FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

traefik -- Unexpected behavior with IPv4-mapped IPv6 addresses

Affected packages
traefik < 2.11.4

Details

VuXML ID 219aaa1e-2aff-11ef-ab37-5404a68ad561
Discovery 2024-06-05
Entry 2024-06-15

The traefik authors report:

There is a vulnerability in Go managing various Is methods (IsPrivate, IsLoopback, etc) for IPv4-mapped IPv6 addresses. They didn't work as expected returning false for addresses which would return true in their traditional IPv4 forms.

[source]

References

CVE Name CVE-2024-24790
URL https://github.com/traefik/traefik/security/advisories/GHSA-7jmw-8259-q9jx

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.