Jozsef Kadlecsik 5f7b51bf09 netfilter: ipset: Limit the maximal range of consecutive elements to add/delete ... The range size of consecutive elements were not limited. Thus one could define a huge range which may result soft lockup errors due to the long execution time. Now the range size is limited to 2^20 entries. Reported-by: Brad Spengler <spender@grsecurity.net> Signed-off-by: Jozsef Kadlecsik <kadlec@netfilter.org> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>		2021-08-04 10:41:03 +02:00
..
ipset	netfilter: ipset: Limit the maximal range of consecutive elements to add/delete	2021-08-04 10:41:03 +02:00
nf_conntrack_amanda.h	…
nf_conntrack_common.h	netfilter: conntrack: add clash resolution stat counter	2020-08-28 19:51:26 +02:00
nf_conntrack_dccp.h	…
nf_conntrack_ftp.h	…
nf_conntrack_h323.h	…
nf_conntrack_h323_asn1.h	…
nf_conntrack_h323_types.h	…
nf_conntrack_irc.h	…
nf_conntrack_pptp.h	netfilter: nf_conntrack_pptp: fix compilation warning with W=1 build	2020-05-27 13:39:08 +02:00
nf_conntrack_proto_gre.h	…
nf_conntrack_sane.h	…
nf_conntrack_sctp.h	netfilter: conntrack: allow sctp hearbeat after connection re-use	2020-08-20 14:13:49 +02:00
nf_conntrack_sip.h	…
nf_conntrack_snmp.h	…
nf_conntrack_tcp.h	…
nf_conntrack_tftp.h	…
nf_conntrack_zones_common.h	…
nfnetlink.h	netfilter: nfnetlink: add struct nfgenmsg to struct nfnl_info and use it	2021-06-07 12:23:36 +02:00
nfnetlink_acct.h	…
nfnetlink_osf.h	…
x_tables.h	netfilter: x_tables: reduce xt_action_param by 8 byte	2021-05-29 01:04:53 +02:00