summaryrefslogtreecommitdiff
path: root/security
AgeCommit message (Expand)Author
2017-08-26ima: accept previously set IMA_NEW_FILEDaniel Glöckner
2017-08-26ima: pass 'opened' flag to identify newly created filesDmitry Kasatkin
2017-07-18KEYS: Change the name of the dead type to ".dead" to prevent user accessDavid Howells
2017-06-05KEYS: fix keyctl_set_reqkey_keyring() to not leak thread keyringsEric Biggers
2017-06-05KEYS: Disallow keyrings beginning with '.' to be joined as session keyringsDavid Howells
2017-06-05KEYS: Reinstate EPERM for a key type name beginning with a '.'David Howells
2017-06-05KEYS: special dot prefixed keyring name bug fixMimi Zohar
2017-06-05KEYS: Fix an error code in request_master_key()Dan Carpenter
2017-04-04keys: Guard against null match function in keyring_search_aux()Ben Hutchings
2017-04-04vfs: Commit to never having exectuables on proc and sysfs.Eric W. Biederman
2017-02-26selinux: fix off-by-one in setprocattrStephen Smalley
2017-02-23apparmor: fix change_hat not finding hat after policy replacementJohn Johansen
2016-11-20KEYS: Fix short sprintf buffer in /proc/keys show functionDavid Howells
2016-08-22KEYS: potential uninitialized variableDan Carpenter
2016-02-16EVM: Use crypto_memneq() for digest comparisonsRyan Ware
2016-01-25KEYS: Fix keyring ref leak in join_session_keyring()Yevgeny Pats
2016-01-05KEYS: Fix race between read and revokeDavid Howells
2015-10-28KEYS: Don't permit request_key() to construct a new keyringDavid Howells
2015-10-28KEYS: Fix crash when attempt to garbage collect an uninstantiated keyringDavid Howells
2015-10-28KEYS: Fix race between key destruction and finding a keyring by nameDavid Howells
2015-09-29fs: create and use seq_show_option for escapingKees Cook
2015-08-27ima: extend "mask" policy matching supportMimi Zohar
2015-08-27ima: add support for new "euid" policy conditionMimi Zohar
2015-08-20sysfs: Create mountpoints with sysfs_create_mount_pointEric W. Biederman
2015-08-11evm: labeling pseudo filesystems exceptionMimi Zohar
2015-08-11KEYS: ensure we free the assoc array edit if edit is validColin Ian King
2015-07-15ima: fix ima_show_template_data_ascii()Mimi Zohar
2015-07-15selinux: fix setting of security labels on NFSJ. Bruce Fields
2015-04-10selinux: fix sel_write_enforce broken return valueJoe Perches
2015-02-24smack: fix possible use after frees in task_security() callersAndrey Ryabinin
2015-01-15KEYS: close race between key lookup and freeingSasha Levin
2015-01-15move d_rcu from overlapping d_child to overlapping d_aliasAl Viro
2015-01-15KEYS: Fix stale key registration at error pathTakashi Iwai
2014-11-17selinux: fix inode security list corruptionStephen Smalley
2014-11-14evm: properly handle INTEGRITY_NOXATTRS EVM statusDmitry Kasatkin
2014-11-13evm: check xattr value length and type in evm_inode_setxattr()Dmitry Kasatkin
2014-11-13ima: check xattr value length and type in the ima_inode_setxattr()Dmitry Kasatkin
2014-10-30ima: provide flag to identify new empty filesDmitry Kasatkin
2014-10-30ima: fix fallback to use new_sync_read()Dmitry Kasatkin
2014-09-17CAPABILITIES: remove undefined caps from all processesEric Paris
2014-06-13Merge branch 'serge-next-2' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds
2014-06-12ima: introduce ima_kernel_read()Dmitry Kasatkin
2014-06-12evm: prohibit userspace writing 'security.evm' HMAC valueMimi Zohar
2014-06-12ima: check inode integrity cache in violation checkDmitry Kasatkin
2014-06-12ima: prevent unnecessary policy checkingDmitry Kasatkin
2014-06-12evm: provide option to protect additional SMACK xattrsDmitry Kasatkin
2014-06-12evm: replace HMAC version with attribute maskDmitry Kasatkin
2014-06-12ima: prevent new digsig xattr from being replacedMimi Zohar
2014-06-12Merge git://git.kernel.org/pub/scm/linux/kernel/git/davem/net-nextLinus Torvalds
2014-06-10Merge branch 'serge-next-1' of git://git.kernel.org/pub/scm/linux/kernel/git/...Linus Torvalds
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-04 19:38:56 +0000