auditsc: audit_krule mask accesses need bounds checking
Fixes an easy DoS and possible information disclosure.
This does nothing about the broken state of x32 auditing.
eparis: If the admin has enabled auditd and has specifically loaded
audit rules. This bug has been around since before git. Wow...
Signed-off-by: Andy Lutomirski <firstname.lastname@example.org>
Signed-off-by: Eric Paris <email@example.com>
Signed-off-by: Linus Torvalds <firstname.lastname@example.org>
1 file changed