shinys000114/linux
1
0
Fork 0
mirror of https://github.com/hardkernel/linux.git synced 2026-03-24 19:40:21 +09:00
Code Issues Packages Projects Releases Wiki Activity
Files
odroidg12-stable-4.9.y-android
linux/security
History
Paul Moore cbc5bcf810 selinux: properly handle multiple messages in selinux_netlink_send() (CVE-2020-0255) 
PD#SWPL-29581

commit fb73974172 upstream.

Fix the SELinux netlink_send hook to properly handle multiple netlink
messages in a single sk_buff; each message is parsed and subject to
SELinux access control.  Prior to this patch, SELinux only inspected
the first message in the sk_buff.

Change-Id: Id73f242290f8693b1ab1177c27cae8add5a5cbe6
Cc: stable@vger.kernel.org
Reported-by: Dmitry Vyukov <dvyukov@google.com>
Reviewed-by: Stephen Smalley <stephen.smalley.work@gmail.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Hanjie Lin <hanjie.lin@amlogic.com>
2020-12-17 17:32:09 +09:00
..
apparmor
Merge 4.9.89 into android-4.9
2018-03-22 09:54:47 +01:00
integrity
Revert "ima: limit file hash setting by user to fix and log modes"
2018-06-06 16:44:33 +02:00
keys
Merge 4.9.84 into android-4.9
2018-02-26 09:18:03 +01:00
loadpin
LSM: LoadPin: provide enablement CONFIG
2016-05-17 20:10:30 +10:00
selinux
selinux: properly handle multiple messages in selinux_netlink_send() (CVE-2020-0255)
2020-12-17 17:32:09 +09:00
smack
lsm: fix smack_inode_removexattr and xattr_getsecurity memleak
2017-10-12 11:51:19 +02:00
tomoyo
mm: replace get_user_pages_remote() write/force parameters with gup_flags
2016-10-19 08:12:02 -07:00
yama
Yama: fix double-spinlock and user access in atomic context
2016-05-26 09:56:18 +10:00
commoncap.c
ANDROID: commoncap: Begin to warn users of implicit PARANOID_NETWORK capability grants
2017-09-12 17:59:15 +00:00
device_cgroup.c
security/device_cgroup: Fix RCU_LOCKDEP_WARN() condition
2015-09-03 18:13:10 -07:00
inode.c
ANDROID: vfs: Add permission2 for filesystems with per mount permissions
2017-01-31 10:47:22 -08:00
Kconfig
Merge 4.9.75 into android-4.9
2018-01-05 22:28:25 +01:00
lsm_audit.c
Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security
2016-10-04 14:48:27 -07:00
Makefile
LSM: LoadPin for kernel file loading restrictions
2016-04-21 10:47:27 +10:00
min_addr.c
mmap_min_addr check CAP_SYS_RAWIO only for write
2010-04-23 08:56:31 +10:00
security.c
BACKPORT: security: bpf: Add LSM hooks for bpf object related syscall
2017-11-07 12:59:20 -08:00