Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm / 31e879309474d1666d645b96de99d0b682fa055f
commit31e879309474d1666d645b96de99d0b682fa055f[log] [tgz]
authorEric Paris <eparis@redhat.com>Wed Sep 19 17:19:12 2007 -0400
committerJames Morris <jmorris@namei.org>Thu Sep 20 08:06:40 2007 +1000
treebb9d45dc85e03044b5ee7635f3646774bcbb30d4
parenta88a8eff1e6e32d3288986a9d36c6a449c032d3a [diff]
SELinux: fix array out of bounds when mounting with selinux options

Given an illegal selinux option it was possible for match_token to work in
random memory at the end of the match_table_t array.

Note that privilege is required to perform a context mount, so this issue is
effectively limited to root only.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
1 file changed
tree: bb9d45dc85e03044b5ee7635f3646774bcbb30d4
  1. arch/
  2. block/
  3. crypto/
  4. Documentation/
  5. drivers/
  6. fs/
  7. include/
  8. init/
  9. ipc/
  10. kernel/
  11. lib/
  12. mm/
  13. net/
  14. scripts/
  15. security/
  16. sound/
  17. usr/
  18. .gitignore
  19. .mailmap
  20. COPYING
  21. CREDITS
  22. Kbuild
  23. MAINTAINERS
  24. Makefile
  25. README
  26. REPORTING-BUGS