summaryrefslogtreecommitdiffstats
path: root/net/netfilter
Commit message (Expand)AuthorAgeFilesLines
* ipvs: Fix uninit-value in do_ip_vs_set_ctl()Peilin Ye2020-10-291-3/+4
* netfilter: ctnetlink: add a range check for l3/l4 protonumWill McVicker2020-10-141-0/+2
* netfilter: nf_tables: fix destination register zeroingFlorian Westphal2020-09-121-1/+3
* netfilter: nf_tables: add NFTA_SET_USERDATA if not nullPablo Neira Ayuso2020-09-121-1/+2
* netfilter: nf_conntrack_h323: lost .data_len definition for Q.931/ipv6Vasily Averin2020-07-091-0/+1
* netfilter: ipset: fix unaligned atomic accessRussell King2020-06-301-0/+2
* netfilter: nft_nat: return EOPNOTSUPP if type or flags are not supportedPablo Neira Ayuso2020-06-201-2/+2
* netfilter: nf_conntrack_pptp: fix compilation warning with W=1 buildPablo Neira Ayuso2020-06-031-1/+1
* netfilter: nf_conntrack_pptp: prevent buffer overflows in debug codePablo Neira Ayuso2020-06-031-27/+35
* netfilter: ipset: Fix subcounter update skipPhil Sutter2020-06-031-1/+1
* netfilter: conntrack: avoid gcc-10 zero-length-bounds warningArnd Bergmann2020-05-201-2/+2
* netfilter: nft_fwd_netdev: validate family and chain typePablo Neira Ayuso2020-04-021-0/+8
* netfilter: cthelper: add missing attribute validation for cthelperJakub Kicinski2020-03-201-0/+2
* netfilter: xt_hashlimit: limit the max size of hashtableCong Wang2020-02-281-0/+10
* netfilter: xt_bpf: add overflow checksJann Horn2020-02-281-0/+3
* netfilter: ipset: use bitmap infrastructure completelyKadlecsik József2020-01-294-10/+10
* netfilter: fix a use-after-free in mtype_destroy()Cong Wang2020-01-231-1/+1
* netfilter: ipset: avoid null deref when IPSET_ATTR_LINENO is presentFlorian Westphal2020-01-141-1/+2
* netfilter: ctnetlink: netns exit must wait for callbacksFlorian Westphal2020-01-121-0/+3
* ipvs: move old_secure_tcp into struct netns_ipvsEric Dumazet2019-11-121-8/+7
* netfilter: ipset: Fix an error code in ip_set_sockfn_get()Dan Carpenter2019-11-121-3/+5
* netfilter: nf_conntrack_ftp: Fix debug outputThomas Jarosch2019-09-211-1/+1
* netfilter: conntrack: Use consistent ct id hash calculationDirk Morris2019-08-251-8/+8
* netfilter: ctnetlink: don't use conntrack/expect object addresses as idFlorian Westphal2019-08-252-5/+64
* netfilter: nfnetlink: avoid deadlock due to synchronous request_moduleFlorian Westphal2019-08-251-1/+1
* ipvs: do not schedule icmp errors from tunnelsJulian Anastasov2019-05-161-1/+1
* netfilter: compat: initialize all fields in xt_initFrancesco Ruggeri2019-05-161-1/+1
* netfilter: nft_set_rbtree: check for inactive element after flag mismatchPablo Neira Ayuso2019-05-041-4/+3
* netfilter: physdev: relax br_netfilter dependencyFlorian Westphal2019-04-051-2/+7
* netfilter: nf_nat: skip nat clash resolution for same-origin entriesMartynas Pumputis2019-03-131-0/+16
* ipvs: Fix signed integer overflow when setsockopt timeoutZhangXiaoxu2019-03-131-0/+12
* netfilter: nf_tables: fix flush after rule deletion in the same batchPablo Neira Ayuso2019-02-271-0/+3
* netfilter: nf_tables: fix mismatch in big-endian systemLiping Zhang2019-02-203-29/+31
* netfilter: ipset: do not call ipset_nest_end after nla_nest_cancelPan Bian2019-01-131-1/+1
* netfilter: seqadj: re-load tcp header pointer after possible head reallocationFlorian Westphal2019-01-131-3/+4
* ipvs: call ip_vs_dst_notifier earlier than ipv6_dev_notfXin Long2018-12-171-0/+3
* netfilter: xt_IDLETIMER: add sysfs filename checking routineTaehee Yoo2018-11-271-0/+20
* netfilter: ipset: actually allow allowable CIDR 0 in hash:net,port,netEric Westbrook2018-11-271-4/+4
* netfilter: conntrack: fix calculation of next bucket number in early_dropVasily Khoruzhick2018-11-211-5/+8
* netfilter: check for seqadj ext existence before adding it in nf_nat_setup_infoXin Long2018-10-201-1/+1
* netfilter: x_tables: avoid stack-out-of-bounds read in xt_copy_counters_from_...Eric Dumazet2018-09-191-2/+2
* ipvs: fix race between ip_vs_conn_new() and ip_vs_del_dest()Tan Hu2018-09-151-4/+11
* netfilter: conntrack: dccp: treat SYNC/SYNCACK as invalid if no prior stateFlorian Westphal2018-08-241-4/+4
* netfilter: nf_conntrack: Fix possible possible crash on module loading.Andrey Ryabinin2018-08-241-1/+1
* netfilter: nf_log: fix uninit read in nf_log_proc_dostringJann Horn2018-08-241-0/+4
* netfilter: nf_tables: check msg_type before nft_trans_set(trans)Alexey Kodanev2018-08-031-5/+6
* netfilter: nf_queue: augment nfqa_cfg_policyEric Dumazet2018-07-171-0/+3
* netfilter: nf_log: don't hold nf_log_mutex during user accessJann Horn2018-07-111-3/+6
* netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON in nft_do_chain()Taehee Yoo2018-07-111-1/+2
* ipvs: fix buffer overflow with sync daemon and serviceJulian Anastasov2018-06-261-6/+15
generated by cgit v1.2.3 (git 2.25.1) at 2025-03-06 22:00:21 +0000