0112721df4
Commit "IMA: policy can now be updated multiple times" assumed that the policy would be updated at least once. If there are zero updates, the temporary list head object will get added to the policy list, and later dereferenced as an IMA policy object, which means that invalid memory will be accessed. Changelog: - Move list_empty() test to ima_release_policy(), before audit msg - Mimi Signed-off-by: Sasha Levin <sasha.levin@oracle.com> Signed-off-by: Mimi Zohar <zohar@linux.vnet.ibm.com> |
||
|---|---|---|
| .. | ||
| evm | ||
| ima | ||
| Kconfig | ||
| Makefile | ||
| digsig.c | ||
| digsig_asymmetric.c | ||
| iint.c | ||
| integrity.h | ||
| integrity_audit.c | ||