| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 29 Sep 2016 00:54:38 +0200
From: Jann Horn <jann@...jh.net>
To: security@...nel.org, Alexander Viro <viro@...iv.linux.org.uk>,
Paul Moore <paul@...l-moore.com>,
Stephen Smalley <sds@...ho.nsa.gov>,
Eric Paris <eparis@...isplace.org>,
James Morris <james.l.morris@...cle.com>,
"Serge E. Hallyn" <serge@...lyn.com>
Cc: Nick Kralevich <nnk@...gle.com>,
Janis Danisevskis <jdanis@...gle.com>,
linux-security-module@...r.kernel.org, linux-mm@...ck.org,
linux-kernel@...r.kernel.org
Subject: [PATCH v2 0/3] fix SELinux W^X bypass via ptrace
This fixes a bypass of SELinux' W^X protection via ptrace.
For more details, see the commit messages of patches 2/3 and 3/3.
Jann Horn (3):
fs/exec: don't force writing memory access
mm: add LSM hook for writes to readonly memory
selinux: require EXECMEM for forced ptrace poke
drivers/gpu/drm/etnaviv/etnaviv_gem.c | 3 +-
drivers/gpu/drm/i915/i915_gem_userptr.c | 2 +-
drivers/infiniband/core/umem_odp.c | 4 +-
fs/exec.c | 4 +-
fs/proc/base.c | 68 +++++++++++++++++++++-------
fs/proc/internal.h | 4 +-
fs/proc/task_mmu.c | 4 +-
fs/proc/task_nommu.c | 2 +-
include/linux/lsm_hooks.h | 9 ++++
include/linux/mm.h | 12 ++++-
include/linux/sched.h | 4 +-
include/linux/security.h | 10 +++++
kernel/events/uprobes.c | 6 ++-
kernel/fork.c | 6 ++-
mm/gup.c | 80 +++++++++++++++++++++++++--------
mm/memory.c | 22 ++++++---
mm/nommu.c | 22 +++++----
mm/process_vm_access.c | 8 ++--
security/security.c | 8 ++++
security/selinux/hooks.c | 15 +++++++
security/tomoyo/domain.c | 2 +-
virt/kvm/async_pf.c | 3 +-
virt/kvm/kvm_main.c | 9 ++--
23 files changed, 230 insertions(+), 77 deletions(-)
--
2.1.4
Powered by blists - more mailing lists