mirrors/linux-stable
1
0
Fork 0
mirror of https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git synced 2024-09-14 06:35:12 +00:00
Code Issues Releases Wiki Activity
linux-stable/security/integrity
History
Roberto Sassu d0f7036b12 ima: Don't ignore errors from crypto_shash_update() 
commit 60386b8540 upstream.

Errors returned by crypto_shash_update() are not checked in
ima_calc_boot_aggregate_tfm() and thus can be overwritten at the next
iteration of the loop. This patch adds a check after calling
crypto_shash_update() and returns immediately if the result is not zero.

Cc: stable@vger.kernel.org
Fixes: 3323eec921 ("integrity: IMA as an integrity service provider")
Signed-off-by: Roberto Sassu <roberto.sassu@huawei.com>
Signed-off-by: Mimi Zohar <zohar@linux.ibm.com>
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2020-10-29 09:07:00 +01:00
..
evm evm: Fix possible memory leak in evm_calc_hmac_or_hash() 2020-06-20 10:25:15 +02:00
ima ima: Don't ignore errors from crypto_shash_update() 2020-10-29 09:07:00 +01:00
digsig.c
digsig_asymmetric.c
iint.c ima: re-initialize iint->atomic_flags 2018-12-01 09:43:00 +01:00
integrity.h ima: re-introduce own integrity cache lock 2018-12-01 09:43:00 +01:00
integrity_audit.c
Kconfig
Makefile