Show patches with: State = Action Required       |    Archived = No       |   765 patches
« 1 2 3 47 8 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
xfs: use has_capability_noaudit() instead of capable() where appropriate xfs: use has_capability_noaudit() instead of capable() where appropriate - - - --- 2021-03-16 Ondrej Mosnacek New
X.509: Fix crash caused by NULL pointer X.509: Fix crash caused by NULL pointer - - - --- 2021-01-13 David Howells New
X.509: Fix crash caused by NULL pointer X.509: Fix crash caused by NULL pointer - - - --- 2021-01-13 David Howells New
X.509: Fix crash caused by NULL pointer X.509: Fix crash caused by NULL pointer - - 1 --- 2021-01-19 David Howells New
vfio: Lock down no-IOMMU mode when kernel is locked down vfio: Lock down no-IOMMU mode when kernel is locked down - - - --- 2021-05-06 Maxime Coquelin New
tpm2_load_command leaks memory tpm2_load_command leaks memory - - - --- 2021-06-10 Dhiraj Shah New
tomoyo: don't special case PF_IO_WORKER for PF_KTHREAD tomoyo: don't special case PF_IO_WORKER for PF_KTHREAD - - - --- 2021-03-26 Jens Axboe New
smackfs: restrict bytes count in smackfs write functions smackfs: restrict bytes count in smackfs write functions - - - --- 2021-01-24 Sabyrzhan Tasbolatov New
Smack: Handle io_uring kernel thread privileges. Smack: Handle io_uring kernel thread privileges. 2 - - --- 2020-12-18 Casey Schaufler New
serial: core: fix suspicious security_locked_down() call serial: core: fix suspicious security_locked_down() call 1 - - --- 2021-05-07 Ondrej Mosnacek New
selinux:Delete selinux_xfrm_policy_lookup() useless argument selinux:Delete selinux_xfrm_policy_lookup() useless argument - - - --- 2021-04-08 Zhongjun Tan New
selinux:Delete selinux_xfrm_policy_lookup() useless argument selinux:Delete selinux_xfrm_policy_lookup() useless argument - - - --- 2021-04-08 Zhongjun Tan New
selinux: vsock: Set SID for socket returned by accept() selinux: vsock: Set SID for socket returned by accept() - - - --- 2021-03-17 David Brazdil New
selinux: measure state and policy capabilities selinux: measure state and policy capabilities - - - --- 2021-01-21 Lakshmi Ramasubramanian New
selinux: include a consumer of the new IMA critical data hook selinux: include a consumer of the new IMA critical data hook 1 1 - --- 2021-01-14 Lakshmi Ramasubramanian New
selinux: fix inconsistency between inode_getxattr and inode_listsecurity selinux: fix inconsistency between inode_getxattr and inode_listsecurity - 1 1 --- 2020-12-19 Amir Goldstein New
security/smack/: fix misspellings using codespell tool security/smack/: fix misspellings using codespell tool - - - --- 2021-03-18 Menglong Dong New
security/smack: fix misspellings using codespell tool security/smack: fix misspellings using codespell tool - - - --- 2021-03-18 Menglong Dong New
security/loadpin: Replace "kernel_read_file_str[j]" with function "kernel_read_file_id_str(j)". security/loadpin: Replace "kernel_read_file_str[j]" with function "kernel_read_file_id_str(j)". - - - --- 2021-03-04 Jiele Zhao New
Security/Apparmor: Fixed a bracket problem in audit.c Security/Apparmor: Fixed a bracket problem in audit.c - - - --- 2020-12-21 Alexander Guril New
security/apparmor: fix misspellings using codespell tool security/apparmor: fix misspellings using codespell tool - - - --- 2021-03-09 Menglong Dong New
security: tomoyo: fix error return code of tomoyo_update_domain() security: tomoyo: fix error return code of tomoyo_update_domain() - - - --- 2021-03-06 Jia-Ju Bai New
