selinux

mirror of https://github.com/SELinuxProject/selinux synced 2024-12-20 05:00:09 +00:00

History

Christian Göttsche fffb16093c libsepol: validate expanded user range and level Check those contains valid values. ==57532==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x603000001178 at pc 0x000000564c04 bp 0x7ffed7a5ad90 sp 0x7ffed7a5ad88 READ of size 8 at 0x603000001178 thread T0 #0 0x564c03 in level_to_str ./libsepol/src/kernel_to_conf.c:1901:19 #1 0x564c03 in range_to_str ./libsepol/src/kernel_to_conf.c:1926:9 #2 0x564c03 in write_user_decl_rules_to_conf ./libsepol/src/kernel_to_conf.c:2367:12 #3 0x55b137 in sepol_kernel_policydb_to_conf ./libsepol/src/kernel_to_conf.c:3184:7 #4 0x55a34f in LLVMFuzzerTestOneInput ./libsepol/fuzz/binpolicy-fuzzer.c:38:9 #5 0x45aed3 in fuzzer::Fuzzer::ExecuteCallback(unsigned char const, unsigned long) fuzzer.o #6 0x446a12 in fuzzer::RunOneTest(fuzzer::Fuzzer, char const, unsigned long) fuzzer.o #7 0x44c93b in fuzzer::FuzzerDriver(int, char**, int ()(unsigned char const*, unsigned long)) fuzzer.o #8 0x475dd2 in main (./out/binpolicy-fuzzer+0x475dd2) #9 0x7f2c2e1a77ec in __libc_start_main csu/../csu/libc-start.c:332:16 #10 0x423689 in _start (./out/binpolicy-fuzzer+0x423689) Signed-off-by: Christian Göttsche <cgzones@googlemail.com>		2021-12-15 12:51:54 -05:00
..
cil	libsepol/cil: support IPv4/IPv6 address embedding	2021-12-15 12:47:17 -05:00
fuzz	libsepol: add libfuzz based fuzzer for reading binary policies	2021-12-15 12:48:28 -05:00
include	libsepol: avoid implicit conversions	2021-07-13 21:01:07 +02:00
man	selinux: Update manpages after removing legacy boolean and user code	2019-07-29 23:46:47 +02:00
src	libsepol: validate expanded user range and level	2021-12-15 12:51:54 -05:00
tests	libsepol: silence -Wextra-semi-stmt warning	2021-07-06 11:08:11 -04:00
utils	libsepol: build: follow standard semantics for DESTDIR and PREFIX	2018-02-14 15:59:36 +01:00
.gitignore
COPYING
Makefile
VERSION	Update VERSIONs to 3.3 for release.	2021-10-21 16:31:23 +02:00