Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm / 8ed8e504f14a1b726f5ce16a0c0ac6d61ac217b7
  1. 8ed8e50 KEYS: Don't permit request_key() to construct a new keyring by David Howells · 9 years ago
  2. 1e7c24a KEYS: Fix stale key registration at error path by Takashi Iwai · 10 years ago
  3. 829089b key: Fix resource leak by Alan Cox · 12 years ago
  4. a1d714b Fix: compat_rw_copy_check_uvector() misuse in aio, readv, writev, and security keys by Mathieu Desnoyers · 12 years ago
  5. f60eef7 keys: fix race with concurrent install_user_keyrings() by David Howells · 12 years ago
  6. c1a72df BACKPORT: msm: adsprpc: Use unsigned integer for length values by Dennis Cagle · 7 years ago
  7. 544dcfd BACKPORT: futex: Prevent overflow by strengthen input validation by Li Jinyue · 7 years ago
  8. 5a50667 BACKPORT: futex: Remove requirement for lock_page() in get_futex_key() by Mel Gorman · 9 years ago
  9. 2cf02d4 futex: Fix a race condition between REQUEUE_PI and task death by Brian Silverman · 10 years ago
  10. b579353 futex: Ensure get_futex_key_refs() always implies a barrier by Catalin Marinas · 10 years ago
  11. 400a14a futex: Unlock hb->lock in futex_wait_requeue_pi() error path by Thomas Gleixner · 10 years ago
  12. e94cdf7 rtmutex: Plug slow unlock race by Thomas Gleixner · 11 years ago
  13. 2ea8735 rtmutex: Handle deadlock detection smarter by Thomas Gleixner · 11 years ago
  14. 1fabdbb rtmutex: Detect changes in the pi lock chain by Thomas Gleixner · 11 years ago
  15. 12c1ed0 rtmutex: Fix deadlock detector for real by Thomas Gleixner · 11 years ago
  16. aa76baa futex: Make lookup_pi_state more robust by Thomas Gleixner · 11 years ago
  17. 4dddf67 futex: Always cleanup owner tid in unlock_pi by Thomas Gleixner · 11 years ago
  18. 5808c72 futex: Validate atomic acquisition in futex_lock_pi_atomic() by Thomas Gleixner · 11 years ago
  19. b3cbd89 futex: Prevent attaching to kernel threads by Thomas Gleixner · 11 years ago
  20. 4e83753 futex: Add another early deadlock detection check by Thomas Gleixner · 11 years ago
  21. 1ee4f05 futex: fix handling of read-only-mapped hugepages by Linus Torvalds · 11 years ago
  22. 0f846bb futex: Take hugepages into account when generating futex_key by Zhang Yi · 12 years ago
  23. f8597ae hugetlbfs: fix mmap failure in unaligned size request by Naoya Horiguchi · 12 years ago
  24. 4db14f6 futex: Revert "futex: Mark get_robust_list as deprecated" by Thomas Gleixner · 12 years ago
  25. 2b3c872 futex: avoid wake_futex() for a PI futex_q by Darren Hart · 12 years ago
  26. 7c0713b futex: Handle futex_pi OWNER_DIED take over correctly by Thomas Gleixner · 12 years ago
  27. 73bca9c futex: Forbid uaddr == uaddr2 in futex_wait_requeue_pi() by Darren Hart · 13 years ago
  28. f95d7d0 futex: Fix bug in WARN_ON for NULL q.pi_state by Darren Hart · 13 years ago
  29. c1838d2 futex: Test for pi_mutex on fault in futex_wait_requeue_pi() by Darren Hart · 13 years ago
  30. bf51ef8 msm: adsprpc: Fix race conditions on same buffer by Tharun Kumar Merugu · 7 years ago
  31. a666d66 UPSTREAM: ipv4, ipv6: ensure raw socket message is big enough to hold an IP header by Alexander Potapenko · 8 years ago
  32. 3d9756f diag: Validate copying length against source buffer length by Hardik Arya · 7 years ago
  33. ef36863 crypto: hmac - require that the underlying hash algorithm is unkeyed by Eric Biggers · 7 years ago
