Eric Paris
authored
Given an illegal selinux option it was possible for match_token to work in random memory at the end of the match_table_t array. Note that privilege is required to perform a context mount, so this issue is effectively limited to root only. Signed-off-by:Eric Paris <eparis@redhat.com> Acked-by:
Stephen Smalley <sds@tycho.nsa.gov> Signed-off-by:
James Morris <jmorris@namei.org>
| Name | Last commit | Last update |
|---|---|---|
| .. | ||
| keys | ||
| selinux | ||
| Kconfig | ||
| Makefile | ||
| capability.c | ||
| commoncap.c | ||
| dummy.c | ||
| inode.c | ||
| root_plug.c | ||
| security.c | ||