linux-yocto - Yocto Linux Embedded kernel

Age	Commit message (Expand)	Author
2022-11-10	capabilities: fix potential memleak on error path from vfs_getxattr_alloc()	Gaosheng Cui
2022-10-30	selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context()	GONG, Ruiqi
2022-10-26	hardening: Remove Clang's enable flag for -ftrivial-auto-var-init=zero	Kees Cook
2022-10-26	hardening: Avoid harmless Clang option under CONFIG_INIT_STACK_ALL_ZERO	Kees Cook
2022-10-26	hardening: Clarify Kconfig text for auto-var-init	Kees Cook
2022-10-15	efi: Correct Macmini DMI match in uefi cert quirk	Orlando Chamberlain
2022-08-25	apparmor: Fix memleak in aa_simple_write_to_buffer()	Xiu Jianfeng
2022-08-25	apparmor: fix reference count leak in aa_pivotroot()	Xin Xiong
2022-08-25	apparmor: fix overlapping attachment computation	John Johansen
2022-08-25	apparmor: fix setting unconfined mode on a loaded profile	John Johansen
2022-08-25	apparmor: fix aa_label_asxprint return check	Tom Rix
2022-08-25	apparmor: Fix failed mount permission check error message	John Johansen
2022-08-25	apparmor: fix absroot causing audited secids to begin with =	John Johansen
2022-08-25	apparmor: fix quiet_denied for file rules	John Johansen
2022-08-21	selinux: Add boundary check in put_entry()	Xiu Jianfeng
2022-07-29	lockdown: Fix kexec lockdown bypass with ima policy	Eric Snowberg
2022-07-25	x86/retbleed: Add fine grained Kconfig knobs	Peter Zijlstra
2022-07-21	ima: Fix potential memory leak in ima_init_crypto()	Jianglei Nie
2022-07-21	ima: Fix a potential integer overflow in ima_appraise_measurement	Huaxin Lu
2022-07-21	Revert "evm: Fix memleak in init_desc"	Xiu Jianfeng
2022-06-09	ima: remove the IMA_TEMPLATE Kconfig option	GUO Zihua
2022-06-09	efi: Do not import certificates from UEFI Secure Boot for T2 Macs	Aditya Garg
2022-06-09	lsm,selinux: pass flowi_common instead of flowi to the LSM hooks	Paul Moore
2022-05-30	lockdown: also lock down previous kgdb use	Daniel Thompson
2022-05-25	include/uapi/linux/xfrm.h: Fix XFRM_MSG_MAPPING ABI breakage	Eugene Syromiatnikov
2022-05-25	selinux: fix bad cleanup on error in hashtab_duplicate()	Ondrej Mosnacek
2022-04-08	Fix incorrect type in assignment of ipv6 port for audit	Casey Schaufler
2022-04-08	selinux: allow FIOCLEX and FIONCLEX with policy capability	Richard Haines
2022-04-08	selinux: use correct type for context length	Christian Göttsche
2022-04-08	LSM: general protection fault in legacy_parse_param	Casey Schaufler
2022-04-08	TOMOYO: fix __setup handlers return values	Randy Dunlap
2022-04-08	EVM: fix the evm= __setup handler return value	Randy Dunlap
2022-04-08	selinux: check return value of sel_make_avc_files	Christian Göttsche
2022-04-08	KEYS: fix length validation in keyctl_pkey_params_get_2()	Eric Biggers
2022-02-16	ima: Do not print policy rule with inactive LSM labels	Stefan Berger
2022-02-16	ima: Allow template selection with ima_template[_fmt]= after ima_hash=	Roberto Sassu
2022-02-16	ima: Remove ima_policy file before directory	Stefan Berger
2022-02-16	integrity: check the return value of audit_log_start()	Xiaoke Wang
2022-02-08	selinux: fix double free of cond_list on error paths	Vratislav Bendel
2022-01-27	selinux: fix potential memleak in selinux_add_opt()	Bernard Zhao
2022-01-05	selinux: initialize proto variable in selinux_ip_postroute_compat()	Tom Rix
2022-01-05	tomoyo: use hwight16() in tomoyo_domain_quota_is_ok()	Tetsuo Handa
2022-01-05	tomoyo: Check exceeded quota early in tomoyo_domain_quota_is_ok().	Dmitry Vyukov
2021-11-26	selinux: fix NULL-pointer dereference when hashtab allocation fails	Ondrej Mosnacek
2021-11-21	fortify: Explicitly disable Clang support	Kees Cook
2021-11-18	apparmor: fix error check	Tom Rix
2021-11-18	smackfs: use netlbl_cfg_cipsov4_del() for deleting cipso_v4_doi	Tetsuo Handa
2021-11-18	smackfs: use __GFP_NOFAIL for smk_cipso_doi()	Tetsuo Handa
2021-11-18	smackfs: Fix use-after-free in netlbl_catmap_walk()	Pawan Gupta
2021-11-18	evm: mark evm_fixmode as __ro_after_init	Austin Kim