]> git.baikalelectronics.ru Git - kernel.git/commit
projects / kernel.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7db9dba) | patch
SELinux: fix array out of bounds when mounting with selinux options
authorEric Paris <eparis@redhat.com>
Wed, 19 Sep 2007 21:19:12 +0000 (17:19 -0400)
committerJames Morris <jmorris@namei.org>
Wed, 19 Sep 2007 22:06:40 +0000 (08:06 +1000)
commitf347759692b2a27d42d0dcf0fee84e2a53cfe24e
treebb9d45dc85e03044b5ee7635f3646774bcbb30d4tree | snapshot
parent7db9dba41e88b75dec5ca3a39e54401e67c1e26ecommit | diff
SELinux: fix array out of bounds when mounting with selinux options

Given an illegal selinux option it was possible for match_token to work in
random memory at the end of the match_table_t array.

Note that privilege is required to perform a context mount, so this issue is
effectively limited to root only.

Signed-off-by: Eric Paris <eparis@redhat.com>
Acked-by: Stephen Smalley <sds@tycho.nsa.gov>
Signed-off-by: James Morris <jmorris@namei.org>
security/selinux/hooks.c diff | blob | history
Linux Kernel Source Tree.