Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

x/vulndb: potential Go vuln in github.com/cilium/cilium: CVE-2024-47825 #3209

Closed
GoVulnBot opened this issue Oct 21, 2024 · 1 comment

Comments

@GoVulnBot
Copy link

Advisory CVE-2024-47825 references a vulnerability in the following Go modules:

Module
github.com/cilium/cilium

Description:
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.14.0 and prior to versions 1.14.16 and 1.15.10, a policy rule denying a prefix that is broader than /32 may be ignored if there is a policy rule referencing a more narrow prefix (CIDRSet or toFQDN) and this narrower policy rule specifies either enableDefaultDeny: false or - toEntities: all. Note that a rule specifying toEntities: world or toEntities: 0.0.0.0/0 is insufficient, it must be to entity all.This issue has been patched in Cilium v1.14.16 and v1.15.10. As th...

References:

Cross references:

See doc/quickstart.md for instructions on how to triage this report.

id: GO-ID-PENDING
modules:
    - module: github.com/cilium/cilium
      vulnerable_at: 1.16.3
summary: CVE-2024-47825 in github.com/cilium/cilium
cves:
    - CVE-2024-47825
references:
    - advisory: https://nvd.nist.gov/vuln/detail/CVE-2024-47825
    - web: https://github.com/cilium/cilium/security/advisories/GHSA-3wwx-63fv-pfq6
source:
    id: CVE-2024-47825
    created: 2024-10-21T21:01:37.861696643Z
review_status: UNREVIEWED

@tatianab
Copy link
Contributor

Duplicate of #3208

@tatianab tatianab marked this as a duplicate of #3208 Oct 28, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

No branches or pull requests

2 participants