security: remove unneeded subdir-$(CONFIG_...) security: remove unneeded subdir-$(CONFIG_...) - - - --- 2021-05-28 Masahiro Yamada New
security: keys: trusted: prevent memory leak in error path security: keys: trusted: prevent memory leak in error path - - - --- 2021-04-13 Muhammad Usama Anjum New
security: fix misspellings using codespell tool security: fix misspellings using codespell tool - - - --- 2021-03-18 Menglong Dong New
security: commoncap: clean up kernel-doc comments security: commoncap: clean up kernel-doc comments - 1 - --- 2021-04-12 Randy Dunlap New
security: add LSM hook at the memfd_create point security: add LSM hook at the memfd_create point - - - --- 2021-06-13 Li Qiang New
security: A typo fix security: A typo fix 1 - - --- 2021-03-21 Bhaskar Chowdhury New
security: A typo fix security: A typo fix - - - --- 2021-03-21 Bhaskar Chowdhury New
samples/landlock: fix path_list memory leak samples/landlock: fix path_list memory leak - 1 - --- 2021-04-27 Tom Rix New
RTIC: selinux: ARM64: Move selinux_state to a separate page RTIC: selinux: ARM64: Move selinux_state to a separate page 1 - - --- 2021-02-16 Preeti Nagar New
Revert "Smack: Handle io_uring kernel thread privileges" Revert "Smack: Handle io_uring kernel thread privileges" - - - --- 2021-03-26 Jens Axboe New
proc: Check /proc/$pid/attr/ writes against file opener proc: Check /proc/$pid/attr/ writes against file opener - - - --- 2021-05-25 Kees Cook New
perf/core: fix unconditional security_locked_down() call perf/core: fix unconditional security_locked_down() call - 1 - --- 2021-02-24 Ondrej Mosnacek New
NFSv4.2: fix return value of _nfs4_get_security_label() NFSv4.2: fix return value of _nfs4_get_security_label() - 2 - --- 2021-01-15 Ondrej Mosnacek New
net: ipv4: fix memory leak in netlbl_cipsov4_add_std net: ipv4: fix memory leak in netlbl_cipsov4_add_std 1 - - --- 2021-06-08 Nanyong Sun New
Makefile: Introduce CONFIG_ZERO_CALL_USED_REGS Makefile: Introduce CONFIG_ZERO_CALL_USED_REGS - - - --- 2021-05-05 Kees Cook New
lsm:fix a missing-check bug in smack_sb_eat_lsm_opts() lsm:fix a missing-check bug in smack_sb_eat_lsm_opts() - - - --- 2021-04-16 Zhongjun Tan New
LSM: SafeSetID: Mark safesetid_initialized as __initdata LSM: SafeSetID: Mark safesetid_initialized as __initdata - - - --- 2021-06-08 Austin Kim New
LSM: SafeSetID: Fix code specification by scripts/checkpatch.pl LSM: SafeSetID: Fix code specification by scripts/checkpatch.pl - - - --- 2021-03-10 Yanwei Gao New
lockdown,selinux: fix bogus SELinux lockdown permission checks lockdown,selinux: fix bogus SELinux lockdown permission checks - - - --- 2021-05-07 Ondrej Mosnacek New
LoadPin: Allow filesystem switch when not enforcing LoadPin: Allow filesystem switch when not enforcing - - - --- 2021-04-08 Kees Cook New
KEYS: trusted: tee: fix build error due to missing include KEYS: trusted: tee: fix build error due to missing include - - - --- 2021-03-17 Ahmad Fatoum New
KEYS: trusted: Fix memory leak on object td KEYS: trusted: Fix memory leak on object td - 3 - --- 2021-04-30 Colin King New
KEYS: trusted: fix memory leak KEYS: trusted: fix memory leak - - - --- 2021-04-30 Tom Rix New
KEYS: trusted: fix a couple error pointer dereferences KEYS: trusted: fix a couple error pointer dereferences - 1 - --- 2021-04-14 Dan Carpenter New
Keys: Remove redundant initialization of cred Keys: Remove redundant initialization of cred - 1 - --- 2021-05-08 Yang Li New
keys: Allow disabling read permissions for key possessor keys: Allow disabling read permissions for key possessor - - - --- 2021-03-22 Andrey Ryabinin New
