| Published | Title | Version | Author | Status |
|---|---|---|---|---|
| 2026-03-12 22:31 UTC | netfilter: conntrack: expose gc_scan_interval_max via sysctl | 2 | panchamukhi@arista.com | - |
| 2026-03-12 14:59 UTC | netfilter: xt_time: use unsigned int for monthday bit shift | 1 | qguanni@gmail.com | finished in 1h8m0s |
| 2026-03-12 14:55 UTC | netfilter: nf_conntrack_sip: fix OOB read in SIP URI port parsing | 1 | qguanni@gmail.com | finished in 58m0s |
| 2026-03-12 14:49 UTC | netfilter: nf_conntrack_h323: check for zero length in DecodeQ931() | 1 | qguanni@gmail.com | in progress |
| 2026-03-12 14:42 UTC | netfilter: ctnetlink: validate CTA_EXPECT_NAT_DIR value | 1 | qguanni@gmail.com | finished in 50m0s |
| 2026-03-12 12:48 UTC | netfilter: nft_ct: drop pending enqueued packets on removal | 1 | pablo@netfilter.org | finished in 4h19m0s |
| 2026-03-12 10:11 UTC | nf_tables: nft_dynset: fix possible stateful expression memleak in error path | 1 | pablo@netfilter.org | finished in 4h10m0s |
| 2026-03-12 01:14 UTC | netfilter: nft_set_rbtree: revisit array resize logic | 1 | pablo@netfilter.org | skipped |
| 2026-03-11 19:40 UTC | netfilter: conntrack: expose gc_scan_interval_max via sysctl | 1 | panchamukhi@arista.com | finished in 4h4m0s |
| 2026-03-11 19:33 UTC | cache: Fix for multiple commands in a single batch | 1 | phil@nwl.cc | skipped |
| 2026-03-11 15:29 UTC | netfilter: revert nft_set_rbtree: validate open interval overlap | 1 | fw@strlen.de | finished in 4h1m0s |
| 2026-03-11 09:58 UTC | netfilter: nft_meta: add double-tagged vlan and pppoe support | 1 | pablo@netfilter.org | finished in 4h3m0s |
| 2026-03-10 23:11 UTC | Enhance cache filter for list commands | 1 | phil@nwl.cc | skipped |
| 2026-03-10 14:39 UTC | netfilter: nf_flow_table_ip: reset mac header before vlan push | 1 | ericwouds@gmail.com | finished in 4h12m0s |
| 2026-03-10 13:20 UTC | netfilter: updates for net | 2 | fw@strlen.de | finished in 4h6m0s |
| 2026-03-09 21:08 UTC | netfilter: updates for net | 1 | fw@strlen.de | finished in 4h3m0s |
| 2026-03-09 20:29 UTC | netfilter: nf_tables: Fix typo in enum description | 1 | jelle@vdwaa.nl | finished in 1h3m0s |
| 2026-03-08 11:25 UTC | netfilter: xtables: fix possible off-by-one when accessing TCP/DCCP options | 1 | pablo@netfilter.org | finished in 4h2m0s |
| 2026-03-07 17:24 UTC | netfilter: nfnetlink_queue: fix entry leak in bridge verdict error path | 1 | imv4bel@gmail.com | finished in 3h58m0s |
| 2026-03-07 17:23 UTC | netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table() | 1 | imv4bel@gmail.com | finished in 4h4m0s |
| 2026-03-07 17:23 UTC | netfilter: nf_flow_table_offload: fix heap overflow in flow_action_entry_next() | 1 | imv4bel@gmail.com | finished in 4h7m0s |
| 2026-03-07 17:22 UTC | netfilter: nf_conntrack_sctp: validate state value in nlattr_to_sctp() | 1 | imv4bel@gmail.com | finished in 4h13m0s |
| 2026-03-07 17:22 UTC | netfilter: ctnetlink: validate CTA_EXPECT_NAT_DIR to prevent OOB access | 1 | imv4bel@gmail.com | finished in 3h56m0s |
| 2026-03-07 17:21 UTC | netfilter: ctnetlink: fix use-after-free in ctnetlink_dump_exp_ct() | 1 | imv4bel@gmail.com | finished in 3h59m0s |
