summaryrefslogtreecommitdiff
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* Fix incorrect type in assignment of ipv6 port for auditCasey Schaufler2022-04-081-1/+1
* selinux: allow FIOCLEX and FIONCLEX with policy capabilityRichard Haines2022-04-084-1/+16
* selinux: use correct type for context lengthChristian Göttsche2022-04-081-1/+1
* LSM: general protection fault in legacy_parse_paramCasey Schaufler2022-04-082-5/+17
* TOMOYO: fix __setup handlers return valuesRandy Dunlap2022-04-081-2/+2
* KEYS: trusted: Avoid calling null function trusted_key_exitDave Kleikamp2022-04-081-1/+1
* KEYS: trusted: Fix trusted key backends when building as moduleAndreas Rammhold2022-04-081-2/+2
* EVM: fix the evm= __setup handler return valueRandy Dunlap2022-04-081-1/+1
* selinux: Fix selinux_sb_mnt_opts_compat()Scott Mayhew2022-04-081-34/+41
* selinux: check return value of sel_make_avc_filesChristian Göttsche2022-04-081-0/+2
* selinux: access superblock_security_struct in LSM blob wayGONG, Ruiqi2022-04-081-2/+2
* landlock: Use square brackets around "landlock-ruleset"Christian Brauner2022-04-081-1/+1
* KEYS: fix length validation in keyctl_pkey_params_get_2()Eric Biggers2022-04-081-3/+11
* selinux: fix misuse of mutex_is_locked()Ondrej Mosnacek2022-03-021-2/+2
* ima: Do not print policy rule with inactive LSM labelsStefan Berger2022-02-161-0/+8
* ima: Allow template selection with ima_template[_fmt]= after ima_hash=Roberto Sassu2022-02-161-3/+7
* ima: Remove ima_policy file before directoryStefan Berger2022-02-161-1/+1
* ima: fix reference leak in asymmetric_verify()Eric Biggers2022-02-161-6/+9
* integrity: check the return value of audit_log_start()Xiaoke Wang2022-02-161-0/+2
* selinux: fix double free of cond_list on error pathsVratislav Bendel2022-02-081-1/+2
* selinux: fix potential memleak in selinux_add_opt()Bernard Zhao2022-01-271-2/+10
* selinux: initialize proto variable in selinux_ip_postroute_compat()Tom Rix2022-01-051-1/+1
* tomoyo: use hwight16() in tomoyo_domain_quota_is_ok()Tetsuo Handa2022-01-051-10/+7
* tomoyo: Check exceeded quota early in tomoyo_domain_quota_is_ok().Dmitry Vyukov2022-01-051-7/+7
* selinux: fix sleeping function called from invalid contextScott Mayhew2021-12-221-14/+19
* selinux: fix NULL-pointer dereference when hashtab allocation failsOndrej Mosnacek2021-11-251-5/+12
* fortify: Explicitly disable Clang supportKees Cook2021-11-211-0/+3
* apparmor: fix error checkTom Rix2021-11-181-2/+2
* smackfs: use netlbl_cfg_cipsov4_del() for deleting cipso_v4_doiTetsuo Handa2021-11-181-1/+1
* ima: fix deadlock when traversing "ima_default_rules".liqiong2021-11-181-9/+18
* smackfs: use __GFP_NOFAIL for smk_cipso_doi()Tetsuo Handa2021-11-181-3/+1
* smackfs: Fix use-after-free in netlbl_catmap_walk()Pawan Gupta2021-11-181-1/+4
* evm: mark evm_fixmode as __ro_after_initAustin Kim2021-11-181-1/+1
* selinux: fix race condition when computing ocontext SIDsOndrej Mosnacek2021-11-181-85/+77
* binder: use cred instead of task for selinux checksTodd Kjos2021-11-122-42/+20
* Merge branch 'ucount-fixes-for-v5.15' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds2021-10-211-0/+8
|\
| * ucounts: Move get_ucounts from cred_alloc_blank to key_change_session_keyringEric W. Biederman2021-10-201-0/+8
* | Merge branch 'master' of git://git.kernel.org/pub/scm/linux/kernel/git/klassert/David S. Miller2021-10-071-1/+3
|\ \
| * | include/uapi/linux/xfrm.h: Fix XFRM_MSG_MAPPING ABI breakageEugene Syromiatnikov2021-09-141-1/+3
* | | selinux,smack: fix subjective/objective credential use mixupsPaul Moore2021-09-232-4/+4
|/ /
* | Merge tag 'kbuild-v5.15' of git://git.kernel.org/pub/scm/linux/kernel/git/mas...Linus Torvalds2021-09-031-11/+0
|\ \
| * | security: remove unneeded subdir-$(CONFIG_...)Masahiro Yamada2021-09-031-11/+0
* | | Merge branch 'akpm' (patches from Andrew)Linus Torvalds2021-09-031-4/+9
|\ \ \
| * | | mm/pagemap: add mmap_assert_locked() annotations to find_vma*()Luigi Rizzo2021-09-031-4/+9
| | |/ | |/|
* | | Merge tag 'integrity-v5.15' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds2021-09-0211-67/+320
|\ \ \
| * | | IMA: reject unknown hash algorithms in ima_get_hash_algoTHOBY Simon2021-08-231-1/+2
| * | | IMA: prevent SETXATTR_CHECK policy rules with unavailable algorithmsTHOBY Simon2021-08-161-0/+6
| * | | IMA: introduce a new policy option func=SETXATTR_CHECKTHOBY Simon2021-08-164-17/+96
| * | | IMA: add a policy option to restrict xattr hash algorithms on appraisalTHOBY Simon2021-08-161-4/+70
| * | | IMA: add support to restrict the hash algorithms used for file appraisalTHOBY Simon2021-08-165-12/+41
View Lorry Controller Status