GoogleOSV:GHSA-QJVF-8748-9W7Hgithub.com/google/nftable IP addresses were encoded in the wrong byte order
CVSS4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/SC:L/VI:L/SI:L/VA:L/SA:L
AI Score
Confidence
Low
In https://github.com/google/nftablesย IP addresses were encoded in the wrong byte order,ย resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses).
This issue affects:ย https://pkg.go.dev/github.com/google/[email protected]
The bug was fixed in the next released version:ย https://pkg.go.dev/github.com/google/[email protected]
References
bugs.launchpad.net/ubuntu/+source/crowdsec-firewall-bouncer/+bug/2069596
github.com/crowdsecurity/cs-firewall-bouncer/issues/368
github.com/google/nftables
github.com/google/nftables/commit/b1f901b05510bed05c232c5049f68d1511b56a19
github.com/google/nftables/issues/225
nvd.nist.gov/vuln/detail/CVE-2024-6284
Related
CVSS4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/SC:L/VI:L/SI:L/VA:L/SA:L
AI Score
Confidence
Low