| 2026-03-07 17:21 UTC | netfilter: ctnetlink: fix use-after-free of exp->master in single expectation GET | 1 | imv4bel@gmail.com | finished in 4h8m0s |
| 2026-03-07 17:20 UTC | netfilter: ctnetlink: fix use-after-free of exp->master in expectation dump | 1 | imv4bel@gmail.com | finished in 4h4m0s |
| 2026-03-06 19:12 UTC | netfilter: nft_set_pipapo: fix stack out-of-bounds read in pipapo_drop() | 2 | qguanni@gmail.com | finished in 4h5m0s |
| 2026-03-06 12:36 UTC | netfilter: nft_set_rbtree: allocate same array size on updates | 1 | pablo@netfilter.org |
finished
in 4h6m0s
[1 findings] |
| 2026-03-06 08:08 UTC | netfilter: nft_set_pipapo: fix stack out-of-bounds read in pipapo_drop() | 1 | qguanni@gmail.com | finished in 4h23m0s |
| 2026-03-05 12:26 UTC | netfilter: updates for net | 2 | fw@strlen.de | finished in 4h3m0s |
| 2026-03-05 12:01 UTC | netfilter: nf_tables: Fix for duplicate device in netdev hooks | 1 | phil@nwl.cc | finished in 4h13m0s |
| 2026-03-05 00:47 UTC | net: Add SPDX ids to some source files | 1 | tim.bird@sony.com | finished in 4h11m0s |
| 2026-03-04 17:29 UTC | netfilter: updates for net | 1 | fw@strlen.de | finished in 4h9m0s |
| 2026-03-04 11:49 UTC | netfilter: updates for net-next | 1 | fw@strlen.de | finished in 4h13m0s |
| 2026-03-03 19:57 UTC | doc/netlink: Expand nftables specification | 8 | one-d-wide@protonmail.com | finished in 1h5m0s |
| 2026-03-03 10:15 UTC | netfilter: use function typedefs for __rcu NAT helper hook pointers | 1 | sun.jian.kdev@gmail.com | finished in 1h39m0s |
| 2026-03-02 21:26 UTC | netfilter: nf_tables: fix use-after-free on ops->dev | 1 | koike@igalia.com | finished in 4h16m0s |
| 2026-03-02 16:05 UTC | rule: fix NULL pointer dereference in do_list_flowtable | 1 | ant.v.moryakov@gmail.com | skipped |
| 2026-02-27 16:29 UTC | netfilter: nf_flow_table_ip: Introduce nf_flow_vlan_push() | 2 | ericwouds@gmail.com | finished in 4h11m0s |
| 2026-02-26 19:50 UTC | IPVS changes, part 3 of 4 - per-net tables | 1 | ja@ssi.bg | finished in 4h9m0s |
| 2026-02-26 09:40 UTC | netfilter: nfnetlink_queue: no longer acquire sk_callback_lock | 1 | edumazet@google.com | finished in 4h21m0s |
| 2026-02-26 08:58 UTC | netfilter: nfnetlink_log: no longer acquire sk_callback_lock | 1 | edumazet@google.com | finished in 4h27m0s |
| 2026-02-26 08:29 UTC | netfilter: nft_meta: no longer acquire sk_callback_lock in nft_meta_get_eval_skugid() | 1 | edumazet@google.com | finished in 4h1m0s |
| 2026-02-25 13:23 UTC | netfilter: xt_owner: no longer acquire sk_callback_lock in mt_owner() | 2 | edumazet@google.com | finished in 4h2m0s |
| 2026-02-25 13:20 UTC | netfilter: nf_log_syslog: no longer acquire sk_callback_lock in nf_log_dump_sk_uid_gid() | 2 | edumazet@google.com | finished in 4h13m0s |
| 2026-02-25 13:06 UTC | netfilter updates for net | 1 | fw@strlen.de | finished in 4h33m0s |
| 2026-02-25 00:13 UTC | netfilter: nf_tables: clone set on flush only | 1 | pablo@netfilter.org | finished in 4h7m0s |
| 2026-02-24 20:50 UTC | netfilter: updates for net-next | 1 | fw@strlen.de | finished in 3h26m0s |
