summaryrefslogtreecommitdiffstats
path: root/security
AgeCommit message (Expand)Author
2018-03-24/dev/mem: Add bounce buffer for copy-outKees Cook
2018-03-19ima: relax requiring a file signature for new files with zero lengthMimi Zohar
2018-02-25selinux: skip bounded transition processing if the policy isn't loadedPaul Moore
2018-02-25selinux: ensure the context is NUL terminated in security_context_to_sid_core()Paul Moore
2018-02-03ima/policy: fix parsing of fsuuidMike Rapoport
2018-01-17security/Kconfig: Correct the Documentation reference for PTIW. Trevor King
2018-01-17apparmor: fix ptrace label match when matching stacked labelsJohn Johansen
2018-01-10apparmor: fix regression in mount mediation when feature set is pinnedJohn Johansen
2018-01-05capabilities: fix buffer overread on very short xattrEric Biggers
2018-01-02x86/mm/pti: Add KconfigDave Hansen
2017-12-14apparmor: fix leak of null profile name if profile allocation failsJohn Johansen
2017-12-14KEYS: reject NULL restriction string when type is specifiedEric Biggers
2017-12-14KEYS: add missing permission check for request_key() destinationEric Biggers
2017-12-10ima: fix hash algorithm initializationBoshi Wang
2017-12-05apparmor: fix oops in audit_signal_cb hookJohn Johansen
2017-11-24ima: do not update security.ima if appraisal status is not INTEGRITY_PASSRoberto Sassu
2017-11-08apparmor: fix off-by-one comparison on MAXMAPPED_SIGJohn Johansen
2017-11-02Merge tag 'spdx_identifiers-4.14-rc8' of git://git.kernel.org/pub/scm/linux/k...Linus Torvalds
2017-11-02License cleanup: add SPDX GPL-2.0 license identifier to files with no licenseGreg Kroah-Hartman
2017-11-02KEYS: trusted: fix writing past end of buffer in trusted_read()Eric Biggers
2017-11-02KEYS: return full count in keyring_read() if buffer is too smallEric Biggers
2017-10-26Revert "apparmor: add base infastructure for socket mediation"Linus Torvalds
2017-10-19commoncap: move assignment of fs_ns to avoid null pointer dereferenceColin Ian King
2017-10-19Merge commit 'tags/keys-fixes-20171018' into fixes-v4.14-rc5James Morris
2017-10-18KEYS: load key flags and expiry time atomically in proc_keys_show()Eric Biggers
2017-10-18KEYS: Load key expiry time atomically in keyring_search_iterator()Eric Biggers
2017-10-18KEYS: load key flags and expiry time atomically in key_validate()Eric Biggers
2017-10-18KEYS: don't let add_key() update an uninstantiated keyDavid Howells
2017-10-18KEYS: Fix race between updating and finding a negative keyDavid Howells
2017-10-18security/keys: BIG_KEY requires CONFIG_CRYPTOArnd Bergmann
2017-10-12KEYS: encrypted: fix dereference of NULL user_key_payloadEric Biggers
2017-10-04lsm: fix smack_inode_removexattr and xattr_getsecurity memleakCasey Schaufler
2017-09-28Merge commit 'keys-fixes-20170927' into fixes-v4.14-rc3James Morris
2017-09-25security/keys: rewrite all of big_key cryptoJason A. Donenfeld
2017-09-25security/keys: properly zero out sensitive key material in big_keyJason A. Donenfeld
2017-09-25KEYS: use kmemdup() in request_key_auth_new()Eric Biggers
2017-09-25KEYS: restrict /proc/keys by credentials at open timeEric Biggers
2017-09-25KEYS: reset parent each time before searching key_user_treeEric Biggers
2017-09-25KEYS: prevent KEYCTL_READ on negative keyEric Biggers
2017-09-25KEYS: prevent creating a different user's keyringsEric Biggers
2017-09-25KEYS: fix writing past end of user-supplied buffer in keyring_read()Eric Biggers
2017-09-25KEYS: fix key refcount leak in keyctl_read_key()Eric Biggers
2017-09-25KEYS: fix key refcount leak in keyctl_assume_authority()Eric Biggers
2017-09-25KEYS: don't revoke uninstantiated key in request_key_auth_new()Eric Biggers
2017-09-25KEYS: fix cred refcount leak in request_key_auth_new()Eric Biggers
2017-09-24Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds
2017-09-23security: fix description of values returned by cap_inode_need_killprivStefan Berger
2017-09-23Merge tag 'apparmor-pr-2017-09-22' of git://git.kernel.org/pub/scm/linux/kern...Linus Torvalds
2017-09-22apparmor: fix apparmorfs DAC access permissionsJohn Johansen
2017-09-22apparmor: fix build failure on sparc caused by undeclared signalsJohn Johansen