Alpaquita LinuxStreamSecurity Advisory
Search Cve

CVE-2024-24790

Published: June 7, 2024Last modified: July 22, 2025

Description

The various Is methods (IsPrivate, IsLoopback, etc) did not work as expected for IPv4-mapped IPv6 addresses, returning false for addresses which would return true in their traditional IPv4 forms.

Severity score breakdown

ParameterValue
Base score9.8
Attack VectorNETWORK
Attack complexityLOW
Privileges requiredNONE
User interactionNONE
ScopeUNCHANGED
ConfidentialityHIGH
Integrity impactHIGH
Availability impactHIGH
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Status

ProductReleasePackageStatus
Alpaquita Linux23 LTSgoFixed (1.21.12-r0)
StreamgoFixed (1.22.4-r1)
Hardened Containers23 LTSgoFixed (1.21.12-r0)
StreamgoFixed (1.22.4-r1)

References

Published BELL-SAs

ON THIS PAGE