Incorrect Regular Expression

Hono is vulnerable to Incorrect Regular Expression. The vulnerability is due to improper validation of IPv4 octet ranges in the IP Restriction Middleware, which allows an attacker to craft malformed IP addresses to bypass IP-based access controls...

SUSE-SU-2024:1256-1 Security update for perl-Net-CIDR-Lite

This update for perl-Net-CIDR-Lite fixes the following issues: - CVE-2021-47154: Fixed leading zeroes in IPv4 octets may allow attackers to bypass certain access controls bsc1221564...

OPENSUSE-SU-2023:0217-1 Security update for perl-Net-Netmask

This update for perl-Net-Netmask fixes the following issues: CVE-2021-29424: Leading zeros are no longer allowed for IPv4 octets. This in some situations allows attackers to bypass access control that is based on IP addresses. boo1184425...

OPENSUSE-SU-2023:0215-1 Security update for perl-Net-Netmask

This update for perl-Net-Netmask fixes the following issues: CVE-2021-29424: Leading zeros are no longer allowed for IPv4 octets. This in some situations allows attackers to bypass access control that is based on IP addresses.boo1184425...

The npm netmask vulnerability explained so you can actually understand it

The popular npm netmask library recently encountered a serious problem, explained as follows: The npm netmask package incorrectly evaluates individual ipv4 octets that contain octal strings as left-stripped integers, leading to an inordinate attack surface on hundreds of thousands of projects tha...