Vulnerability Database
Blog
FAQ
Docs
GO-2024-3071
See a problem?
Source
https://pkg.go.dev/vuln/GO-2024-3071
Import Source
https://vuln.go.dev/ID/GO-2024-3071.json
JSON Data
https://api.osv.dev/v1/vulns/GO-2024-3071
Aliases
BIT-cilium-2024-42487
BIT-cilium-operator-2024-42487
BIT-hubble-relay-2024-42487
CVE-2024-42487
GHSA-qcm3-7879-xcww
Published
2024-08-16T17:28:56Z
Modified
2024-08-17T08:12:08.470465Z
Summary
Gateway API route matching order contradicts specification in github.com/cilium/cilium
Details
Gateway API route matching order contradicts specification in github.com/cilium/cilium
References
https://github.com/cilium/cilium/security/advisories/GHSA-qcm3-7879-xcww
https://nvd.nist.gov/vuln/detail/CVE-2024-42487
https://github.com/cilium/cilium/commit/a3510fe4a92305822aa1a5e08cb6d6c873c8699a
https://github.com/cilium/cilium/commit/d88772b9c29e370becbc4547cada6711d51edcde
https://github.com/cilium/cilium/commit/fe42273566a943a0f3174c87b23a195c856b51d6
https://github.com/cilium/cilium/pull/34109
Affected packages
Go
/
github.com/cilium/cilium
Package
Name
github.com/cilium/cilium
View open source insights on deps.dev
Purl
pkg:golang/github.com/cilium/cilium
Affected ranges
Type
SEMVER
Events
Introduced
1.15.0
Fixed
1.15.8
Introduced
1.16.0
Fixed
1.16.1
GO-2024-3071 - OSV