linux-hardened/security
Davi Arnaut 6d94074f08 [PATCH] Fix keyctl usage of strnlen_user()
In the small window between strnlen_user() and copy_from_user() userspace
could alter the terminating `\0' character.

Signed-off-by: Davi Arnaut <davi.arnaut@gmail.com>
Cc: David Howells <dhowells@redhat.com>
Cc: <stable@kernel.org>
Signed-off-by: Andrew Morton <akpm@osdl.org>
Signed-off-by: Linus Torvalds <torvalds@osdl.org>
2006-02-03 08:32:10 -08:00
..
keys [PATCH] Fix keyctl usage of strnlen_user() 2006-02-03 08:32:10 -08:00
selinux [PATCH] selinux: remove security struct magic number fields and tests 2006-02-01 08:53:19 -08:00
capability.c kbuild: un-stringnify KBUILD_MODNAME 2006-01-06 21:17:50 +01:00
commoncap.c [PATCH] move capable() to capability.h 2006-01-11 18:42:13 -08:00
dummy.c [PATCH] move capable() to capability.h 2006-01-11 18:42:13 -08:00
inode.c [PATCH] mutex subsystem, semaphore to mutex: VFS, ->i_sem 2006-01-09 15:59:24 -08:00
Kconfig [LSM-IPSec]: Security association restriction. 2006-01-03 13:10:24 -08:00
Makefile [PATCH] add securityfs for all LSMs to use 2005-07-08 18:48:41 -07:00
root_plug.c Linux-2.6.12-rc2 2005-04-16 15:20:36 -07:00
seclvl.c Don't try to "validate" a non-existing timeval. 2006-01-31 10:16:55 -08:00
security.c [PATCH] move capable() to capability.h 2006-01-11 18:42:13 -08:00