| 2026-02-24 18:22 UTC | netfilter: nf_tables: inconditionally bump set->nelems before insertion | 1 | pablo@netfilter.org | finished in 4h28m0s |
| 2026-02-24 12:33 UTC | netfilter: nf_log_syslog: no longer acquire sk_callback_lock in nf_log_dump_sk_uid_gid() | 1 | edumazet@google.com | finished in 4h11m0s |
| 2026-02-24 12:28 UTC | netfilter: xt_owner: no longer acquire sk_callback_lock in mt_owner() | 1 | edumazet@google.com | finished in 4h21m0s |
| 2026-02-24 06:53 UTC | conntrack: bridge: add double vlan, pppoe and pppoe-in-q | 19 | ericwouds@gmail.com | finished in 4h18m0s |
| 2026-02-22 19:58 UTC | conntrack: bridge: add double vlan, pppoe and pppoe-in-q | 18 | ericwouds@gmail.com | finished in 3h50m0s |
| 2026-02-22 15:52 UTC | netfilter: nf_flow_table_ip: Introduce nf_flow_vlan_push() | 1 | ericwouds@gmail.com | finished in 3h56m0s |
| 2026-02-17 16:32 UTC | netfilter: updates for net | 1 | fw@strlen.de | finished in 4h6m0s |
| 2026-02-17 12:14 UTC | netfilter: nf_tables: fix use-after-free in nf_tables_addchain() | 1 | y0un9sa@gmail.com | finished in 4h0m0s |
| 2026-02-17 11:56 UTC | net: remove WARN_ON_ONCE when accessing forward path array | 1 | pablo@netfilter.org | finished in 4h15m0s |
| 2026-02-16 17:23 UTC | Tree-wide use of python3 | 1 | pablo@netfilter.org | skipped |
| 2026-02-16 11:26 UTC | json: complete multi-statement set element support | 1 | pablo@netfilter.org | skipped |
| 2026-02-15 17:04 UTC | ipset: refuse to run under file capabilities | 1 | alan@sleuthco.ai | skipped |
| 2026-02-14 15:12 UTC | IPVS changes, part 2 of 4 - optimizations | 1 | ja@ssi.bg | skipped |
| 2026-02-14 14:58 UTC | IPVS changes, part 1 of 4 - fixes | 1 | ja@ssi.bg | finished in 3h57m0s |
| 2026-02-14 14:54 UTC | include: uapi: netfilter_bridge.h: Cover for musl libc | 2 | phil@nwl.cc | finished in 59m0s |
| 2026-02-13 22:53 UTC | main: refuse to run under file capabilities | 1 | alan@sleuthco.ai | skipped |
| 2026-02-12 20:50 UTC | configure: Implement --enable-profiling option | 4 | phil@nwl.cc | skipped |
| 2026-02-12 20:07 UTC | iptables: fix null dereference parsing bitwise operations | 2 | one-d-wide@protonmail.com | skipped |
| 2026-02-11 20:14 UTC | configure: Implement --enable-profiling option | 3 | phil@nwl.cc | skipped |
| 2026-02-11 18:56 UTC | include: uapi: netfilter_bridge.h: Cover for musl libc | 1 | phil@nwl.cc | finished in 1h5m0s |
| 2026-02-08 11:00 UTC | net: flow_offload: protect driver_block_list in flow_block_cb_setup_simple() | 1 | syoshida@redhat.com | finished in 3h20m0s |
| 2026-02-06 15:30 UTC | netfilter: updates for net-next | 2 | fw@strlen.de | finished in 3h47m0s |
| 2026-02-05 15:18 UTC | configure: Implement --enable-profiling option | 2 | phil@nwl.cc | skipped |
| 2026-02-05 14:38 UTC | Makefile: Pass PKG_CONFIG_PATH to internal builds | 2 | phil@nwl.cc | skipped |
| 2026-02-05 12:30 UTC | netfilter: annotate NAT helper hook pointers with __rcu | 5 | sun.jian.kdev@gmail.com | finished in 1h39m0s |
| 2026-02-05 11:08 UTC | netfilter: updates for net-next | 1 | fw@strlen.de | finished in 3h52m0s |
| 2026-02-05 07:44 UTC | netfilter: update for net | 1 | fw@strlen.de | finished in 3h56m0s |
