Linux 6.8 Released
12 Mar 2024 tags: audit lsm selinuxLinux v6.8 was released on Sunday, March 10th. I already wrote up a post highlighting the LSM, SELinux, and audit changes that were submitted during the merge window, however there were additional changes that went in during the release candidate process which are described below.
LSM
-
Fix a potential integer overflow bug when sanity checking the size of an argument to the lsm_set_self_attr(2) syscall.
-
Fix a couple of problems relating to a mismatch between the expected default return value of a LSM hook and the actual default value. While the return value mismatches are not new, the recent popularity of BPF LSM modules combined with the unconventional nature of the BPF LSM framework has increased the likelihood of a failure.
SELinux
- A minor fix to the lsm_get_self_attr(2) syscall SELinux code to ensure that an internal string buffer is always properly initialized before attempting to free the buffer.
In addition to my highlights, LWN.net provides a nice overall summary of the kernel changes made during the first and second weeks of the merge window.