AcoSail/kernel_optimize_test
8
0
Fork 0
forked from luck/tmp_suning_uos_patched
Code Pull Requests Activity
3fac6feca9
kernel_optimize_test/security
History
Pawan Gupta 3fac6feca9 smackfs: Fix use-after-free in netlbl_catmap_walk() 
[ Upstream commit 0817534ff9ea809fac1322c5c8c574be8483ea57 ]

Syzkaller reported use-after-free bug as described in [1]. The bug is
triggered when smk_set_cipso() tries to free stale category bitmaps
while there are concurrent reader(s) using the same bitmaps.

Wait for RCU grace period to finish before freeing the category bitmaps
in smk_set_cipso(). This makes sure that there are no more readers using
the stale bitmaps and freeing them should be safe.

[1] https://lore.kernel.org/netdev/000000000000a814c505ca657a4e@google.com/

Reported-by: syzbot+3f91de0b813cc3d19a80@syzkaller.appspotmail.com
Signed-off-by: Pawan Gupta <pawan.kumar.gupta@linux.intel.com>
Signed-off-by: Casey Schaufler <casey@schaufler-ca.com>
Signed-off-by: Sasha Levin <sashal@kernel.org>
2021-11-18 14:03:53 +01:00
..
apparmor
bpf
integrity evm: mark evm_fixmode as __ro_after_init 2021-11-18 14:03:46 +01:00
keys KEYS: trusted: Fix memory leak on object td 2021-05-19 10:12:50 +02:00
loadpin
lockdown
safesetid
selinux selinux: fix race condition when computing ocontext SIDs 2021-11-18 14:03:44 +01:00
smack smackfs: Fix use-after-free in netlbl_catmap_walk() 2021-11-18 14:03:53 +01:00
tomoyo
yama
commoncap.c
device_cgroup.c
inode.c
Kconfig
Kconfig.hardening
lsm_audit.c
Makefile
min_addr.c
security.c binder: use cred instead of task for selinux checks 2021-11-18 14:03:36 +01:00