integrity/ima: Provide Kconfig option for ima-modsig template integrity/ima: Provide Kconfig option for ima-modsig template - - - --- 2021-02-15 Michael Weiß New
integrity/ima: Add declarations to init_once void arguments. integrity/ima: Add declarations to init_once void arguments. - - - --- 2021-03-23 Jiele Zhao New
ima: require CONFIG_MODULES for IMA_APPRAISE_MODSIG ima: require CONFIG_MODULES for IMA_APPRAISE_MODSIG - - - --- 2021-04-22 Arnd Bergmann New
ima: Replacing deprecated strlcpy with strscpy ima: Replacing deprecated strlcpy with strscpy - - - --- 2021-02-19 Palash Oswal New
ima: Fix the error code for restoring the PCR value ima: Fix the error code for restoring the PCR value - 1 - --- 2021-03-03 Li Huafei New
ima: Fix function name error in comment. ima: Fix function name error in comment. - - - --- 2021-03-23 Jiele Zhao New
ima: ensure IMA_APPRAISE_MODSIG has necessary dependencies ima: ensure IMA_APPRAISE_MODSIG has necessary dependencies 1 - - --- 2021-04-23 Nayna Jain New
fs: anon_inodes: rephrase to appropriate kernel-doc fs: anon_inodes: rephrase to appropriate kernel-doc - - - --- 2021-01-15 Lukas Bulwahn New
fs_context: drop the unused lsm_flags member fs_context: drop the unused lsm_flags member - - - --- 2021-04-09 Ondrej Mosnacek New
evm: Fix memleak in init_desc evm: Fix memleak in init_desc - - - --- 2021-01-09 Dinghao Liu New
debugfs: fix security_locked_down() call for SELinux debugfs: fix security_locked_down() call for SELinux - - - --- 2021-05-07 Ondrej Mosnacek New
crypto: arm64/gcm - remove Wunused-const-variable ghash_cpu_feature crypto: arm64/gcm - remove Wunused-const-variable ghash_cpu_feature - - - --- 2021-05-27 Austin Kim New
CIPSO: Fix unaligned memory access in cipso_v4_gentag_hdr CIPSO: Fix unaligned memory access in cipso_v4_gentag_hdr - - - --- 2021-03-04 Sergey Nazarov New
cipso,calipso: resolve a number of problems with the DOI refcounts cipso,calipso: resolve a number of problems with the DOI refcounts - - - --- 2021-03-04 Paul Moore New
certs: Add support for using elliptic curve keys for signing modules certs: Add support for using elliptic curve keys for signing modules - 1 1 --- 2021-02-19 Stefan Berger New
certs: Add EFI_CERT_X509_GUID support for dbx entries certs: Add EFI_CERT_X509_GUID support for dbx entries - - - --- 2021-01-13 David Howells New
cap: Trivial spelling fixes throughout the file cap: Trivial spelling fixes throughout the file - - - --- 2021-03-21 Bhaskar Chowdhury New
audit: remove unnecessary 'ret' initialization audit: remove unnecessary 'ret' initialization - - - --- 2021-06-11 Austin Kim New
ARM: Implement Clang's SLS mitigation ARM: Implement Clang's SLS mitigation - - - --- 2021-02-12 Jian Cai New
apparmor: Remove the repeated declaration apparmor: Remove the repeated declaration 1 - - --- 2021-05-29 Shaokun Zhang New
apparmor: avoid -Wempty-body warning apparmor: avoid -Wempty-body warning - - - --- 2021-03-22 Arnd Bergmann New
[v9,4/4] MAINTAINERS: Add entry for TEE based Trusted Keys Introduce TEE based Trusted Keys support 1 - - --- 2021-03-01 Sumit Garg New
[v9,3/4] doc: trusted-encrypted: updates with TEE as a new trust source Introduce TEE based Trusted Keys support - - - --- 2021-03-01 Sumit Garg New
[v9,2/4] KEYS: trusted: Introduce TEE based Trusted Keys Introduce TEE based Trusted Keys support - 1 1 --- 2021-03-01 Sumit Garg New
[v9,1/4] KEYS: trusted: Add generic trusted keys framework Introduce TEE based Trusted Keys support - 1 1 --- 2021-03-01 Sumit Garg New
