summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)AuthorFilesLines
2018-11-27netfilter: xt_IDLETIMER: add sysfs filename checking routineTaehee Yoo1-0/+20
2018-11-27netfilter: ipset: actually allow allowable CIDR 0 in hash:net,port,netEric Westbrook1-4/+4
2018-09-19netfilter: x_tables: avoid stack-out-of-bounds read in xt_copy_counters_from_...Eric Dumazet1-2/+2
2018-09-15ipvs: fix race between ip_vs_conn_new() and ip_vs_del_dest()Tan Hu1-4/+11
2018-08-24netfilter: conntrack: dccp: treat SYNC/SYNCACK as invalid if no prior stateFlorian Westphal1-4/+4
2018-07-17netfilter: nf_queue: augment nfqa_cfg_policyEric Dumazet1-0/+3
2018-07-11netfilter: nf_log: don't hold nf_log_mutex during user accessJann Horn1-3/+6
2018-07-11netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON in nft_do_chain()Taehee Yoo1-1/+2
2018-07-03ipvs: fix buffer overflow with sync daemon and serviceJulian Anastasov1-6/+15
2018-05-16ipvs: fix rtnl_lock lockups caused by start_sync_threadJulian Anastasov2-83/+80
2018-04-13netfilter: ctnetlink: fix incorrect nf_ct_put during hash resizeLiping Zhang1-1/+6
2018-04-08netfilter: x_tables: add and use xt_check_proc_nameFlorian Westphal3-5/+36
2018-04-08netfilter: ctnetlink: Make some parameters integer to avoid enum mismatchMatthias Kaehlcke1-4/+3
2018-03-24netfilter: xt_CT: fix refcnt leak on error pathGao Feng1-2/+9
2018-03-18netfilter: x_tables: pack percpu counter allocationsFlorian Westphal1-9/+25
2018-03-18netfilter: x_tables: pass xt_counters struct to counter allocatorFlorian Westphal1-0/+30
2018-03-18netfilter: x_tables: pass xt_counters struct instead of packet counterFlorian Westphal1-0/+9
2018-03-18netfilter: IDLETIMER: be syzkaller friendlyEric Dumazet1-3/+6
2018-03-18netfilter: nat: cope with negative port rangePaolo Abeni1-2/+5
2018-03-18netfilter: x_tables: fix missing timer initialization in xt_LEDPaolo Abeni1-6/+6
2018-03-18netfilter: nfnetlink_queue: fix timestamp attributeFlorian Westphal1-1/+1
2018-02-25netfilter: ipvs: avoid unused variable warningsArnd Bergmann2-15/+8
2018-02-25netfilter: xt_RATEEST: acquire xt_rateest_mutex for hash insertCong Wang1-5/+17
2018-02-25netfilter: x_tables: avoid out-of-bounds reads in xt_request_find_{match|target}Eric Dumazet1-0/+6
2018-02-25netfilter: x_tables: fix int overflow in xt_alloc_table_info()Dmitry Vyukov1-3/+1
2018-02-16netfilter: nf_queue: Make the queue_handler pernetEric W. Biederman2-15/+20
2018-01-31netfilter: xt_osf: Add missing permission checksKevin Cernekee1-0/+7
2018-01-31netfilter: nfnetlink_cthelper: Add missing permission checksKevin Cernekee1-0/+10
2018-01-31netfilter: nf_conntrack_sip: extend request line validationUlrich Weber1-1/+4
2018-01-31netfilter: restart search if moved to other chainFlorian Westphal1-0/+7
2018-01-31netfilter: nfnetlink_queue: reject verdict request from different portidLiping Zhang1-4/+2
2018-01-31netfilter: nf_ct_expect: remove the redundant slash when policy name is emptyLiping Zhang1-1/+1
2018-01-31netfilter: x_tables: speed up jump target validationFlorian Westphal1-0/+50
2017-12-25netfilter: nfnetlink_queue: fix secctx memory leakLiping Zhang1-2/+7
2017-12-25netfilter: nfnl_cthelper: fix a race when walk the nf_ct_helper_hash tableLiping Zhang1-96/+81
2017-12-25netfilter: nfnl_cthelper: Fix memory leakJeffy Chen1-3/+9
2017-12-25netfilter: nfnl_cthelper: fix runtime expectation policy updatesPablo Neira Ayuso1-2/+84
2017-12-20netfilter: ipvs: Fix inappropriate output of procfsKUWAZAWA Takuya1-0/+4
2017-11-30netfilter: nf_tables: fix oob accessFlorian Westphal1-1/+1
2017-11-30netfilter: nft_queue: use raw_smp_processor_id()Pablo Neira Ayuso1-1/+1
2017-11-15netfilter: nft_meta: deal with PACKET_LOOPBACK in netdev familyLiping Zhang1-1/+27
2017-10-21netfilter: nf_ct_expect: Change __nf_ct_expect_check() return value.Jarno Rajahalme1-2/+2
2017-10-08netfilter: nfnl_cthelper: fix incorrect helper->expect_class_maxLiping Zhang1-9/+11
2017-10-08netfilter: invoke synchronize_rcu after set the _hook_ to NULLLiping Zhang4-1/+6
2017-08-25netfilter: nf_ct_ext: fix possible panic after nf_ct_extend_unregisterLiping Zhang1-3/+10
2017-07-28ipvs: SNAT packet replies only for NATed connectionsJulian Anastasov1-5/+14
2017-07-05netfilter: synproxy: fix conntrackd interactionEric Leblond1-0/+4
2017-07-05netfilter: xt_TCPMSS: add more sanity tests on tcph->doffEric Dumazet1-1/+5
2017-04-30netfilter: nfnetlink: correctly validate length of batch messagesPhil Turnbull1-4/+6
2016-11-26netfilter: nft_dynset: fix element timeout for HZ != 1000Anders K. Pedersen1-2/+4
generated by cgit v1.2.3 (git 2.39.0) at 2026-01-11 18:02:18 +0300