[ALPINE:CVE-2024-24790] go vulnerability
Severity
Critical
Affected Packages
8
Fixed Packages
8
CVEs
1
[From CVE-2024-24790] The various Is methods (IsPrivate, IsLoopback, etc) did not work as expected for IPv4-mapped IPv6 addresses, returning false for addresses which would return true in their traditional IPv4 forms.
Package | Affected Version |
---|---|
pkg:apk/alpine/go?arch=x86_64&distro=alpine-edge | < 1.22.4-r0 |
pkg:apk/alpine/go?arch=x86&distro=alpine-edge | < 1.22.4-r0 |
pkg:apk/alpine/go?arch=s390x&distro=alpine-edge | < 1.22.4-r0 |
pkg:apk/alpine/go?arch=riscv64&distro=alpine-edge | < 1.22.4-r0 |
pkg:apk/alpine/go?arch=ppc64le&distro=alpine-edge | < 1.22.4-r0 |
pkg:apk/alpine/go?arch=armv7&distro=alpine-edge | < 1.22.4-r0 |
pkg:apk/alpine/go?arch=armhf&distro=alpine-edge | < 1.22.4-r0 |
pkg:apk/alpine/go?arch=aarch64&distro=alpine-edge | < 1.22.4-r0 |
Package | Fixed Version |
---|---|
pkg:apk/alpine/go?arch=x86_64&distro=alpine-edge | = 1.22.4-r0 |
pkg:apk/alpine/go?arch=x86&distro=alpine-edge | = 1.22.4-r0 |
pkg:apk/alpine/go?arch=s390x&distro=alpine-edge | = 1.22.4-r0 |
pkg:apk/alpine/go?arch=riscv64&distro=alpine-edge | = 1.22.4-r0 |
pkg:apk/alpine/go?arch=ppc64le&distro=alpine-edge | = 1.22.4-r0 |
pkg:apk/alpine/go?arch=armv7&distro=alpine-edge | = 1.22.4-r0 |
pkg:apk/alpine/go?arch=armhf&distro=alpine-edge | = 1.22.4-r0 |
pkg:apk/alpine/go?arch=aarch64&distro=alpine-edge | = 1.22.4-r0 |
- ID
- ALPINE:CVE-2024-24790
- Severity
- critical
- Severity from
- CVE-2024-24790
- URL
- https://security.alpinelinux.org/vuln/CVE-2024-24790
- Published
-
2024-06-05T16:15:10
(3 months ago) - Modified
-
2024-06-05T16:15:10
(3 months ago) - Rights
- Alpine Linux Security Team
- Other Advisories
-
- ALAS2-2024-2576
- ALAS2-2024-2618
- ALSA-2024:4212
- ALSA-2024:4237
- ALSA-2024:5291
- ELSA-2024-4212
- ELSA-2024-4237
- ELSA-2024-5291
- FREEBSD:219AAA1E-2AFF-11EF-AB37-5404A68AD561
- FREEBSD:A5C64F6F-2AF3-11EF-A77E-901B0E9408DC
- GO-2024-2887
- RHSA-2024:4212
- RHSA-2024:4237
- RHSA-2024:5291
- RLSA-2024:4212
- SUSE-SU-2024:1935-1
- SUSE-SU-2024:1936-1
- SUSE-SU-2024:1969-1
- SUSE-SU-2024:1970-1
- SUSE-SU-2024:3089-1
- USN-6886-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Fixed | pkg:apk/alpine/go?arch=x86_64&distro=alpine-edge | alpine | go | = 1.22.4-r0 | alpine-edge | x86_64 | |
Affected | pkg:apk/alpine/go?arch=x86_64&distro=alpine-edge | alpine | go | < 1.22.4-r0 | alpine-edge | x86_64 | |
Fixed | pkg:apk/alpine/go?arch=x86&distro=alpine-edge | alpine | go | = 1.22.4-r0 | alpine-edge | x86 | |
Affected | pkg:apk/alpine/go?arch=x86&distro=alpine-edge | alpine | go | < 1.22.4-r0 | alpine-edge | x86 | |
Fixed | pkg:apk/alpine/go?arch=s390x&distro=alpine-edge | alpine | go | = 1.22.4-r0 | alpine-edge | s390x | |
Affected | pkg:apk/alpine/go?arch=s390x&distro=alpine-edge | alpine | go | < 1.22.4-r0 | alpine-edge | s390x | |
Fixed | pkg:apk/alpine/go?arch=riscv64&distro=alpine-edge | alpine | go | = 1.22.4-r0 | alpine-edge | riscv64 | |
Affected | pkg:apk/alpine/go?arch=riscv64&distro=alpine-edge | alpine | go | < 1.22.4-r0 | alpine-edge | riscv64 | |
Fixed | pkg:apk/alpine/go?arch=ppc64le&distro=alpine-edge | alpine | go | = 1.22.4-r0 | alpine-edge | ppc64le | |
Affected | pkg:apk/alpine/go?arch=ppc64le&distro=alpine-edge | alpine | go | < 1.22.4-r0 | alpine-edge | ppc64le | |
Fixed | pkg:apk/alpine/go?arch=armv7&distro=alpine-edge | alpine | go | = 1.22.4-r0 | alpine-edge | armv7 | |
Affected | pkg:apk/alpine/go?arch=armv7&distro=alpine-edge | alpine | go | < 1.22.4-r0 | alpine-edge | armv7 | |
Fixed | pkg:apk/alpine/go?arch=armhf&distro=alpine-edge | alpine | go | = 1.22.4-r0 | alpine-edge | armhf | |
Affected | pkg:apk/alpine/go?arch=armhf&distro=alpine-edge | alpine | go | < 1.22.4-r0 | alpine-edge | armhf | |
Fixed | pkg:apk/alpine/go?arch=aarch64&distro=alpine-edge | alpine | go | = 1.22.4-r0 | alpine-edge | aarch64 | |
Affected | pkg:apk/alpine/go?arch=aarch64&distro=alpine-edge | alpine | go | < 1.22.4-r0 | alpine-edge | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |