MGASA-2026-0115
- Source
- https://advisories.mageia.org/MGASA-2026-0115.html
- Import Source
- https://advisories.mageia.org/MGASA-2026-0115.json
- JSON Data
- https://api.osv.dev/v1/vulns/MGASA-2026-0115
- Upstream
- Published
- 2026-05-07T05:06:13Z
- Modified
- 2026-05-07T05:15:42.275100Z
- Summary
- Updated perl-Net-CIDR-Lite packages fix security vulnerabilities
- Details
-
Net::CIDR::Lite versions before 0.23 for Perl does not validate IPv6 group count, which may allow IP ACL bypass. (CVE-2026-40198) Net::CIDR::Lite versions before 0.23 for Perl mishandles IPv4 mapped IPv6 addresses, which may allow IP ACL bypass. (CVE-2026-40199)
- References
-
- https://advisories.mageia.org/MGASA-2026-0115.html
- https://bugs.mageia.org/show_bug.cgi?id=35348
- https://www.openwall.com/lists/oss-security/2026/04/11/1
- https://www.openwall.com/lists/oss-security/2026/04/11/2
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SKKSURTDDZIA5TCZ3QL5KFVFSKVVMRSQ/
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:9 / perl-Net-CIDR-Lite
Package
- Name
- perl-Net-CIDR-Lite
- Purl
- pkg:rpm/mageia/perl-Net-CIDR-Lite?arch=source&distro=mageia-9