CVE-2024-6284

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2024-6284

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-6284.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-6284

Aliases

Related

UBUNTU-CVE-2024-6284

Published

2024-07-03T23:15:02Z

Modified

2024-09-18T03:26:41.162968Z

Summary

[none]

Details

In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses).

This issue affects: https://pkg.go.dev/github.com/google/nftables@v0.1.0

The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/nftables@v0.2.0

References

Affected packages

Debian:12 / golang-github-google-nftables

Package

Name: golang-github-google-nftables
Purl: pkg:deb/debian/golang-github-google-nftables?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.0-4~deb12u1

Affected versions

0.*

0.1.0-3

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / golang-github-google-nftables

Package

Name: golang-github-google-nftables
Purl: pkg:deb/debian/golang-github-google-nftables?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.1.0-4

Affected versions

0.*

0.1.0-3

0.1.0-4~deb12u1

Ecosystem specific

{
    "urgency": "not yet assigned"
}