Hi Linus,
Two small SELinux fixes for v4.20; Ondrej's patch adds a check on user
input, and my patch ensures we don't look past the end of a buffer.
Both patches are quite small and pass the selinux-testsuite, please
merge them into the next v4.20-rc.
Thanks,
-Paul
--
The following changes since commit 4458bba09788e70e8fb39ad003f087cd9dfbd6ac:
selinux: Add __GFP_NOWARN to allocation at str_read()
(2018-09-13 15:36:25 -0400)
are available in the Git repository at:
git://git.kernel.org/pub/scm/linux/kernel/git/pcmoore/selinux.git
tags/selinux-pr-20181115
for you to fetch changes up to 877181a8d9dc663f7a73f77f50af714d7888ec3b:
selinux: fix non-MLS handling in mls_context_to_sid()
(2018-11-13 21:44:33 -0500)
----------------------------------------------------------------
selinux/stable-4.20 PR 20181115
----------------------------------------------------------------
Ondrej Mosnacek (1):
selinux: check length properly in SCTP bind hook
Paul Moore (1):
selinux: fix non-MLS handling in mls_context_to_sid()
security/selinux/hooks.c | 3 +++
security/selinux/ss/mls.c | 10 +++++++---
2 files changed, 10 insertions(+), 3 deletions(-)
--
paul moore
www.paul-moore.com
