]> git.proxmox.com Git - mirror_ubuntu-zesty-kernel.git/commit
projects / mirror_ubuntu-zesty-kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5465d02) | patch
security/integrity: Harden against malformed xattrs
authorSeth Forshee <seth.forshee@canonical.com>
Mon, 1 Aug 2016 13:19:10 +0000 (08:19 -0500)
committerMimi Zohar <zohar@linux.vnet.ibm.com>
Mon, 14 Nov 2016 03:50:11 +0000 (22:50 -0500)
commitb4bfec7f4a86424b114f94f41c4e1841ec102df3
tree9f4a668c3d28ef3de0743d3dda285829b38a85a3tree
parent5465d02a4970990d8ec692c7539af5fdde95e613commit | diff
security/integrity: Harden against malformed xattrs

In general the handling of IMA/EVM xattrs is good, but I found
a few locations where either the xattr size or the value of the
type field in the xattr are not checked. Add a few simple checks
to these locations to prevent malformed or malicious xattrs from
causing problems.

Signed-off-by: Seth Forshee <seth.forshee@canonical.com>
Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
security/integrity/digsig.c diff | blob | blame | history
security/integrity/evm/evm_main.c diff | blob | blame | history
security/integrity/ima/ima_appraise.c diff | blob | blame | history
ubuntu-zesty-kernel mirror