This repository has been archived on 2022-02-17. You can view files and clone it, but cannot push or open issues or pull requests.

Ahmed S. Darwish b500ce8d24 smackfs: do not trust `count' in inodes write()s ... Smackfs write() implementation does not put a higher bound on the number of bytes to copy from user-space. This may lead to a DOS attack if a malicious `count' field is given. Assure that given `count' is exactly the length needed for a /smack/load rule. In case of /smack/cipso where the length is relative, assure that `count' does not exceed the size needed for a buffer representing maximum possible number of CIPSO 2.2 categories. Signed-off-by: Ahmed S. Darwish <darwish.07@gmail.com> Acked-by: Casey Schaufler <casey@schaufler-ca.com> Signed-off-by: Andrew Morton <akpm@linux-foundation.org> Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>		2008-03-13 13:11:43 -07:00
..
Kconfig	Smack: Simplified Mandatory Access Control Kernel	2008-02-05 09:44:20 -08:00
Makefile	Smack: Simplified Mandatory Access Control Kernel	2008-02-05 09:44:20 -08:00
smack.h	smackfs: do not trust `count' in inodes write()s	2008-03-13 13:11:43 -07:00
smack_access.c	Smack: Simplified Mandatory Access Control Kernel	2008-02-05 09:44:20 -08:00
smack_lsm.c	LSM/SELinux: Interfaces to allow FS to control mount options	2008-03-06 08:40:53 +11:00
smackfs.c	smackfs: do not trust `count' in inodes write()s	2008-03-13 13:11:43 -07:00