| 2026-02-05 02:31 UTC | tests: shell: double chain update with same device | 1 | pablo@netfilter.org | finished in 50m0s |
| 2026-02-04 20:26 UTC | netfilter: nf_tables: fix reset request deadlock | 5 | brianwitte@mailfence.com | finished in 3h57m0s |
| 2026-02-04 15:38 UTC | netfilter: annotate NAT helper hook pointers with __rcu | 4 | sun.jian.kdev@gmail.com | finished in 1h5m0s |
| 2026-02-04 15:23 UTC | netfilter: nf_tables: add math expression support | 3 | fmancera@suse.de | finished in 1h19m0s |
| 2026-02-04 14:49 UTC | test: shell: run-test.sh: introduce NFT_TEST_EXCLUDES | 1 | yiche@redhat.com | skipped |
| 2026-02-03 14:55 UTC | netfilter: amanda: fix RCU pointer typing for nf_nat_amanda_hook | 2 | sun.jian.kdev@gmail.com | finished in 1h39m0s |
| 2026-02-03 13:48 UTC | netfilter: nft_counter: Fix reset of counters on 32bit archs | 3 | anders.grahn@gmail.com | finished in 4h10m0s |
| 2026-02-03 08:43 UTC | netfilter: bpf: add missing declaration for bpf_ct_set_nat_info | 1 | sun.jian.kdev@gmail.com | finished in 1h1m0s |
| 2026-02-03 08:01 UTC | netfilter: amanda: fix RCU pointer typing for nf_nat_amanda_hook | 1 | sun.jian.kdev@gmail.com | finished in 1h40m0s |
| 2026-02-03 05:07 UTC | netfilter: nf_tables: fix reset request deadlock | 4 | brianwitte@mailfence.com | finished in 4h4m0s |
| 2026-02-02 16:30 UTC | netfilter: nft_set_rbtree: don't gc elements on insert | 2 | fw@strlen.de | finished in 4h26m0s |
| 2026-02-02 10:14 UTC | iptables: fix null dereference parsing bitwise operations | 1 | one-d-wide@protonmail.com | skipped |
| 2026-02-02 09:40 UTC | doc/netlink: Expand nftables specification | 7 | one-d-wide@protonmail.com | finished in 1h11m0s |
| 2026-02-01 19:52 UTC | netfilter: nf_tables: fix reset request deadlock | 3 | brianwitte@mailfence.com | finished in 3h53m0s |
| 2026-02-01 06:25 UTC | netfilter: nf_tables: use dedicated spinlock for reset operations | 2 | brianwitte@mailfence.com | finished in 3h55m0s |
| 2026-01-30 07:22 UTC | netfilter: flowtable: dedicated slab for flow entry | 2 | dqfext@gmail.com | finished in 3h52m0s |
| 2026-01-30 04:43 UTC | netfilter: conntrack: remove __read_mostly from nf_conntrack_generation | 1 | lirongqing@baidu.com | finished in 3h54m0s |
| 2026-01-29 19:58 UTC | configure: Auto-detect libz unless explicitly requested | 1 | phil@nwl.cc | skipped |
| 2026-01-29 17:28 UTC | netfilter: nft_set_rbtree: don't gc elements on insert | 1 | fw@strlen.de | finished in 4h10m0s |
| 2026-01-29 14:07 UTC | tests: py: Adjust payloads to changed userdata printing | 1 | phil@nwl.cc | skipped |
| 2026-01-29 14:07 UTC | Revert "udata: Store u32 udata values in Big Endian" | 1 | phil@nwl.cc | skipped |
| 2026-01-29 10:54 UTC | netfilter: updates for net-next | 2 | fw@strlen.de | finished in 4h9m0s |
| 2026-01-29 10:12 UTC | netfilter: flowtable: dedicated slab for flow entry | 1 | dqfext@gmail.com | finished in 4h0m0s |
| 2026-01-28 15:41 UTC | netfilter: updates for net-next | 1 | fw@strlen.de | finished in 4h18m0s |
| 2026-01-28 14:52 UTC | configure: Generate BUILD_STAMP at configure time | 1 | phil@nwl.cc | skipped |