  34. db75f87 msm: sensor: actuator: avoid accessing out of bound memory by Haibin Liu · 7 years ago
  35. 49a48a4 msm: vidc: Fix use after free bug in set_output_buffers by Chinmay Sawarkar · 7 years ago
  36. df782bd loop: fix concurrent lo_open/lo_release by Linus Torvalds · 7 years ago
  37. 9a1aa86 Input: gtco - fix potential out-of-bound access by Dmitry Torokhov · 7 years ago
  38. bd170eb msm: ipa: Fix the handling of default IPA header by Ghanim Fodi · 7 years ago
  39. 44560a2 net: usb: rmnet_usb_ctrl: Fix use after free issue by Sai Krishna Juturi · 7 years ago
  40. 11a210e sctp: do not peel off an assoc from one netns to another one by Xin Long · 7 years ago
  41. e7f3f9f net: ipv4: emulate READ_ONCE() on ->hdrincl bit-field in raw_sendmsg() by Nicolai Stange · 7 years ago
  42. 18ed6c3 net: ipv4: fix for a race condition in raw_sendmsg by Mohamed Ghannam · 7 years ago
  43. 1c911cd ipv4: Avoid reading user iov twice after raw_probe_proto_opt by Herbert Xu · 10 years ago
  44. 5b400da ipv4: Use standard iovec primitive in raw_probe_proto_opt by Herbert Xu · 10 years ago
  45. 88395c5 UPSTREAM: KEYS: encrypted: fix buffer overread in valid_master_desc() by Eric Biggers · 7 years ago
  46. cf889f6 ASoC: apr: Add validity check to APR port by Aditya Bavanari · 7 years ago
  47. aed116f BACKPORT: USB: core: harden cdc_parse_cdc_header by Marissa Wall · 7 years ago
  48. 106c738 cdc-acm: prevent infinite loop when parsing CDC headers. by Quentin Casasnovas · 10 years ago
  49. a5a3ba4 cdc-acm: add sanity checks by Oliver Neukum · 10 years ago
  50. 98e2602 ALSA: usb-audio: Check out-of-bounds access by corrupted buffer descriptor by Takashi Iwai · 7 years ago
  51. e80c08a USB: fix out-of-bounds in usb_set_configuration by Greg Kroah-Hartman · 7 years ago
  52. d9fbd68 HID: usbhid: fix out-of-bounds bug by Jaejoong Kim · 7 years ago
  53. 816c02c USB: core: fix out-of-bounds access bug in usb_get_bos_descriptor() by Alan Stern · 7 years ago
  54. f591920 USB: serial: console: fix use-after-free after failed setup by Johan Hovold · 7 years ago
  55. f736675 msm:ipa: Fix to incorrect structure access by Mohammed Javid · 8 years ago
  56. f63cdb6 msm: ipa: Prevent multiple header deletion from user space by Ghanim Fodi · 8 years ago
  57. 21fc0f7 ASoC: msm: qdsp6v2: Set freed pointers to NULL by Aditya Bavanari · 7 years ago
  58. 18906ad diag: Add protection while de-initializing clients by Mohit Aggarwal · 8 years ago
  59. e640177 BACKPORT: packet: in packet_do_bind, test fanout with bind_lock held by Marissa Wall · 7 years ago
  60. 870e82a ALSA: usb-audio: Kill stray URB at exiting by Takashi Iwai · 7 years ago
  61. c3d4a71 msm: vidc: update the check to ignore extradata plane in dqbuf by Praveen Chavan · 9 years ago
  62. 16d0335 msm: vidc: add ion_handle checking before mapping buffers by Praveen Chavan · 9 years ago
  63. 9fd90e7 msm: vidc: Add same fd ref only for static buffer mode by Surajit Podder · 10 years ago
  64. 893536a wcnss: fix the potential buffer flow issue in firmware setup by Sarada Prasanna Garnayak · 8 years ago
  65. 052effe wcnss: Fix mismatch between format and argument in pr_err() by Jeff Johnson · 11 years ago
  66. b5768a6 msm: camera: Return -NOTTY on invalid ioctl command. by Trishansh Bhardwaj · 7 years ago
  67. 2e43a4e msm: sensor: Validationg function pointers before using them by VijayaKumar T M · 8 years ago
