CVE-2024-6284

NameCVE-2024-6284
DescriptionIn https://github.com/google/nftables  IP addresses were encoded in the wrong byte order, resulting in an nftables configuration which does not work as intended (might block or not block the desired addresses). This issue affects:  https://pkg.go.dev/github.com/google/nftables@v0.1.0 The bug was fixed in the next released version:  https://pkg.go.dev/github.com/google/nftables@v0.2.0
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs1071247

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
golang-github-google-nftables (PTS)bookworm0.1.0-4~deb12u1fixed
sid, trixie0.1.0-4fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
golang-github-google-nftablessourcebookworm0.1.0-4~deb12u1
golang-github-google-nftablessource(unstable)0.1.0-41071247

Notes

https://github.com/google/nftables/issues/225
https://github.com/crowdsecurity/cs-firewall-bouncer/issues/368
Search for package or bug name: Reporting problems