summaryrefslogtreecommitdiff
path: root/security
Commit message (Expand)AuthorAgeFilesLines
* KEYS: Avoid false positive ENOMEM error on key readWaiman Long2020-04-292-15/+55
* KEYS: Don't write out to userspace while holding key semaphoreWaiman Long2020-04-237-51/+72
* keys: Fix proc_keys_next to increase position indexVasily Averin2020-04-211-0/+2
* KEYS: reaching the keys quotas correctlyYang Xu2020-04-172-3/+3
* selinux: ensure we cleanup the internal AVC counters on error in avc_update()Jaihind Yadav2020-02-241-1/+1
* selinux: ensure we cleanup the internal AVC counters on error in avc_insert()Paul Moore2020-02-241-27/+24
* selinux: fall back to ref-walk if audit is requiredStephen Smalley2020-02-243-26/+17
* tomoyo: Use atomic_t for statistics counterTetsuo Handa2020-02-051-7/+4
* keys: Timestamp new keysDavid Howells2020-01-271-0/+1
* apparmor: don't try to replace stale label in ptrace access checkJann Horn2020-01-272-2/+4
* apparmor: Fix network performance issue in aa_label_sk_permTony Jones2020-01-271-6/+9
* LSM: generalize flag passing to security_capableMicah Morton2020-01-239-39/+37
* apparmor: fix aa_xattrs_match() may sleep while holding a RCU lockJohn Johansen2020-01-093-42/+46
* apparmor: fix unsigned len comparison with less than zeroColin Ian King2020-01-041-5/+7
* apparmor: delete the dentry in aafs_remove() to avoid a leakChris Coulson2019-12-051-0/+1
* ima: fix freeing ongoing ahash_requestSascha Hauer2019-10-111-0/+5
* ima: always return negative code for errorSascha Hauer2019-10-111-1/+4
* smack: use GFP_NOFS while holding inode_smack::smk_lockEric Biggers2019-10-072-4/+4
* Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is setJann Horn2019-10-071-1/+2
* security: smack: Fix possible null-pointer dereferences in smack_socket_sock_...Jia-Ju Bai2019-10-071-0/+2
* keys: Fix missing null pointer check in request_key_auth_describe()Hillf Danton2019-09-211-0/+6
* apparmor: reset pos on failure to unpack for various functionsMike Salvatore2019-09-161-7/+33
* selinux: fix memory leak in policydb_init()Ondrej Mosnacek2019-08-061-1/+5
* selinux: fix empty write to keycreate fileOndrej Mosnacek2019-07-261-5/+6
* apparmor: enforce nullbyte at end of tag stringJann Horn2019-06-251-1/+1
* apparmor: fix PROFILE_MEDIATES for untrusted inputJohn Johansen2019-06-251-1/+10
* evm: check hash algorithm passed to init_desc()Roberto Sassu2019-06-091-0/+3
* ima: show rules with IMA_INMASK correctlyRoberto Sassu2019-06-091-9/+12
* selinux: avoid uninitialized variable warningArnd Bergmann2019-05-311-9/+5
* apparmorfs: fix use-after-free on symlink traversalAl Viro2019-05-251-4/+9
* securityfs: fix use-after-free on symlink traversalAl Viro2019-05-251-4/+9
* selinux: do not report error on connect(AF_UNSPEC)Paolo Abeni2019-05-161-4/+4
* selinux: never allow relabeling on context mountsOndrej Mosnacek2019-05-081-9/+31
* selinux: avoid silent denials in permissive mode under RCU walkStephen Smalley2019-05-083-3/+25
* selinux: use kernel linux/socket.h for genheaders and mdpPaulo Alcantara2019-05-041-0/+1
* device_cgroup: fix RCU imbalance in error caseJann Horn2019-04-271-1/+1
* selinux: do not override context on context mountsOndrej Mosnacek2019-04-051-1/+8
* security/selinux: fix SECURITY_LSM_NATIVE_LABELS on reused superblockJ. Bruce Fields2019-03-231-1/+4
* selinux: add the missing walk_size + len check in selinux_sctp_bind_connectXin Long2019-03-231-0/+3
* keys: Fix dependency loop between construction record and auth keyDavid Howells2019-03-235-62/+41
* missing barriers in some of unix_sock ->addr and ->path accessesAl Viro2019-03-191-4/+6
* apparmor: Fix aa_label_build() error handling for failed mergesJohn Johansen2019-03-131-1/+4
* KEYS: always initialize keyring_index_key::desc_lenEric Biggers2019-02-274-6/+4
* KEYS: allow reaching the keys quotas exactlyEric Biggers2019-02-271-2/+2
* smack: fix access permissions for keyringZoran Markovic2019-02-121-3/+9
* selinux: always allow mounting submountsOndrej Mosnacek2019-01-261-1/+1
* selinux: fix GPF on invalid policyStephen Smalley2019-01-221-1/+2
* LSM: Check for NULL cred-security on freeJames Morris2019-01-221-0/+7
* Yama: Check for pid death before checking ancestryKees Cook2019-01-221-1/+3
* selinux: policydb - fix byte order and alignment issuesOndrej Mosnacek2019-01-131-15/+36