| Published | Title | Version | Author | Status |
|---|---|---|---|---|
| 2026-04-27 09:21 UTC | netfilter: nft_bitwise: fix dst corruption in same register shifts | 4 | fmancera@suse.de | finished in 4h40m0s |
| 2026-04-23 15:54 UTC | netfilter: nft_bitwise: fix dst corruption in same register shifts | 3 | fmancera@suse.de | finished in 4h24m0s |
| 2026-04-23 12:05 UTC | netfilter: nft_bitwise: fix dst corruption in same register shifts | 2 | fmancera@suse.de | finished in 4h13m0s |
| 2026-04-21 17:38 UTC | netfilter: nft_bitwise: fix dst corruption in same register shifts | 1 | fmancera@suse.de | finished in 4h27m0s |
| 2026-04-21 15:59 UTC | expr: add support to math expression | 4 | fmancera@suse.de | skipped |
| 2026-04-21 15:59 UTC | netfilter: nf_tables: add math expression support | 5 | fmancera@suse.de | finished in 1h29m0s |
| 2026-04-20 17:06 UTC | expr: add support to math expression | 3 | fmancera@suse.de | skipped |
| 2026-04-20 17:05 UTC | netfilter: nf_tables: add math expression support | 4 | fmancera@suse.de | finished in 1h37m0s |
| 2026-04-20 13:39 UTC | netfilter: flowtable_offload: propagate CT mark to hardware offload path | 1 | lorenzo@kernel.org | finished in 4h0m0s |
| 2026-04-20 10:58 UTC | bpf: add icmp_send_unreach kfunc | 4 | mahe.tardy@gmail.com | finished in 4h37m0s |
| 2026-04-18 19:58 UTC | selftests: netfilter: conntrack_sctp_collision.sh: Introduce SCTP INIT collision test | 2 | yiche.cy@gmail.com | finished in 1h4m0s |
| 2026-04-18 16:30 UTC | netfilter: xt_TCPMSS: check skb_dst before path-MTU clamping | 1 | bestswngs@gmail.com | finished in 4h27m0s |
| 2026-04-15 14:40 UTC | ipvs: fix MTU check for GSO packets in tunnel mode | 4 | 342144303@qq.com | finished in 4h41m0s |
| 2026-04-15 03:43 UTC | netfilter: xt_realm: fix null-ptr-deref in realm_mt() | 1 | hxzene@gmail.com | finished in 2h9m0s |
| 2026-04-14 22:14 UTC | netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO | 2 | xmei5@asu.edu | finished in 4h39m0s |
| 2026-04-14 10:49 UTC | netfilter: nfnetlink_osf: fix null-ptr-deref in nf_osf_ttl | 2 | hxzene@gmail.com | finished in 4h41m0s |
| 2026-04-14 07:45 UTC | netfilter: nfnetlink_osf: fix null-ptr-deref in nf_osf_ttl | 1 | hxzene@gmail.com | finished in 5h2m0s |
| 2026-04-13 12:37 UTC | netfilter: nf_conncount: make number of hash slots configurable | 1 | deliran@verdict.gg | finished in 1h0m0s |
| 2026-04-12 22:28 UTC | netfilter: nft_set_rbtree: fix use count leak on transaction abort | 3 | marko.jevtic@codereflect.io | finished in 4h17m0s |
| 2026-04-11 18:57 UTC | netfilter: nfnl_cthelper: apply per-class values when updating policies | 1 | devnexen@gmail.com | finished in 4h5m0s |
| 2026-04-10 20:48 UTC | netfilter: nfnetlink_osf: fix divide-by-zero in OSF_WSS_MODULO | 1 | xmei5@asu.edu | finished in 4h5m0s |
| 2026-04-10 10:13 UTC | netfilter: nf_tables: use RCU-safe list primitives for basechain hook list | 1 | bestswngs@gmail.com | finished in 4h27m0s |
| 2026-04-09 22:34 UTC | [next] netfilter: x_tables: Avoid a couple -Wflex-array-member-not-at-end warnings | 3 | gustavoars@kernel.org | finished in 4h31m0s |
| 2026-04-09 20:28 UTC | [next] netfilter: x_tables: Avoid a couple -Wflex-array-member-not-at-end warnings | 2 | gustavoars@kernel.org | finished in 4h11m0s |
| 2026-04-09 13:07 UTC | improve hw flow offload byte accounting | 1 | daniel@makrotopia.org |
finished
in 1h1m0s
[1 findings] |
