Описание
github.com/google/nftable IP addresses were encoded in the wrong byte order
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses).
This issue affects: https://pkg.go.dev/github.com/google/nftables@v0.1.0
The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/nftables@v0.2.0
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2024-6284
- https://github.com/crowdsecurity/cs-firewall-bouncer/issues/368
- https://github.com/google/nftables/issues/225
- https://github.com/google/nftables/commit/b1f901b05510bed05c232c5049f68d1511b56a19
- https://bugs.launchpad.net/ubuntu/+source/crowdsec-firewall-bouncer/+bug/2069596
Пакеты
github.com/google/nftables
>= 0.1.0, < 0.2.0
0.2.0
EPSS
6.3 Medium
CVSS4
5.6 Medium
CVSS3
CVE ID
Дефекты
Связанные уязвимости
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses). This issue affects: https://pkg.go.dev/github.com/google/nftables@v0.1.0 The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/nftables@v0.2.0
In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses). This issue affects: https://pkg.go.dev/github.com/google/nftables@v0.1.0 The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/nftables@v0.2.0
In https://github.com/google/nftables IP addresses were encoded in th ...
EPSS
6.3 Medium
CVSS4
5.6 Medium
CVSS3