  68. c5593a0 msm: camera: sensor: Validate destination step position by Rajesh Bondugula · 8 years ago
  69. 4098ac8 msm: camera: validate num_streams in stream_cfg_cmd before using it by Gaoxiang Chen · 8 years ago
  70. db56ff6 mqueue: fix a use-after-free in sys_mq_notify() by Cong Wang · 8 years ago
  71. 4c49736 Sanitize 'move_pages()' permission checks by Linus Torvalds · 8 years ago
  72. 7b983f1 tcp: initialize rcv_mss to TCP_MIN_MSS instead of 0 by Wei Wang · 8 years ago
  73. 75bdf91 KEYS: prevent KEYCTL_READ on negative key by Eric Biggers · 7 years ago
  74. 64fa6cd KEYS: fix dereferencing NULL payload with nonzero length by Eric Biggers · 8 years ago
  75. 8b98179 packet: fix tp_reserve race in packet_set_ring by Willem de Bruijn · 8 years ago
  76. 6758127 packet: hold bind lock when rebinding to fanout hook by Ben Hutchings · 7 years ago
  77. 740bf0f diag: Add mutex protection while reading dci debug statistics by Sreelakshmi Gownipalli · 7 years ago
  78. b5816e4 msm: vidc: WARN_ON() reveals fuction addresses by Ariel Yin · 8 years ago
  79. bd924fe ANDROID: qtaguid: Fix the UAF probelm with tag_ref_tree by Chenbo Feng · 7 years ago
  80. 16ed9c1 rtac: add size check when reading cal data kvaddr buffer by kunleiz · 7 years ago
  81. 1e191c5 ASoC: wcd9xxx: restrict debugfs permission by Karthikeyan Mani · 7 years ago
  82. 13fee7c USB: core: prevent malicious bNumInterfaces overflow by Alan Stern · 7 years ago
  83. 1a63b62 usb: config->desc.bLength may not exceed amount of data returned by the device by Hans de Goede · 12 years ago
  84. 193f237 ipsec: Fix aborted xfrm policy dump crash by Ben Hutchings · 7 years ago
  85. 9bee074 iovec: make sure the caller actually wants anything in memcpy_fromiovecend by Paul Lawrence · 7 years ago
  86. 5ca98ba ANDROID: sound: rawmidi: Hold lock around realloc by Daniel Rosenberg · 7 years ago
  87. 4fa1fe9 clocksource: arch_timer: make virtual counter access configurable by Greg Hackmann · 7 years ago
  88. e8acc9f staging: android: ashmem: fix a race condition in ASHMEM_SET_SIZE ioctl by Viktor Slavkovic · 7 years ago
  89. 6931318 crypto: algif_skcipher - Load TX SG list after waiting by Herbert Xu · 9 years ago
  90. 49ca11d ANDROID: sdcardfs: fix potential crash when reserved_mb is not zero by Lianjun Huang · 7 years ago
  91. ee93c70 leds: trigger: ledtrig-backlight: Fix invalid memory access in fb_event notification callback by Manfred Schlaegl · 12 years ago
  92. 8249a07 msm: mdss: Make LEDS_TRIGGER_BACKLIGHT work by Ricardo Cerqueira · 9 years ago
  93. e59ae0b FP2: disable KSM by chrmhoffmann · 7 years ago
  94. 0368080 ANDROID: sdcardfs: Don't d_drop in d_revalidate by Daniel Rosenberg · 7 years ago
  95. 0f0c980 ANDROID: sdcardfs: Set s_root to NULL after putting by Daniel Rosenberg · 7 years ago
  96. 5ae351e ANDROID: sdcardfs: d_make_root calls iput by Daniel Rosenberg · 7 years ago
  97. ff80533 ANDROID: sdcardfs: Check for private data earlier by Daniel Rosenberg · 7 years ago
  98. 396bf57 ANDROID: fuse: Add null terminator to path in canonical path to avoid issue by Ritesh Harjani · 7 years ago
  99. dbd58bd ANDROID: sdcardfs: Fix sdcardfs to stop creating cases-sensitive duplicate entries. by Ritesh Harjani · 7 years ago
  100. 7d0e3e9 ANDROID: sdcardfs: Set num in extension_details during make_item by Ritesh Harjani · 7 years ago