summaryrefslogtreecommitdiffstats
path: root/net/netfilter
Commit message (Expand)AuthorAgeFilesLines
* netfilter: Kconfig: use 'default y' instead of 'm' for bool config optionVegard Nossum2021-10-271-1/+1
* netfilter: ipvs: make global sysctl readonly in non-init netnsAntoine Tenart2021-10-271-0/+5
* netfilter: ipset: Fix oversized kvmalloc() callsJozsef Kadlecsik2021-10-061-2/+2
* ipvs: check that ip_vs_conn_tab_bits is between 8 and 20Andrea Claudi2021-10-061-0/+4
* netfilter: nft_nat: allow to specify layer 4 protocol NAT onlyPablo Neira Ayuso2021-08-041-1/+3
* netfilter: nft_exthdr: check for IPv6 packet before further processingPablo Neira Ayuso2021-07-201-0/+3
* netfilter: synproxy: Fix out of bounds when parsing TCP optionsMaxim Mikityanskiy2021-06-301-0/+5
* netfilter: nfnetlink_cthelper: hit EBUSY on updates if size mismatchesPablo Neira Ayuso2021-06-101-2/+6
* ipvs: ignore IP_VS_SVC_F_HASHED flag when adding serviceJulian Anastasov2021-06-101-1/+1
* netfilter: x_tables: Use correct memory barriers.Mark Tomlinson2021-06-031-0/+3
* netfilter: x_tables: fix compat match/target pad out-of-bound writeFlorian Westphal2021-04-161-8/+2
* netfilter: x_tables: gpf inside xt_find_revision()Vasily Averin2021-03-171-2/+4
* netfilter: xt_recent: Fix attempt to update deleted entryJozsef Kadlecsik2021-02-231-2/+10
* netfilter: nft_dynset: add timeout extension to templatePablo Neira Ayuso2021-02-031-1/+3
* netfilter: xt_RATEEST: reject non-null terminated string from userspaceFlorian Westphal2021-01-121-0/+3
* netfilter: ipset: fix shift-out-of-bounds in htable_bits()Vasily Averin2021-01-121-15/+5
* ipvs: Fix uninit-value in do_ip_vs_set_ctl()Peilin Ye2020-10-291-3/+4
* netfilter: ctnetlink: add a range check for l3/l4 protonumWill McVicker2020-10-141-0/+2
* netfilter: nf_tables: fix destination register zeroingFlorian Westphal2020-09-121-1/+3
* netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6Vasily Averin2020-07-091-0/+1
* netfilter: ipset: fix unaligned atomic accessRussell King2020-06-291-0/+2
* netfilter: nft_nat: return EOPNOTSUPP if type or flags are not supportedPablo Neira Ayuso2020-06-201-2/+2
* netfilter: nf_conntrack_pptp: fix compilation warning with W=1 buildPablo Neira Ayuso2020-06-031-1/+1
* netfilter: nf_conntrack_pptp: prevent buffer overflows in debug codePablo Neira Ayuso2020-06-031-27/+35
* netfilter: ipset: Fix subcounter update skipPhil Sutter2020-06-031-1/+1
* netfilter: conntrack: avoid gcc-10 zero-length-bounds warningArnd Bergmann2020-05-201-2/+2
* netfilter: nf_tables: destroy the set if fail to add transactionLiping Zhang2020-05-101-1/+3
* netfilter: nft_dynset: fix panic if NFT_SET_HASH is not enabledLiping Zhang2020-05-101-0/+3
* netfilter: nf_tables: fix a wrong check to skip the inactive rulesLiping Zhang2020-05-101-1/+1
* netfilter: nfnetlink: use original skbuff when acking batchesPablo Neira Ayuso2020-05-101-3/+3
* netfilter: cthelper: add missing attribute validation for cthelperJakub Kicinski2020-03-201-0/+2
* netfilter: xt_bpf: add overflow checksJann Horn2020-02-281-0/+3
* netfilter: ipset: use bitmap infrastructure completelyKadlecsik József2020-01-294-10/+10
* netfilter: fix a use-after-free in mtype_destroy()Cong Wang2020-01-231-1/+1
* netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is presentFlorian Westphal2020-01-141-1/+2
* netfilter: ctnetlink: netns exit must wait for callbacksFlorian Westphal2020-01-121-0/+3
* ipvs: move old_secure_tcp into struct netns_ipvsEric Dumazet2019-11-121-8/+7
* netfilter: ipset: Fix an error code in ip_set_sockfn_get()Dan Carpenter2019-11-121-3/+5
* netfilter: nf_conntrack_ftp: Fix debug outputThomas Jarosch2019-09-211-1/+1
* netfilter: conntrack: Use consistent ct id hash calculationDirk Morris2019-09-061-8/+8
* netfilter: ctnetlink: don't use conntrack/expect object addresses as idFlorian Westphal2019-09-062-5/+64
* netfilter: nfnetlink: avoid deadlock due to synchronous request_moduleFlorian Westphal2019-08-251-1/+1
* netfilter: nfnetlink_acct: validate NFACCT_QUOTA parameterPhil Turnbull2019-08-111-0/+2
* ipvs: do not schedule icmp errors from tunnelsJulian Anastasov2019-05-161-1/+1
* netfilter: compat: initialize all fields in xt_initFrancesco Ruggeri2019-05-161-1/+1
* netfilter: physdev: relax br_netfilter dependencyFlorian Westphal2019-04-271-2/+7
* netfilter: nf_conntrack_tcp: Fix stack out of bounds when parsing TCP optionsJozsef Kadlecsik2019-03-231-0/+4
* netfilter: nfnetlink_acct: validate NFACCT_FILTER parametersPhil Turnbull2019-03-231-0/+3
* netfilter: nfnetlink_log: just returns error for unknown commandKen-ichirou MATSUZAWA2019-03-231-1/+1
* ipvs: Fix signed integer overflow when setsockopt timeoutZhangXiaoxu2019-03-231-0/+12
generated by cgit v1.2.3 (git 2.25.1) at 2025-04-05 14:48:46 +0000