Kernel/linux
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git synced 2025-01-09 23:00:21 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
linux/security
History
Xiu Jianfeng 51dd64bb99 Revert "evm: Fix memleak in init_desc" 
This reverts commit ccf11dbaa07b328fa469415c362d33459c140a37.

Commit ccf11dbaa07b ("evm: Fix memleak in init_desc") said there is
memleak in init_desc. That may be incorrect, as we can see, tmp_tfm is
saved in one of the two global variables hmac_tfm or evm_tfm[hash_algo],
then if init_desc is called next time, there is no need to alloc tfm
again, so in the error path of kmalloc desc or crypto_shash_init(desc),
It is not a problem without freeing tmp_tfm.

And also that commit did not reset the global variable to NULL after
freeing tmp_tfm and this makes *tfm a dangling pointer which may cause a
UAF issue.

Reported-by: Guozihua (Scott) <guozihua@huawei.com>
Signed-off-by: Xiu Jianfeng <xiujianfeng@huawei.com>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
2022-06-15 14:03:47 -04:00
..
apparmor
linux-kselftest-kunit-5.19-rc1
2022-05-25 11:32:53 -07:00
bpf
bpf: Implement task local storage
2020-11-06 08:08:37 -08:00
integrity
Revert "evm: Fix memleak in init_desc"
2022-06-15 14:03:47 -04:00
keys
KEYS: trusted: tpm2: Fix migratable logic
2022-06-08 14:12:13 +03:00
landlock
landlock: Add support for file reparenting with LANDLOCK_ACCESS_FS_REFER
2022-05-23 13:27:59 +02:00
loadpin
loadpin: stop using bdevname
2022-05-16 16:02:21 -07:00
lockdown
Merge branch 'next-general' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
2020-06-02 17:36:24 -07:00
safesetid
LSM: SafeSetID: Mark safesetid_initialized as __initdata
2021-06-10 09:52:32 -07:00
selinux
selinux/stable-5.19 PR 20220523
2022-05-24 13:06:32 -07:00
smack
Cleanups (and one fix) around struct mount handling.
2022-06-04 19:00:05 -07:00
tomoyo
LSM: Remove double path_rename hook calls for RENAME_EXCHANGE
2022-05-23 13:27:58 +02:00
yama
task_work: cleanup notification modes
2020-10-17 15:05:30 -06:00
commoncap.c
fs: support mapped mounts of mapped filesystems
2021-12-05 10:28:57 +01:00
device_cgroup.c
bpf: Make BPF_PROG_RUN_ARRAY return -err instead of allow boolean
2022-01-19 12:51:30 -08:00
inode.c
Merge branch 'work.mount0' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2019-07-19 10:42:02 -07:00
Kconfig
usercopy: Remove HARDENED_USERCOPY_PAGESPAN
2022-04-13 12:15:52 -07:00
Kconfig.hardening
randstruct: Enable Clang support
2022-05-08 01:33:07 -07:00
lsm_audit.c
selinux: log anon inode class name
2022-05-03 16:09:03 -04:00
Makefile
security: remove unneeded subdir-$(CONFIG_...)
2021-09-03 08:17:20 +09:00
min_addr.c
sysctl: pass kernel pointers to ->proc_handler
2020-04-27 02:07:40 -04:00
security.c
Landlock updates for v5.19-rc1
2022-05-24 13:09:13 -07:00