| 2026-04-09 10:49 UTC | netfilter: nft_fwd_netdev: use recursion counter in neigh egress path | 2 | bestswngs@gmail.com | finished in 4h38m0s |
| 2026-04-09 09:50 UTC | netfilter: nf_conntrack_sip: fix OOB read in epaddr_len and ct_sip_parse_header_uri | 1 | bestswngs@gmail.com | finished in 2h32m0s |
| 2026-04-09 05:36 UTC | netfilter: nft_fwd_netdev: use recursion counter in neigh egress path | 1 | bestswngs@gmail.com | finished in 4h22m0s |
| 2026-04-08 21:27 UTC | [next] netfilter: x_tables: Avoid a couple -Wflex-array-member-not-at-end warnings | 1 | gustavoars@kernel.org | finished in 4h52m0s |
| 2026-04-08 07:35 UTC | netfilter: arp_tables: fix IEEE1394 ARP payload parsing in arp_packet_match() | 1 | bestswngs@gmail.com | finished in 4h30m0s |
| 2026-04-06 21:18 UTC | selftests: nft_queue.sh: add a parallel stress test | 1 | fmancera@suse.de | finished in 1h6m0s |
| 2026-04-03 20:59 UTC | netfilter: xt_HL: add pr_fmt and checkentry validation | 3 | marino.dzalto@gmail.com | finished in 4h40m0s |
| 2026-04-03 20:03 UTC | netfilter: xt_HL: add pr_fmt, drop NULL checks, add checkentry validation | 2 | marino.dzalto@gmail.com | finished in 4h22m0s |
| 2026-04-03 19:39 UTC | netfilter: xt_HL: add pr_fmt, default case and NULL checks | 1 | marino.dzalto@gmail.com |
finished
in 1h9m0s
[1 findings] |
| 2026-04-03 18:53 UTC | netfilter: xt_dscp: replace -EDOM with -EINVAL and unify match functions | 1 | marino.dzalto@gmail.com | finished in 4h32m0s |
| 2026-04-02 14:46 UTC | ipvs: fix MTU check for GSO packets in tunnel mode | 3 | 342144303@qq.com | finished in 4h21m0s |
| 2026-04-02 12:09 UTC | ipvs: fix MTU check for GSO packets in tunnel mode | 2 | 342144303@qq.com |
finished
in 1h15m0s
[1 findings] |
| 2026-04-01 21:20 UTC | netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator | 2 | xmei5@asu.edu | finished in 4h16m0s |
| 2026-04-01 19:57 UTC | netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG_DONE terminator | 1 | xmei5@asu.edu | finished in 4h28m0s |
| 2026-04-01 15:38 UTC | ipvs: fix MTU check for GSO packets in tunnel mode | 1 | 342144303@qq.com | finished in 4h32m0s |
| 2026-04-01 07:58 UTC | ipvs: fix NULL deref in ip_vs_add_service error path | 2 | bestswngs@gmail.com | finished in 4h54m0s |
| 2026-04-01 07:44 UTC | Deprecate Legacy IP | 1 | dwmw2@infradead.org |
finished
in 3h0m0s
[1 findings] |
| 2026-04-01 04:16 UTC | ipvs: fix NULL deref in ip_vs_add_service error path | 1 | bestswngs@gmail.com | finished in 4h32m0s |
| 2026-03-31 06:17 UTC | netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent | 2 | tpluszz77@gmail.com | finished in 4h8m0s |
| 2026-03-31 06:14 UTC | netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent | 2 | tpluszz77@gmail.com | finished in 4h16m0s |
| 2026-03-30 11:35 UTC | selftests: netfilter: conntrack_sctp_collision.sh: Introduce SCTP INIT collision test | 1 | yiche@redhat.com | finished in 1h20m0s |
| 2026-03-29 16:52 UTC | netfilter: ctnetlink: zero expect NAT fields when CTA_EXPECT_NAT absent | 1 | tpluszz77@gmail.com | finished in 4h21m0s |
| 2026-03-29 16:51 UTC | netfilter: ctnetlink: validate expect class against master helper | 1 | tpluszz77@gmail.com | finished in 4h15m0s |
| 2026-03-29 16:50 UTC | netfilter: nf_conntrack_helper: pass helper to expect cleanup | 1 | tpluszz77@gmail.com | finished in 4h27m0s |
| 2026-03-26 20:18 UTC | netfilter: nf_conntrack_h323: Correct indentation when H323_TRACE defined | 1 | david.laight.linux@gmail.com | finished in 1h22m0s |
