UBUNTU-CVE-2024-6284

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2024-6284

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-6284.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2024-6284

Related

CVE-2024-6284

Published

2024-07-03T23:15:00Z

Modified

2024-10-15T14:17:22Z

Summary

[none]

Details

In https://github.com/google/nftables IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses). This issue affects: https://pkg.go.dev/github.com/google/nftables@v0.1.0 The bug was fixed in the next released version: https://pkg.go.dev/github.com/google/nftables@v0.2.0

References

Affected packages

Ubuntu:24.10 / golang-github-google-nftables

Package

Name: golang-github-google-nftables
Purl: pkg:deb/ubuntu/golang-github-google-nftables?arch=src?distro=oracular

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.1.0-3

0.1.0-4

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / golang-github-google-nftables

Package

Name: golang-github-google-nftables
Purl: pkg:deb/ubuntu/golang-github-google-nftables?arch=src?distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.1.0-3

Ecosystem specific

{
    "ubuntu_priority": "medium"
}