iv/linux
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
linux/security
History
Nathan Chancellor 21ca0bfa11 security: Restrict CONFIG_ZERO_CALL_USED_REGS to gcc or clang > 15.0.6 
commit d6a9fb87e9d18f3394a9845546bbe868efdccfd2 upstream.

A bad bug in clang's implementation of -fzero-call-used-regs can result
in NULL pointer dereferences (see the links above the check for more
information). Restrict CONFIG_CC_HAS_ZERO_CALL_USED_REGS to either a
supported GCC version or a clang newer than 15.0.6, which will catch
both a theoretical 15.0.7 and the upcoming 16.0.0, which will both have
the bug fixed.

Cc: stable@vger.kernel.org # v5.15+
Signed-off-by: Nathan Chancellor <nathan@kernel.org>
Signed-off-by: Kees Cook <keescook@chromium.org>
Link: https://lore.kernel.org/r/20221214232602.4118147-1-nathan@kernel.org
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
2022-12-31 13:33:10 +01:00
..
apparmor
apparmor: Fix memleak in alloc_ns()
2022-12-31 13:32:31 +01:00
bpf
bpf: Implement task local storage
2020-11-06 08:08:37 -08:00
integrity
ima: Simplify ima_lsm_copy_rule
2022-12-31 13:33:08 +01:00
keys
KEYS: encrypted: fix key instantiation with user-provided data
2022-12-21 17:48:11 +01:00
landlock
landlock: Fix documentation style
2022-09-29 18:43:04 +02:00
loadpin
LoadPin: Ignore the "contents" argument of the LSM hooks
2022-12-31 13:33:07 +01:00
lockdown
lockdown: ratelimit denial messages
2022-09-14 07:37:50 -04:00
safesetid
LSM: SafeSetID: Add setgroups() security policy handling
2022-07-15 18:24:42 +00:00
selinux
selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context()
2022-10-19 09:55:53 -04:00
smack
whack-a-mole: constifying struct path *
2022-10-06 17:31:02 -07:00
tomoyo
tomoyo: struct path it might get from LSM callers won't have NULL dentry or mnt
2022-08-21 11:50:42 -04:00
yama
task_work: cleanup notification modes
2020-10-17 15:05:30 -06:00
commoncap.c
capabilities: fix potential memleak on error path from vfs_getxattr_alloc()
2022-10-28 06:44:33 -04:00
device_cgroup.c
bpf: Make BPF_PROG_RUN_ARRAY return -err instead of allow boolean
2022-01-19 12:51:30 -08:00
inode.c
Merge branch 'work.mount0' of git://git.kernel.org/pub/scm/linux/kernel/git/viro/vfs
2019-07-19 10:42:02 -07:00
Kconfig
x86/retbleed: Add fine grained Kconfig knobs
2022-06-29 17:43:41 +02:00
Kconfig.hardening
security: Restrict CONFIG_ZERO_CALL_USED_REGS to gcc or clang > 15.0.6
2022-12-31 13:33:10 +01:00
lsm_audit.c
lsm: clean up redundant NULL pointer check
2022-08-15 22:44:01 -04:00
Makefile
security: remove unneeded subdir-$(CONFIG_...)
2021-09-03 08:17:20 +09:00
min_addr.c
sysctl: pass kernel pointers to ->proc_handler
2020-04-27 02:07:40 -04:00
security.c
powerpc updates for 6.1
2022-10-09 14:05:15 -07:00