summaryrefslogtreecommitdiff
path: root/net/netfilter
AgeCommit message (Expand)Author
2018-09-19netfilter: x_tables: avoid stack-out-of-bounds read in xt_copy_counters_from_...Eric Dumazet
2018-09-15ipvs: fix race between ip_vs_conn_new() and ip_vs_del_dest()Tan Hu
2018-08-24netfilter: conntrack: dccp: treat SYNC/SYNCACK as invalid if no prior stateFlorian Westphal
2018-08-24netfilter: nf_conntrack: Fix possible possible crash on module loading.Andrey Ryabinin
2018-08-24netfilter: nf_log: fix uninit read in nf_log_proc_dostringJann Horn
2018-08-03netfilter: nf_tables: check msg_type before nft_trans_set(trans)Alexey Kodanev
2018-07-17netfilter: nf_queue: augment nfqa_cfg_policyEric Dumazet
2018-07-11netfilter: nf_log: don't hold nf_log_mutex during user accessJann Horn
2018-07-11netfilter: nf_tables: use WARN_ON_ONCE instead of BUG_ON in nft_do_chain()Taehee Yoo
2018-06-26ipvs: fix buffer overflow with sync daemon and serviceJulian Anastasov
2018-05-22netfilter: nf_tables: can't fail after linking rule into active rule listFlorian Westphal
2018-05-16ipvs: fix rtnl_lock lockups caused by start_sync_threadJulian Anastasov
2018-04-13netfilter: conntrack: don't call iter for non-confirmed conntracksFlorian Westphal
2018-04-13netfilter: ctnetlink: fix incorrect nf_ct_put during hash resizeLiping Zhang
2018-04-08netfilter: x_tables: add and use xt_check_proc_nameFlorian Westphal
2018-04-08netfilter: ctnetlink: Make some parameters integer to avoid enum mismatchMatthias Kaehlcke
2018-03-24netfilter: x_tables: unlock on error in xt_find_table_lock()Dan Carpenter
2018-03-24ipvs: explicitly forbid ipv6 service/dest creation if ipv6 mod is disabledPaolo Abeni
2018-03-24netfilter: nft_dynset: continue to next expr if _OP_ADD succeededLiping Zhang
2018-03-24netfilter: nf_ct_helper: permit cthelpers with different names via nfnetlinkLiping Zhang
2018-03-24netfilter: xt_CT: fix refcnt leak on error pathGao Feng
2018-03-18netfilter: x_tables: pack percpu counter allocationsFlorian Westphal
2018-03-18netfilter: x_tables: pass xt_counters struct to counter allocatorFlorian Westphal
2018-03-18netfilter: x_tables: pass xt_counters struct instead of packet counterFlorian Westphal
2018-03-18netfilter: IDLETIMER: be syzkaller friendlyEric Dumazet
2018-03-18netfilter: nat: cope with negative port rangePaolo Abeni
2018-03-18netfilter: x_tables: fix missing timer initialization in xt_LEDPaolo Abeni
2018-02-25netfilter: xt_RATEEST: acquire xt_rateest_mutex for hash insertCong Wang
2018-02-25netfilter: xt_cgroup: initialize info->priv in cgroup_mt_check_v1()Cong Wang
2018-02-25netfilter: x_tables: avoid out-of-bounds reads in xt_request_find_{match|target}Eric Dumazet
2018-02-25netfilter: x_tables: fix int overflow in xt_alloc_table_info()Dmitry Vyukov
2018-01-31netfilter: xt_osf: Add missing permission checksKevin Cernekee
2018-01-31netfilter: nfnetlink_cthelper: Add missing permission checksKevin Cernekee
2017-12-25netfilter: nfnetlink_queue: fix secctx memory leakLiping Zhang
2017-12-25netfilter: nfnl_cthelper: fix a race when walk the nf_ct_helper_hash tableLiping Zhang
2017-12-25netfilter: nfnl_cthelper: Fix memory leakJeffy Chen
2017-12-25netfilter: nfnl_cthelper: fix runtime expectation policy updatesPablo Neira Ayuso
2017-12-20netfilter: ipvs: Fix inappropriate output of procfsKUWAZAWA Takuya
2017-12-16Fix handling of verdicts after NF_QUEUEDebabrata Banerjee
2017-11-30netfilter: nf_tables: fix oob accessFlorian Westphal
2017-11-30netfilter: nft_queue: use raw_smp_processor_id()Pablo Neira Ayuso
2017-11-18netfilter: nat: Revert "netfilter: nat: convert nat bysrc hash to rhashtable"Florian Westphal
2017-11-18netfilter: nat: avoid use of nf_conn_nat extensionFlorian Westphal
2017-11-15netfilter: nft_meta: deal with PACKET_LOOPBACK in netdev familyLiping Zhang
2017-10-21netfilter: nf_ct_expect: Change __nf_ct_expect_check() return value.Jarno Rajahalme
2017-10-08netfilter: nfnl_cthelper: fix incorrect helper->expect_class_maxLiping Zhang
2017-10-08netfilter: invoke synchronize_rcu after set the _hook_ to NULLLiping Zhang
2017-09-27net/netfilter/nf_conntrack_core: Fix net_conntrack_lock()Manfred Spraul
2017-08-30netfilter: nat: fix src map lookupFlorian Westphal
2017-08-24netfilter: nf_ct_ext: fix possible panic after nf_ct_extend_unregisterLiping Zhang
generated by cgit v1.2.3 (git 2.0.4) at 2024-05-28 12:39:18 +0000