linux-next/include at 57bb8e37d71eac45b6ea9180698a9cc3db945e26 - linux-next - MyRedstone

Kernel/linux-next

mirror of https://git.kernel.org/pub/scm/linux/kernel/git/next/linux-next.git synced 2025-01-17 13:58:46 +00:00

History

Tyler Hicks 7f3ebcf2b1 apparmor: Check buffer bounds when mapping permissions mask

Don't read past the end of the buffer containing permissions
characters or write past the end of the destination string.

Detected by CoverityScan CID#1415361, 1415376 ("Out-of-bounds access")

Fixes: e53cfe6c7caa ("apparmor: rework perm mapping to a slightly broader set")
Signed-off-by: Tyler Hicks <tyhicks@canonical.com>
Acked-by: Serge Hallyn <serge@hallyn.com>
Signed-off-by: John Johansen <john.johansen@canonical.com>

2018-07-19 16:24:43 -07:00

..

apparmor.h

apparmor: add base infastructure for socket mediation

2018-03-13 17:25:48 -07:00

apparmorfs.h

apparmor: add policy revision file interface

2017-06-10 17:11:27 -07:00

audit.h

apparmor: Add support for audit rule filtering

2018-06-07 01:50:47 -07:00

capability.h

apparmor: move capability checks to using labels

2017-06-10 17:11:40 -07:00

cred.h

apparmor: move context.h to cred.h

2018-02-09 11:30:01 -08:00

crypto.h

apparmor: allow introspecting the loaded policy pre internal transform

2017-01-16 01:18:42 -08:00

domain.h

+ Features

2017-09-23 05:33:29 -10:00

file.h

apparmor: Refactor to remove bprm_secureexec hook

2017-08-01 12:03:06 -07:00

ipc.h

apparmor: add the ability to mediate signals

2017-09-22 13:00:57 -07:00

label.h

apparmor: add support for mapping secids and using secctxes

2018-05-02 00:48:55 -07:00

lib.h

Rename superblock flags (MS_xyz -> SB_xyz)

2017-11-27 13:05:09 -08:00

match.h

apparmor: improve overlapping domain attachment resolution

2018-02-09 11:30:02 -08:00

mount.h

apparmor: add mount mediation

2017-09-22 13:00:57 -07:00

net.h

apparmor: add base infastructure for socket mediation

2018-03-13 17:25:48 -07:00

path.h

apparmor: improve get_buffers macro by using get_cpu_ptr

2018-06-07 01:49:21 -07:00

perms.h

apparmor: Check buffer bounds when mapping permissions mask

2018-07-19 16:24:43 -07:00

policy_ns.h

apparmor: switch from profiles to using labels on contexts

2017-06-10 17:11:38 -07:00

policy_unpack.h

apparmor: split load data into management struct and data blob

2018-02-09 11:30:00 -08:00

policy.h

apparmor: remove POLICY_MEDIATES_SAFE

2018-03-13 17:25:49 -07:00

procattr.h

apparmor: switch getprocattr to using label_print fns()

2017-06-10 17:11:39 -07:00

resource.h

apparmor: move resource checks to using labels

2017-06-10 17:11:40 -07:00

secid.h

apparmor: fixup secid map conversion to using IDR

2018-06-07 01:50:49 -07:00

sig_names.h

apparmor: audit unknown signal numbers

2018-02-09 11:30:01 -08:00

task.h

apparmor: update domain transitions that are subsets of confinement at nnp

2018-02-09 11:30:01 -08:00