| 2026-03-26 14:42 UTC | netfilter: Kconfig: make NF_FLOW_TABLE_INET depend on NF_TABLES_INET | 1 | fmancera@suse.de | finished in 1h57m0s |
| 2026-03-24 20:40 UTC | Update (DSA) netdev stats with offloaded flows | 2 | anzaki@gmail.com | finished in 4h39m0s |
| 2026-03-24 15:18 UTC | ipvs: Fix incorrect use of HK_TYPE_KTHREAD housekeeping cpumask | 1 | longman@redhat.com | finished in 4h34m0s |
| 2026-03-23 08:07 UTC | netfilter: nf_conntrack_sip: fix use of uninitialized rtp_addr in process_sdp | 1 | bestswngs@gmail.com | finished in 2h1m0s |
| 2026-03-17 23:48 UTC | Update netdev stats with offloaded flows | 1 | anzaki@gmail.com | finished in 4h3m0s |
| 2026-03-17 14:00 UTC | ipvs: Move defense_work to system_dfl_long_wq | 1 | iluceno@suse.de |
finished
in 1h11m0s
[1 findings] |
| 2026-03-15 17:06 UTC | netfilter: add missing kernel-doc parameters for nf_hook() | 2 | xaum.io@gmail.com | finished in 4h30m0s |
| 2026-03-13 18:01 UTC | netfilter: ipset: harden payload calculation in call_ad() | 1 | davidbaum461@gmail.com | finished in 4h25m0s |
| 2026-03-12 22:31 UTC | netfilter: conntrack: expose gc_scan_interval_max via sysctl | 2 | panchamukhi@arista.com | finished in 4h12m0s |
| 2026-03-11 19:40 UTC | netfilter: conntrack: expose gc_scan_interval_max via sysctl | 1 | panchamukhi@arista.com | finished in 4h4m0s |
| 2026-03-07 17:24 UTC | netfilter: nfnetlink_queue: fix entry leak in bridge verdict error path | 1 | imv4bel@gmail.com | finished in 3h58m0s |
| 2026-03-07 17:23 UTC | netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table() | 1 | imv4bel@gmail.com | finished in 4h4m0s |
| 2026-03-07 17:23 UTC | netfilter: nf_flow_table_offload: fix heap overflow in flow_action_entry_next() | 1 | imv4bel@gmail.com | finished in 4h7m0s |
| 2026-03-07 17:22 UTC | netfilter: nf_conntrack_sctp: validate state value in nlattr_to_sctp() | 1 | imv4bel@gmail.com | finished in 4h13m0s |
| 2026-03-07 17:22 UTC | netfilter: ctnetlink: validate CTA_EXPECT_NAT_DIR to prevent OOB access | 1 | imv4bel@gmail.com | finished in 3h56m0s |
| 2026-03-07 17:21 UTC | netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() | 1 | imv4bel@gmail.com | finished in 3h59m0s |
| 2026-03-07 17:21 UTC | netfilter: ctnetlink: fix use-after-free of exp->master in single expectation GET | 1 | imv4bel@gmail.com | finished in 4h8m0s |
| 2026-03-07 17:20 UTC | netfilter: ctnetlink: fix use-after-free of exp->master in expectation dump | 1 | imv4bel@gmail.com | finished in 4h4m0s |
| 2026-03-05 00:47 UTC | net: Add SPDX ids to some source files | 1 | tim.bird@sony.com | finished in 4h11m0s |
| 2026-03-03 19:57 UTC | doc/netlink: Expand nftables specification | 8 | one-d-wide@protonmail.com | finished in 1h5m0s |
| 2026-03-03 10:15 UTC | netfilter: use function typedefs for __rcu NAT helper hook pointers | 1 | sun.jian.kdev@gmail.com | finished in 1h39m0s |
| 2026-03-02 21:26 UTC | netfilter: nf_tables: fix use-after-free on ops->dev | 1 | koike@igalia.com | finished in 4h16m0s |
| 2026-02-26 09:40 UTC | netfilter: nfnetlink_queue: no longer acquire sk_callback_lock | 1 | edumazet@google.com | finished in 4h21m0s |
| 2026-02-26 08:58 UTC | netfilter: nfnetlink_log: no longer acquire sk_callback_lock | 1 | edumazet@google.com | finished in 4h27m0s |
| 2026-02-26 08:29 UTC | netfilter: nft_meta: no longer acquire sk_callback_lock in nft_meta_get_eval_skugid() | 1 | edumazet@google.com | finished in 4h1m0s |
