aboutsummaryrefslogtreecommitdiffstats
path: root/net/netfilter
AgeCommit message (Expand)Author
2021-12-29netfilter: fix regression in looped (broad|multi)cast's MAC handlingIgnacy Gawędzki
2021-12-08netfilter: ipvs: Fix reuse connection if RS weight is 0yangxingwu
2021-11-26netfilter: nfnetlink_queue: fix OOB when mac header was clearedFlorian Westphal
2021-10-27netfilter: Kconfig: use 'default y' instead of 'm' for bool config optionVegard Nossum
2021-10-27netfilter: ipvs: make global sysctl readonly in non-init netnsAntoine Tenart
2021-10-06netfilter: ipset: Fix oversized kvmalloc() callsJozsef Kadlecsik
2021-10-06ipvs: check that ip_vs_conn_tab_bits is between 8 and 20Andrea Claudi
2021-08-26netfilter: nft_exthdr: fix endianness of tcp option castSergey Marinkevich
2021-08-04netfilter: nft_nat: allow to specify layer 4 protocol NAT onlyPablo Neira Ayuso
2021-08-04netfilter: conntrack: adjust stop timestamp to real expiry valueFlorian Westphal
2021-07-28netfilter: ctnetlink: suspicious RCU usage in ctnetlink_dump_helpinfoVasily Averin
2021-07-20netfilter: nft_exthdr: check for IPv6 packet before further processingPablo Neira Ayuso
2021-06-30netfilter: synproxy: Fix out of bounds when parsing TCP optionsMaxim Mikityanskiy
2021-06-10netfilter: nfnetlink_cthelper: hit EBUSY on updates if size mismatchesPablo Neira Ayuso
2021-06-10ipvs: ignore IP_VS_SVC_F_HASHED flag when adding serviceJulian Anastasov
2021-06-03netfilter: x_tables: Use correct memory barriers.Mark Tomlinson
2021-05-22netfilter: conntrack: Make global sysctls readonly in non-init netnsJonathon Reinhart
2021-05-22netfilter: nftables: avoid overflows in nft_hash_buckets()Eric Dumazet
2021-04-28netfilter: nft_limit: avoid possible divide error in nft_limit_initEric Dumazet
2021-04-28netfilter: conntrack: do not print icmpv6 as unknown via /procPablo Neira Ayuso
2021-04-16netfilter: x_tables: fix compat match/target pad out-of-bound writeFlorian Westphal
2021-03-17netfilter: x_tables: gpf inside xt_find_revision()Vasily Averin
2021-02-23netfilter: conntrack: skip identical origin tuple in same zone onlyFlorian Westphal
2021-02-23netfilter: xt_recent: Fix attempt to update deleted entryJozsef Kadlecsik
2021-02-03netfilter: nft_dynset: add timeout extension to templatePablo Neira Ayuso
2021-01-23netfilter: conntrack: fix reading nf_conntrack_bucketsJesper Dangaard Brouer
2021-01-12netfilter: xt_RATEEST: reject non-null terminated string from userspaceFlorian Westphal
2021-01-12netfilter: ipset: fix shift-out-of-bounds in htable_bits()Vasily Averin
2020-10-29ipvs: Fix uninit-value in do_ip_vs_set_ctl()Peilin Ye
2020-10-14netfilter: ctnetlink: add a range check for l3/l4 protonumWill McVicker
2020-09-09netfilter: nf_tables: fix destination register zeroingFlorian Westphal
2020-09-09netfilter: nf_tables: add NFTA_SET_USERDATA if not nullPablo Neira Ayuso
2020-08-21ipvs: allow connection reuse for unconfirmed conntrackJulian Anastasov
2020-07-29ipvs: fix the connection sync failed in some casesguodeqing
2020-06-30netfilter: ipset: fix unaligned atomic accessRussell King
2020-06-20netfilter: nft_nat: return EOPNOTSUPP if type or flags are not supportedPablo Neira Ayuso
2020-06-03netfilter: nf_conntrack_pptp: fix compilation warning with W=1 buildPablo Neira Ayuso
2020-06-03netfilter: nf_conntrack_pptp: prevent buffer overflows in debug codePablo Neira Ayuso
2020-06-03netfilter: nfnetlink_cthelper: unbreak userspace helper supportPablo Neira Ayuso
2020-06-03netfilter: ipset: Fix subcounter update skipPhil Sutter
2020-05-20netfilter: conntrack: avoid gcc-10 zero-length-bounds warningArnd Bergmann
2020-05-20netfilter: nat: never update the UDP checksum when it's 0Guillaume Nault
2020-04-24netfilter: nf_tables: report EOPNOTSUPP on unsupported flags/object typePablo Neira Ayuso
2020-04-02netfilter: nft_fwd_netdev: validate family and chain typePablo Neira Ayuso
2020-03-20netfilter: nft_payload: add missing attribute validation for payload csum flagsJakub Kicinski
2020-03-20netfilter: cthelper: add missing attribute validation for cthelperJakub Kicinski
2020-03-11netfilter: nf_conntrack: resolve clash for matching conntracksMartynas Pumputis
2020-02-28netfilter: xt_hashlimit: limit the max size of hashtableCong Wang
2020-01-29netfilter: ipset: use bitmap infrastructure completelyKadlecsik József
2020-01-27netfilter: nft_set_hash: fix lookups with fixed size hash on big endianPablo Neira Ayuso
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-05-30 11:57:29 +0000