Do simple duplicate message elimination'chao liu1-0/+2
2024-11-22ima: fix buffer overrun in ima_eventdigest_init_commonSamasth Norway Ananda1-4/+10
2024-11-14security/keys: fix slab-out-of-bounds in key_task_permissionChen Ridong1-2/+5
2024-11-01selinux: improve error checking in sel_write_load()Paul Moore1-14/+16
2024-10-10tomoyo: fallback to realpath if symlink's pathname does not existTetsuo Handa1-3/+6
2024-10-10proc: add config & param to block forcing mem writesAdrian Ratiu1-0/+32
2024-10-04bpf: lsm: Set bpf_lsm_blob_sizes.lbs_task to 0Song Liu1-1/+0
2024-10-04smackfs: Use rcu_assign_pointer() to ensure safe assignment in smk_set_cipsoJiawei Ye1-1/+1
2024-09-12smack: unix sockets: fix accept()ed socket labelKonstantin Andreev1-3/+9
2024-09-08smack: tcp: ipv4, fix incorrect labelingCasey Schaufler1-1/+1
2024-09-08apparmor: fix possible NULL pointer dereferenceLeesoo Ahn1-0/+4
2024-09-04apparmor: fix policy_unpack_test on big endian systemsGuenter Roeck1-3/+3
2024-09-04selinux,smack: don't bypass permissions check in inode_setsecctx hookScott Mayhew2-4/+4
2024-08-29evm: don't copy up 'security.evm' xattrMimi Zohar2-1/+8
2024-08-29selinux: add the processing of the failure of avc_add_xperms_decision()Zhen Lei1-1/+5
generated by cgit v1.2.3 (git 2.39.0) at 2026-03-26 18:38:26 +0300