| 2026-02-25 13:23 UTC | netfilter: xt_owner: no longer acquire sk_callback_lock in mt_owner() | 2 | edumazet@google.com | finished in 4h2m0s |
| 2026-02-25 13:20 UTC | netfilter: nf_log_syslog: no longer acquire sk_callback_lock in nf_log_dump_sk_uid_gid() | 2 | edumazet@google.com | finished in 4h13m0s |
| 2026-02-24 12:33 UTC | netfilter: nf_log_syslog: no longer acquire sk_callback_lock in nf_log_dump_sk_uid_gid() | 1 | edumazet@google.com | finished in 4h11m0s |
| 2026-02-24 12:28 UTC | netfilter: xt_owner: no longer acquire sk_callback_lock in mt_owner() | 1 | edumazet@google.com | finished in 4h21m0s |
| 2026-02-12 20:07 UTC | iptables: fix null dereference parsing bitwise operations | 2 | one-d-wide@protonmail.com | skipped |
| 2026-02-08 11:00 UTC | net: flow_offload: protect driver_block_list in flow_block_cb_setup_simple() | 1 | syoshida@redhat.com | finished in 3h20m0s |
| 2026-02-04 15:23 UTC | netfilter: nf_tables: add math expression support | 3 | fmancera@suse.de | finished in 1h19m0s |
| 2026-02-03 13:48 UTC | netfilter: nft_counter: Fix reset of counters on 32bit archs | 3 | anders.grahn@gmail.com | finished in 4h10m0s |
| 2026-02-02 10:14 UTC | iptables: fix null dereference parsing bitwise operations | 1 | one-d-wide@protonmail.com | skipped |
| 2026-02-02 09:40 UTC | doc/netlink: Expand nftables specification | 7 | one-d-wide@protonmail.com | finished in 1h11m0s |
| 2026-01-30 07:22 UTC | netfilter: flowtable: dedicated slab for flow entry | 2 | dqfext@gmail.com | finished in 3h52m0s |
| 2026-01-30 04:43 UTC | netfilter: conntrack: remove __read_mostly from nf_conntrack_generation | 1 | lirongqing@baidu.com | finished in 3h54m0s |
| 2026-01-29 10:12 UTC | netfilter: flowtable: dedicated slab for flow entry | 1 | dqfext@gmail.com | finished in 4h0m0s |
| 2026-01-23 08:10 UTC | netfilter: xt_time: use is_leap_year() helper | 1 | ruanjinjie@huawei.com | finished in 4h40m0s |
| 2026-01-22 17:46 UTC | Add IP6IP6 flowtable SW acceleration | 4 | lorenzo@kernel.org | finished in 4h9m0s |
| 2026-01-21 18:47 UTC | doc/netlink: Expand nftables specification | 6 | one-d-wide@protonmail.com | finished in 54m0s |
| 2026-01-20 23:11 UTC | selftests: netfilter: avoid RULE_REPLACE error when zeroing rule counters | 1 | aleksey.oladko@virtuozzo.com | finished in 1h6m0s |
| 2026-01-20 22:01 UTC | selftests: netfilter: ensure conntrack is enabled for helper test | 1 | aleksey.oladko@virtuozzo.com | finished in 1h22m0s |
| 2026-01-19 20:35 UTC | netfilter: nf_conncount: fix tracking of connections from localhost | 2 | fmancera@suse.de | finished in 3h59m0s |
| 2026-01-19 06:37 UTC | netfilter: arptables: use xt_entry_foreach() in copy_entries_to_user() | 1 | kshitiz.bartariya@zohomail.in | finished in 4h0m0s |
| 2026-01-18 11:13 UTC | netfilter: nf_conncount: fix tracking of connections from localhost | 1 | fmancera@suse.de | finished in 4h7m0s |
| 2026-01-16 08:13 UTC | Add IP6IP6 flowtable SW acceleration | 3 | lorenzo@kernel.org | finished in 4h6m0s |
| 2026-01-13 07:44 UTC | uapi: Use UAPI definitions of INT_MAX and INT_MIN | 2 | thomas.weissschuh@linutronix.de | finished in 52m0s |
| 2026-01-12 12:54 UTC | net: make config options NF_LOG_{ARP,IPV4,IPV6} transitional | 1 | lbulwahn@redhat.com | finished in 1h2m0s |
| 2026-01-11 16:39 UTC | net/sched: Fix packet loops in mirred and netem | 1 | jhs@mojatatu.com | finished in 3h51m0s |