summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)Author
2023-11-20netfilter: xt_recent: fix (increase) ipv6 literal buffer lengthMaciej Żenczykowski
2023-11-08netfilter: nfnetlink_log: silence bogus compiler warningFlorian Westphal
2023-10-25netfilter: nft_payload: fix wrong mac header matchingFlorian Westphal
2023-09-23netfilter: xt_sctp: validate the flag_info countWander Lairson Costa
2023-09-23netfilter: xt_u32: validate user space inputWander Lairson Costa
2023-09-23netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for ip_set_hash...Kyle Zeng
2023-08-30ipvs: fix racy memcpy in proc_do_sync_thresholdSishuai Gong
2023-08-30ipvs: Improve robustness to the ipvs sysctlJunwei Hu
2023-08-30netfilter: set default timeout to 3 secs for sctp shutdown send and recv stateXin Long
2023-08-30netfilter: nft_dynset: disallow object mapsPablo Neira Ayuso
2023-08-16netfilter: nf_tables: report use refcount overflowPablo Neira Ayuso
2023-08-11netfilter: nf_tables: fix spurious set element insertion failureFlorian Westphal
2023-08-11netfilter: nf_tables: prevent OOB access in nft_byteorder_evalThadeu Lima de Souza Cascardo
2023-08-11netfilter: conntrack: Avoid nf_ct_helper_hash uses after freeFlorent Revest
2023-08-11netfilter: nf_tables: unbind non-anonymous set if rule construction failsPablo Neira Ayuso
2023-08-11netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chainPablo Neira Ayuso
2023-08-11netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULEPablo Neira Ayuso
2023-08-11netfilter: nf_conntrack_sip: fix the ct_sip_parse_numerical_param() return va...Ilia.Gavrilov
2023-08-11treewide: Remove uninitialized_var() usageKees Cook
2023-06-28netfilter: nf_tables: disallow element updates of bound anonymous setsPablo Neira Ayuso
2023-06-21netfilter: nfnetlink: skip error delivery on batch in case of ENOMEMPablo Neira Ayuso
2023-06-09netfilter: conntrack: define variables exp_nat_nla_policy and any_addr with C...Tom Rix
2023-05-30netfilter: nf_tables: fix register orderingFlorian Westphal
2023-05-30netfilter: nf_tables: do not allow SET_ID to refer to another tablePablo Neira Ayuso
2023-05-30netfilter: nf_tables: do not allow RULE_ID to refer to another chainPablo Neira Ayuso
2023-05-30netfilter: nft_dynset: do not reject set updates with NFT_SET_EVALPablo Neira Ayuso
2023-05-30netfilter: nf_tables: stricter validation of element dataPablo Neira Ayuso
2023-05-30netfilter: nf_tables: allow up to 64 bytes in the set element data areaPablo Neira Ayuso
2023-05-30netfilter: nf_tables: add nft_setelem_parse_key()Pablo Neira Ayuso
2023-05-30netfilter: nf_tables: validate registers coming from userspace.Pablo Neira Ayuso
2023-05-30netfilter: nftables: statify nft_parse_register()Pablo Neira Ayuso
2023-05-30netfilter: nftables: add nft_parse_register_store() and use itPablo Neira Ayuso
2023-05-30netfilter: nftables: add nft_parse_register_load() and use itPablo Neira Ayuso
2023-05-30netfilter: nf_tables: bogus EBUSY in helper removal from transactionPablo Neira Ayuso
2023-05-17netfilter: nf_tables: deactivate anonymous set from preparation phasePablo Neira Ayuso
2023-05-17netfilter: nf_tables: bogus EBUSY when deleting set after flushPablo Neira Ayuso
2023-05-17netfilter: nf_tables: use-after-free in failing rule with bound setPablo Neira Ayuso
2023-05-17netfilter: nft_hash: fix nft_hash_deactivatePablo Neira Ayuso
2023-05-17netfilter: nf_tables: unbind set in rule from commit pathPablo Neira Ayuso
2023-05-17netfilter: nf_tables: split set destruction in deactivate and destroy phaseFlorian Westphal
2023-03-11netfilter: ctnetlink: fix possible refcount leak in ctnetlink_create_conntrack()Hangyu Hua
2023-02-06netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETESriram Yagnaraman
2023-01-18netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function.Gavrilov Ilia
2022-11-10ipvs: use explicitly signed charsJason A. Donenfeld
2022-10-26netfilter: nf_queue: fix socket leakVimal Agrawal
2022-09-28netfilter: nf_conntrack_irc: Tighten matching on DCC messageDavid Leadbeater
2022-09-28netfilter: nf_conntrack_sip: fix ct_sip_walk_headersIgor Ryzhov
2022-09-15netfilter: nf_conntrack_irc: Fix forged IP logicDavid Leadbeater
2022-09-05netfilter: conntrack: NF_CONNTRACK_PROCFS should no longer default to yGeert Uytterhoeven
2022-09-05netfilter: nft_payload: do not truncate csum_offset and csum_typePablo Neira Ayuso
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-25 05:18:41 +0000