UbiquitousOS
/
OpenCloudOS-Kernel
mirror of https://gitee.com/OpenCloudOS/OpenCloudOS-Kernel.git
11
0
Fork 0
Code Issues Projects Releases Wiki Activity
OpenCloudOS-Kernel/security/apparmor
History
Fedor Pchelkin 691aada756 apparmor: use kvfree_sensitive to free data->data 
commit 2bc73505a5cd2a18a7a542022722f136c19e3b87 upstream.

Inside unpack_profile() data->data is allocated using kvmemdup() so it
should be freed with the corresponding kvfree_sensitive().

Also add missing data->data release for rhashtable insertion failure path
in unpack_profile().

Found by Linux Verification Center (linuxtesting.org).

Fixes: e025be0f26 ("apparmor: support querying extended trusted helper extra data")
Cc: stable@vger.kernel.org
Signed-off-by: Fedor Pchelkin <pchelkin@ispras.ru>
Signed-off-by: John Johansen <john.johansen@canonical.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
 		2024-08-03 08:54:16 +02:00
..
include ima: Avoid blocking in RCU read-side critical section 2024-07-11 12:49:18 +02:00
.gitignore .gitignore: add SPDX License Identifier 2020-03-25 11:50:48 +01:00
Kconfig + Features 2022-12-14 13:42:09 -08:00
Makefile + Features 2022-12-14 13:42:09 -08:00
apparmorfs.c apparmor: Fix move_mount mediation by detecting if source is detached 2024-01-10 17:16:52 +01:00
audit.c ima: Avoid blocking in RCU read-side critical section 2024-07-11 12:49:18 +02:00
capability.c apparmor: pass cred through to audit info. 2023-11-28 17:20:07 +00:00
crypto.c apparmor: Return directly after a failed kzalloc() in two functions 2023-07-06 10:58:49 -07:00
domain.c apparmor: pass cred through to audit info. 2023-11-28 17:20:07 +00:00
file.c apparmor: pass cred through to audit info. 2023-11-28 17:20:07 +00:00
ipc.c apparmor: pass cred through to audit info. 2023-11-28 17:20:07 +00:00
label.c apparmor: remove useless static inline functions 2022-10-24 22:35:11 -07:00
lib.c apparmor: fix possible memory leak in unpack_trans_table 2024-01-25 15:35:54 -08:00
lsm.c apparmor: Fix ref count leak in task_kill 2024-01-25 15:35:54 -08:00
match.c apparmor: Add __init annotation to aa_{setup/teardown}_dfa_engine() 2022-11-01 21:17:26 -07:00
mount.c apparmor: Fix move_mount mediation by detecting if source is detached 2024-01-10 17:16:52 +01:00
net.c apparmor: pass cred through to audit info. 2023-11-28 17:20:07 +00:00
nulldfa.in apparmor: cleanup add proper line wrapping to nulldfa.in 2018-02-09 11:30:01 -08:00
path.c security: apparmor: delete repeated words in comments 2021-02-07 04:15:46 -08:00
policy.c apparmor: use kvfree_sensitive to free data->data 2024-08-03 08:54:16 +02:00
policy_compat.c + Bug Fixes 2023-07-07 09:55:31 -07:00
policy_ns.c apparmor: Fix memleak in alloc_ns() 2022-11-01 05:32:13 -07:00
policy_unpack.c apparmor: use kvfree_sensitive to free data->data 2024-08-03 08:54:16 +02:00
policy_unpack_test.c apparmor: fix use of strcpy in policy_unpack_test 2023-07-06 10:58:49 -07:00
procattr.c apparmor: fix obsoleted comments for aa_getprocattr() and audit_resource() 2022-10-24 22:35:23 -07:00
resource.c apparmor: pass cred through to audit info. 2023-11-28 17:20:07 +00:00
secid.c apparmor: fix kernel-doc complaints 2023-01-10 10:04:35 -08:00
stacksplitdfa.in apparmor: use the dfa to do label parse string splitting 2018-02-09 11:30:01 -08:00
task.c apparmor: pass cred through to audit info. 2023-11-28 17:20:07 +00:00