Blaster4385/linux-IllusionX
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
linux-IllusionX/security
History
Zhen Lei 3f21150c15 selinux: add the processing of the failure of avc_add_xperms_decision() 
commit 6dd1e4c045 upstream.

When avc_add_xperms_decision() fails, the information recorded by the new
avc node is incomplete. In this case, the new avc node should be released
instead of replacing the old avc node.

Cc: stable@vger.kernel.org
Fixes: fa1aa143ac ("selinux: extended permissions for ioctls")
Suggested-by: Stephen Smalley <stephen.smalley.work@gmail.com>
Signed-off-by: Zhen Lei <thunder.leizhen@huawei.com>
Acked-by: Stephen Smalley <stephen.smalley.work@gmail.com>
Signed-off-by: Paul Moore <paul@paul-moore.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2024-08-29 17:35:41 +02:00
..
apparmor apparmor: unpack transition table if dfa is not present 2024-08-03 09:01:08 +02:00
bpf
integrity integrity-v6.10-fix 2024-07-05 16:21:54 -07:00
keys KEYS: trusted: dcp: fix leak of blob encryption key 2024-08-29 17:35:37 +02:00
landlock landlock: Don't lose track of restrictions on cred_transfer 2024-08-03 09:00:28 +02:00
loadpin hardening fixes for v6.10-rc1 2024-05-24 08:33:44 -07:00
lockdown
safesetid
selinux selinux: add the processing of the failure of avc_add_xperms_decision() 2024-08-29 17:35:41 +02:00
smack selinux,smack: remove the capability checks in the removexattr hooks 2024-08-03 09:01:09 +02:00
tomoyo tomoyo: update project links 2024-06-03 22:43:11 +09:00
yama yama: document function parameter 2024-06-06 11:40:28 -07:00
commoncap.c
device_cgroup.c
inode.c
Kconfig fortify: drop Clang version check for 12.0.1 or newer 2024-02-22 15:38:54 -08:00
Kconfig.hardening Revert "mm: init_mlocked_on_free_v3" 2024-06-15 10:43:05 -07:00
lsm_audit.c
lsm_syscalls.c lsm: use 32-bit compatible data types in LSM syscalls 2024-03-14 11:31:26 -04:00
Makefile
min_addr.c
security.c lsm: fixup the inode xattr capability handling 2024-08-03 09:00:34 +02:00