summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2021-01-12netfilter: xt_RATEEST: reject non-null terminated string from userspaceFlorian Westphal1-0/+3
2021-01-12netfilter: ipset: fix shift-out-of-bounds in htable_bits()Vasily Averin1-15/+5
2020-10-29ipvs: Fix uninit-value in do_ip_vs_set_ctl()Peilin Ye1-3/+4
2020-10-14netfilter: ctnetlink: add a range check for l3/l4 protonumWill McVicker1-0/+2
2020-09-09netfilter: nf_tables: fix destination register zeroingFlorian Westphal1-1/+3
2020-09-09netfilter: nf_tables: add NFTA_SET_USERDATA if not nullPablo Neira Ayuso1-1/+2
2020-08-21ipvs: allow connection reuse for unconfirmed conntrackJulian Anastasov1-5/+7
2020-07-29ipvs: fix the connection sync failed in some casesguodeqing1-4/+8
2020-06-30netfilter: ipset: fix unaligned atomic accessRussell King1-0/+2
2020-06-20netfilter: nft_nat: return EOPNOTSUPP if type or flags are not supportedPablo Neira Ayuso1-2/+2
2020-06-03netfilter: nf_conntrack_pptp: fix compilation warning with W=1 buildPablo Neira Ayuso1-1/+1
2020-06-03netfilter: nf_conntrack_pptp: prevent buffer overflows in debug codePablo Neira Ayuso1-27/+35
2020-06-03netfilter: nfnetlink_cthelper: unbreak userspace helper supportPablo Neira Ayuso1-1/+2
2020-06-03netfilter: ipset: Fix subcounter update skipPhil Sutter1-1/+1
2020-05-20netfilter: conntrack: avoid gcc-10 zero-length-bounds warningArnd Bergmann1-2/+2
2020-05-20netfilter: nat: never update the UDP checksum when it's 0Guillaume Nault1-3/+2
2020-04-24netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object typePablo Neira Ayuso1-2/+2
2020-04-02netfilter: nft_fwd_netdev: validate family and chain typePablo Neira Ayuso1-0/+8
2020-03-20netfilter: nft_payload: add missing attribute validation for payload csum flagsJakub Kicinski1-0/+1
2020-03-20netfilter: cthelper: add missing attribute validation for cthelperJakub Kicinski1-0/+2
2020-03-11netfilter: nf_conntrack: resolve clash for matching conntracksMartynas Pumputis1-8/+22
2020-02-28netfilter: xt_hashlimit: limit the max size of hashtableCong Wang1-0/+10
2020-01-29netfilter: ipset: use bitmap infrastructure completelyKadlecsik József4-10/+10
2020-01-27netfilter: nft_set_hash: fix lookups with fixed size hash on big endianPablo Neira Ayuso1-4/+19
2020-01-23netfilter: fix a use-after-free in mtype_destroy()Cong Wang1-1/+1
2020-01-14netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is presentFlorian Westphal1-1/+2
2020-01-12netfilter: nf_tables: validate NFT_SET_ELEM_INTERVAL_ENDPablo Neira Ayuso1-3/+9
2020-01-12netfilter: ctnetlink: netns exit must wait for callbacksFlorian Westphal1-0/+3
2020-01-04net: add bool confirm_neigh parameter for dst_ops.update_pmtuHangbin Liu1-1/+1
2020-01-04netfilter: nf_queue: enqueue skbs with NULL dstMarco Oliverio1-1/+1
2019-11-24netfilter: nft_compat: do not dump private areaPablo Neira Ayuso1-2/+22
2019-11-12ipvs: move old_secure_tcp into struct netns_ipvsEric Dumazet1-8/+7
2019-11-12ipvs: don't ignore errors in case refcounting ip_vs module failsDavide Caratti5-17/+28
2019-11-12netfilter: ipset: Fix an error code in ip_set_sockfn_get()Dan Carpenter1-3/+5
2019-10-11netfilter: nf_tables: allow lookups in dynamic setsFlorian Westphal2-5/+5
2019-09-21netfilter: nf_conntrack_ftp: Fix debug outputThomas Jarosch1-1/+1
2019-09-21netfilter: xt_nfacct: Fix alignment mismatch in xt_nfacct_match_infoJuliana Rodrigueiro1-11/+25
2019-08-29netfilter: ipset: Fix rename concurrency with listingJozsef Kadlecsik1-1/+1
2019-08-25netfilter: conntrack: Use consistent ct id hash calculationDirk Morris1-8/+8
2019-08-16netfilter: nft_hash: fix symhash with modulus oneLaura Garcia Liebana1-1/+1
2019-08-16netfilter: nfnetlink: avoid deadlock due to synchronous request_moduleFlorian Westphal1-1/+1
2019-07-31net: make skb_dst_force return true when dst is refcountedFlorian Westphal1-1/+5
2019-07-31ipvs: fix tinfo memory leak in start_sync_threadJulian Anastasov2-66/+72
2019-07-31ipvs: defer hook registration to avoid leaksJulian Anastasov1-7/+14
2019-07-31ipset: Fix memory accounting for hash types on resizeStefano Brivio1-1/+1
2019-06-22ipvs: Fix use-after-free in ip_vs_inYueHaibing1-1/+1
2019-06-22netfilter: nf_queue: fix reinject verdict handlingJagdish Motwani1-0/+1
2019-05-16netfilter: nf_tables: warn when expr implements only one of activate/deactivateFlorian Westphal1-0/+19
2019-05-16netfilter: ctnetlink: don't use conntrack/expect object addresses as idFlorian Westphal2-5/+64
2019-05-16ipvs: do not schedule icmp errors from tunnelsJulian Anastasov1-1/+1
generated by cgit v1.2.3 (git 2.39.0) at 2026-01-11 10:22:58 +0300