SELinuxProject/selinux

GitHub

github.com

Releases877

Frequency1 week 10 hours

Last Release about 2 hours ago

Stars1.59K

This is the upstream repository for the Security Enhanced Linux (SELinux) userland libraries and tools. The software provided by this project complements the SELinux features integrated into the Linux kernel and is used by Linux distributions. All bugs and patches should be submitted to [email protected]

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-36084 ↗	Jul 1, 2021Thursday, 1 July 2021, 03:15	3.3 LOW	2.1 LOW
The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __cil_verify_classpermission and __cil_pre_verify_helper).
CVE-2021-36085 ↗	Jul 1, 2021Thursday, 1 July 2021, 03:15	3.3 LOW	2.1 LOW
The CIL compiler in SELinux 3.2 has a use-after-free in __cil_verify_classperms (called from __verify_map_perm_classperms and hashtab_map).
CVE-2021-36086 ↗	Jul 1, 2021Thursday, 1 July 2021, 03:15	3.3 LOW	2.1 LOW
The CIL compiler in SELinux 3.2 has a use-after-free in cil_reset_classpermission (called from cil_reset_classperms_set and cil_reset_classperms_list).
CVE-2021-36087 ↗	Jul 1, 2021Thursday, 1 July 2021, 03:15	3.3 LOW	2.1 LOW
The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmap_match_any (called indirectly from cil_check_neverallow). This occurs because there is sometimes a lack of checks for invalid statements in an optional block.
CVE-2016-7545 ↗	Jan 19, 2017Thursday, 19 January 2017, 20:59	—	7.2 HIGH
SELinux policycoreutils allows local users to execute arbitrary commands outside of the sandbox via a crafted TIOCSTI ioctl call.