5 matches found
SUSE CVE-2021-4456
Net::CIDR versions before 0.24 for Perl mishandle leading zeros in IP CIDR addresses, which may have unspecified impact. The functions addr2cidr and cidrlookup may return leading zeros in a CIDR string, which may in turn be parsed as octal numbers by subsequent users. In some cases an attacker ma...
DEBIAN-CVE-2021-4456
Net::CIDR versions before 0.24 for Perl mishandle leading zeros in IP CIDR addresses, which may have unspecified impact. The functions addr2cidr and cidrlookup may return leading zeros in a CIDR string, which may in turn be parsed as octal numbers by subsequent users. In some cases an attacker ma...
CVE-2021-4456
CVE-2021-4456 affects the Perl module Net::CIDR (versions before 0.24). The issue stems from leading zeros in CIDR notation, where addr2cidr and cidrlookup may emit leading zeros thatParsing as octal could bypass IP-based restrictions. Fedora/OpenSUSE advisories note fixes have been released: Fed...
CVE-2021-4456
Net::CIDR versions before 0.24 for Perl mishandle leading zeros in IP CIDR addresses, which may have unspecified impact. The functions addr2cidr and cidrlookup may return leading zeros in a CIDR string, which may in turn be parsed as octal numbers by subsequent users. In some cases an attacker ma...
MetaCPAN Net::CIDR::Set 安全漏洞
MetaCPAN Net::CIDR::Set is a library from the MetaCPAN Foundation. Versions of MetaCPAN Net::CIDR::Set prior to 0.24 contained a security vulnerability. This vulnerability stemmed from improper handling of leading zeros in IP CIDR addresses, which could lead to bypassing IP-based access controls...