[v8,8/8] MAINTAINERS: Add a new entry for the Brute LSM Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,7/8] Documentation: Add documentation for the Brute LSM Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,6/8] selftests/brute: Add tests for the Brute LSM Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,5/8] security/brute: Notify to userspace "task killed" Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,4/8] security/brute: Mitigate a brute force attack Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,3/8] security/brute: Detect a brute force attack Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,2/8] security/brute: Define a LSM and add sysctl attributes Fork brute force attack mitigation - - - --- 2021-06-05 John Wood New
[v8,1/8] security: Add LSM hook at the point where a task gets a fatal signal Fork brute force attack mitigation - 1 - --- 2021-06-05 John Wood New
[v7,7/7] MAINTAINERS: Add a new entry for the Brute LSM Fork brute force attack mitigation - - - --- 2021-05-22 John Wood New
[v7,6/7] Documentation: Add documentation for the Brute LSM Fork brute force attack mitigation - - - --- 2021-05-22 John Wood New
[v7,5/7] selftests/brute: Add tests for the Brute LSM Fork brute force attack mitigation - - - --- 2021-05-22 John Wood New
[v7,5/5] certs: Allow root user to append signed hashes to the blacklist keyring Enable root to update the blacklist keyring - - - --- 2021-03-12 Mickaël Salaün New
[v7,4/7] security/brute: Mitigate a brute force attack Fork brute force attack mitigation - - - --- 2021-05-21 John Wood New
[v7,4/5] certs: Factor out the blacklist hash creation Enable root to update the blacklist keyring - 1 - --- 2021-03-12 Mickaël Salaün New
[v7,3/7] security/brute: Detect a brute force attack Fork brute force attack mitigation - - - --- 2021-05-21 John Wood New
[v7,3/5] certs: Make blacklist_vet_description() more strict Enable root to update the blacklist keyring - 1 - --- 2021-03-12 Mickaël Salaün New
[v7,2/7] security/brute: Define a LSM and add sysctl attributes Fork brute force attack mitigation - - - --- 2021-05-21 John Wood New
[v7,2/5] certs: Check that builtin blacklist hashes are valid Enable root to update the blacklist keyring - 1 - --- 2021-03-12 Mickaël Salaün New
[v7,12/12] ima: Don't remove security.ima if file must not be appraised evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,11/12] ima: Introduce template field evmsig and write to field sig as fallback evm: Improve usability of portable signatures - - - --- 2021-05-14 Roberto Sassu New
[v7,10/12] ima: Allow imasig requirement to be satisfied by EVM portable signatures evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,1/7] security: Add LSM hook at the point where a task gets a fatal signal Fork brute force attack mitigation - 1 - --- 2021-05-21 John Wood New
[v7,1/5] tools/certs: Add print-cert-tbs-hash.sh Enable root to update the blacklist keyring - 1 1 --- 2021-03-12 Mickaël Salaün New
[v7,09/12] evm: Deprecate EVM_ALLOW_METADATA_WRITES evm: Improve usability of portable signatures - - - --- 2021-05-14 Roberto Sassu New
[v7,08/12] evm: Allow setxattr() and setattr() for unmodified metadata evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,07/12] evm: Pass user namespace to set/remove xattr hooks evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
[v7,06/12] evm: Allow xattr/attr operations for portable signatures evm: Improve usability of portable signatures - 1 - --- 2021-05-14 Roberto Sassu New
« 1 2 3 47 8 »