linux-stable.git - Linux kernel stable tree

Age	Commit message (Expand)	Author
2023-06-28	netfilter: nf_tables: disallow element updates of bound anonymous sets	Pablo Neira Ayuso
2023-06-21	netfilter: nfnetlink: skip error delivery on batch in case of ENOMEM	Pablo Neira Ayuso
2023-06-09	netfilter: conntrack: define variables exp_nat_nla_policy and any_addr with C...	Tom Rix
2023-05-30	netfilter: nf_tables: fix register ordering	Florian Westphal
2023-05-30	netfilter: nf_tables: do not allow SET_ID to refer to another table	Pablo Neira Ayuso
2023-05-30	netfilter: nf_tables: do not allow RULE_ID to refer to another chain	Pablo Neira Ayuso
2023-05-30	netfilter: nft_dynset: do not reject set updates with NFT_SET_EVAL	Pablo Neira Ayuso
2023-05-30	netfilter: nf_tables: stricter validation of element data	Pablo Neira Ayuso
2023-05-30	netfilter: nf_tables: allow up to 64 bytes in the set element data area	Pablo Neira Ayuso
2023-05-30	netfilter: nf_tables: add nft_setelem_parse_key()	Pablo Neira Ayuso
2023-05-30	netfilter: nf_tables: validate registers coming from userspace.	Pablo Neira Ayuso
2023-05-30	netfilter: nftables: statify nft_parse_register()	Pablo Neira Ayuso
2023-05-30	netfilter: nftables: add nft_parse_register_store() and use it	Pablo Neira Ayuso
2023-05-30	netfilter: nftables: add nft_parse_register_load() and use it	Pablo Neira Ayuso
2023-05-30	netfilter: nf_tables: bogus EBUSY in helper removal from transaction	Pablo Neira Ayuso
2023-05-17	netfilter: nf_tables: deactivate anonymous set from preparation phase	Pablo Neira Ayuso
2023-05-17	netfilter: nf_tables: bogus EBUSY when deleting set after flush	Pablo Neira Ayuso
2023-05-17	netfilter: nf_tables: use-after-free in failing rule with bound set	Pablo Neira Ayuso
2023-05-17	netfilter: nft_hash: fix nft_hash_deactivate	Pablo Neira Ayuso
2023-05-17	netfilter: nf_tables: unbind set in rule from commit path	Pablo Neira Ayuso
2023-05-17	netfilter: nf_tables: split set destruction in deactivate and destroy phase	Florian Westphal
2023-03-11	netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack()	Hangyu Hua
2023-02-06	netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETE	Sriram Yagnaraman
2023-01-18	netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function.	Gavrilov Ilia
2022-11-10	ipvs: use explicitly signed chars	Jason A. Donenfeld
2022-10-26	netfilter: nf_queue: fix socket leak	Vimal Agrawal
2022-09-28	netfilter: nf_conntrack_irc: Tighten matching on DCC message	David Leadbeater
2022-09-28	netfilter: nf_conntrack_sip: fix ct_sip_walk_headers	Igor Ryzhov
2022-09-15	netfilter: nf_conntrack_irc: Fix forged IP logic	David Leadbeater
2022-09-05	netfilter: conntrack: NF_CONNTRACK_PROCFS should no longer default to y	Geert Uytterhoeven
2022-09-05	netfilter: nft_payload: do not truncate csum_offset and csum_type	Pablo Neira Ayuso
2022-09-05	netfilter: nft_payload: report ERANGE for too long offset and length	Pablo Neira Ayuso
2022-08-25	netfilter: nf_tables: really skip inactive sets when allocating name	Pablo Neira Ayuso
2022-08-25	netfilter: nf_tables: fix null deref due to zeroed list head	Florian Westphal
2022-08-25	netfilter: nf_queue: do not allow packet truncation below transport header of...	Florian Westphal
2022-07-07	netfilter: nft_dynset: restore set element counter when failing to update	Pablo Neira Ayuso
2022-06-14	netfilter: nf_tables: disallow non-stateful expression in sets earlier	Pablo Neira Ayuso
2022-05-12	ipvs: correctly print the memory size of ip_vs_conn_tab	Pengcheng Yang
2022-04-20	netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options	Pablo Neira Ayuso
2022-03-28	netfilter: nf_tables: initialize registers in nft_do_chain()	Pablo Neira Ayuso
2022-03-08	netfilter: nf_queue: fix possible use-after-free	Florian Westphal
2022-03-08	netfilter: nf_queue: don't assume sk is full socket	Florian Westphal
2022-03-08	netfilter: fix use-after-free in __nf_register_net_hook()	Eric Dumazet
2022-02-08	netfilter: nat: limit port clash resolution attempts	Florian Westphal
2022-02-08	netfilter: nat: remove l4 protocol port rovers	Florian Westphal
2022-02-08	netfilter: nft_payload: do not update layer 4 checksum when mangling fragments	Pablo Neira Ayuso
2021-12-29	netfilter: fix regression in looped (broad\|multi)cast's MAC handling	Ignacy Gawędzki
2021-12-08	netfilter: ipvs: Fix reuse connection if RS weight is 0	yangxingwu
2021-11-26	netfilter: nfnetlink_queue: fix OOB when mac header was cleared	Florian Westphal
2021-10-27	netfilter: Kconfig: use 'default y' instead of 'm' for bool config option	Vegard Nossum