debian-packaging
/
linux
8
0
Fork 0
Code Releases Activity
linux/debian/patches/features/all/lockdown
History
Salvatore Bonaccorso 832de9e7d1 efi: Restrict efivar_ssdt_load when the kernel is locked down (CVE-2019-20908) 2020-07-23 12:26:33 +02:00
..
0001-Add-the-ability-to-lock-down-access-to-the-running-k.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0003-ima-require-secure_boot-rules-in-lockdown-mode.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0004-Enforce-module-signatures-if-the-kernel-is-locked-do.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0005-Restrict-dev-mem-kmem-port-when-the-kernel-is-locked.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0006-kexec-Disable-at-runtime-if-the-kernel-is-locked-dow.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0007-Copy-secure_boot-flag-in-boot-params-across-kexec-re.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0008-kexec_file-Restrict-at-runtime-if-the-kernel-is-lock.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0009-hibernate-Disable-when-the-kernel-is-locked-down.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0010-uswsusp-Disable-when-the-kernel-is-locked-down.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0011-PCI-Lock-down-BAR-access-when-the-kernel-is-locked-d.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0012-x86-Lock-down-IO-port-access-when-the-kernel-is-lock.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0013-x86-msr-Restrict-MSR-access-when-the-kernel-is-locke.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0014-asus-wmi-Restrict-debugfs-interface-when-the-kernel-.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0015-ACPI-Limit-access-to-custom_method-when-the-kernel-i.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0016-acpi-Ignore-acpi_rsdp-kernel-param-when-the-kernel-h.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0017-acpi-Disable-ACPI-table-override-if-the-kernel-is-lo.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0018-acpi-Disable-APEI-error-injection-if-the-kernel-is-l.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0020-Prohibit-PCMCIA-CIS-storage-when-the-kernel-is-locke.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0021-Lock-down-TIOCSSERIAL.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0022-Lock-down-module-params-that-specify-hardware-parame.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0023-x86-mmiotrace-Lock-down-the-testmmiotrace-module.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0024-debugfs-Disallow-use-of-debugfs-files-when-the-kerne.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0025-Lock-down-proc-kcore.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0026-Lock-down-kprobes.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0027-bpf-Restrict-kernel-image-access-functions-when-the-.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0028-efi-Add-an-EFI_SECURE_BOOT-flag-to-indicate-secure-b.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
0029-efi-Lock-down-the-kernel-if-booted-in-secure-boot-mo.patch Refresh "efi: Lock down the kernel if booted in secure boot mode" 2020-03-21 09:13:10 +01:00
0032-efi-Restrict-efivar_ssdt_load-when-the-kernel-is-loc.patch efi: Restrict efivar_ssdt_load when the kernel is locked down (CVE-2019-20908) 2020-07-23 12:26:33 +02:00
arm64-add-kernel-config-option-to-lock-down-when.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
enable-cold-boot-attack-mitigation.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
lockdown-refer-to-debian-wiki-until-manual-page-exists.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00
mtd-disable-slram-and-phram-when-locked-down.patch Refresh remaining patches 2019-11-20 16:24:37 -08:00