android_kernel_xiaomi_sm8350/security
Eric Paris 31e8793094 SELinux: fix array out of bounds when mounting with selinux options
Given an illegal selinux option it was possible for match_token to work in
random memory at the end of the match_table_t array.

Note that privilege is required to perform a context mount, so this issue is
effectively limited to root only.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
2007-09-20 08:06:40 +10:00
..
keys mm: Remove slab destructors from kmem_cache_create(). 2007-07-20 10:11:58 +09:00
selinux SELinux: fix array out of bounds when mounting with selinux options 2007-09-20 08:06:40 +10:00
capability.c header cleaning: don't include smp_lock.h when not used 2007-05-08 11:15:07 -07:00
commoncap.c fix NULL pointer dereference in __vm_enough_memory() 2007-08-22 19:52:45 -07:00
dummy.c fix NULL pointer dereference in __vm_enough_memory() 2007-08-22 19:52:45 -07:00
inode.c remove "struct subsystem" as it is no longer needed 2007-05-02 18:57:59 -07:00
Kconfig [PATCH] LSM: remove BSD secure level security module 2006-09-29 09:18:10 -07:00
Makefile [PATCH] LSM: remove BSD secure level security module 2006-09-29 09:18:10 -07:00
root_plug.c
security.c security: unexport mmap_min_addr 2007-07-11 22:52:33 -04:00