summaryrefslogtreecommitdiff
path: root/security (follow)
Commit message (Expand)AuthorAge
* ima: always return negative code for errorSascha Hauer2019-10-17
* smack: use GFP_NOFS while holding inode_smack::smk_lockEric Biggers2019-10-07
* Smack: Don't ignore other bprm->unsafe flags if LSM_UNSAFE_PTRACE is setJann Horn2019-10-07
* security: smack: Fix possible null-pointer dereferences in smack_socket_sock_...Jia-Ju Bai2019-10-07
* keys: Fix missing null pointer check in request_key_auth_describe()Hillf Danton2019-09-21
* selinux: fix memory leak in policydb_init()Ondrej Mosnacek2019-08-06
* apparmor: enforce nullbyte at end of tag stringJann Horn2019-07-10
* selinux: never allow relabeling on context mountsOndrej Mosnacek2019-05-16
* device_cgroup: fix RCU imbalance in error caseJann Horn2019-04-27
* missing barriers in some of unix_sock ->addr and ->path accessesAl Viro2019-03-23
* KEYS: restrict /proc/keys by credentials at open timeEric Biggers2019-03-23
* KEYS: always initialize keyring_index_key::desc_lenEric Biggers2019-03-23
* KEYS: allow reaching the keys quotas exactlyEric Biggers2019-03-23
* smack: fix access permissions for keyringZoran Markovic2019-02-20
* selinux: fix GPF on invalid policyStephen Smalley2019-01-26
* LSM: Check for NULL cred-security on freeJames Morris2019-01-26
* Yama: Check for pid death before checking ancestryKees Cook2019-01-26
* mm: replace get_user_pages() write/force parameters with gup_flagsLorenzo Stoakes2018-12-17
* ima: fix showing large 'violations' or 'runtime_measurements_count'Eric Biggers2018-11-21
* KEYS: put keyring if install_session_keyring_to_cred() failsEric Biggers2018-11-10
* selinux: use GFP_NOWAIT in the AVC kmem_cachesMichal Hocko2018-09-19
* Smack: Mark inode instant in smack_task_to_inodeCasey Schaufler2018-08-24
* selinux: KASAN: slab-out-of-bounds in xattr_getsecuritySachin Grover2018-06-06
* Revert "ima: limit file hash setting by user to fix and log modes"Mimi Zohar2018-06-06
* ima: Fallback to the builtin hash algorithmPetr Vorel2018-05-30
* ima: Fix Kconfig to select TPM 2.0 CRB interfaceJiandi An2018-05-30
* selinux: do not check open permission on socketsStephen Smalley2018-04-13
* selinux: Remove redundant check for unknown labeling behaviorMatthias Kaehlcke2018-04-08
* selinux: Remove unnecessary check of array base in selinux_set_mapping()Matthias Kaehlcke2018-04-08
* ima: relax requiring a file signature for new files with zero lengthMimi Zohar2018-03-22
* apparmor: Make path_max parameter readonlyJohn Johansen2018-03-22
* selinux: check for address length in selinux_socket_bind()Alexander Potapenko2018-03-22
* selinux: skip bounded transition processing if the policy isn't loadedPaul Moore2018-02-25
* selinux: ensure the context is NUL terminated in security_context_to_sid_core()Paul Moore2018-02-25
* KEYS: encrypted: fix buffer overread in valid_master_desc()Eric Biggers2018-02-16
* selinux: general protection fault in sock_has_permMark Salyzyn2018-02-03
* KPTI: Rename to PAGE_TABLE_ISOLATIONKees Cook2018-01-05
* x86/kaiser: Reenable PARAVIRTBorislav Petkov2018-01-05
* kaiser: delete KAISER_REAL_SWITCH optionHugh Dickins2018-01-05
* kaiser: KAISER depends on SMPHugh Dickins2018-01-05
* kaiser: merged updateDave Hansen2018-01-05
* KAISER: Kernel Address IsolationRichard Fellner2018-01-05
* KEYS: add missing permission check for request_key() destinationEric Biggers2017-12-20
* ima: fix hash algorithm initializationBoshi Wang2017-12-09
* ima: do not update security.ima if appraisal status is not INTEGRITY_PASSRoberto Sassu2017-11-24
* security/keys: add CONFIG_KEYS_COMPAT to KconfigBilal Amarni2017-11-18
* KEYS: trusted: fix writing past end of buffer in trusted_read()Eric Biggers2017-11-15
* KEYS: trusted: sanitize all key materialEric Biggers2017-11-15
* KEYS: return full count in keyring_read() if buffer is too smallEric Biggers2017-11-08
* KEYS: Fix race between updating and finding a negative keyDavid Howells2017-10-27
generated by cgit v1.2.3 (git 2.25.1) at 2026-03-13 07:20:50 +0000