net/netip: unexpected behavior from Is methods for IPv4-mapped IPv6 addresses [CVE-2024-24790] #67680
Comments
|
@gopherbot please open backport issues, this is a security issue. |
|
Backport issue(s) opened: #67681 (for 1.21), #67682 (for 1.22). Remember to create the cherry-pick CL(s) as soon as the patch is submitted to master, according to https://go.dev/wiki/MinorReleases. |
|
Change https://go.dev/cl/590315 mentions this issue: |
|
Change https://go.dev/cl/590296 mentions this issue: |
|
Change https://go.dev/cl/590316 mentions this issue: |
gopherbot
pushed a commit
that referenced
this issue
Jun 4, 2024
…s methods In all of the Is* methods, check if the address is a v6 mapped v4 address, and unmap it if so. Thanks to Enze Wang of Alioth (@zer0yu) and Jianjun Chen of Zhongguancun Lab (@chenjj) for reporting this issue. Fixes #67680 Fixes #67681 Fixes CVE-2024-24790 Change-Id: I6bd03ca1a5d93a0b59027d861c84060967b265b0 Reviewed-on: https://go-internal-review.googlesource.com/c/go/+/1460 Reviewed-by: Russ Cox <[email protected]> Reviewed-by: Damien Neil <[email protected]> (cherry picked from commit f7f270c1621fdc7ee48e0487b2fac0356947d19b) Reviewed-on: https://go-internal-review.googlesource.com/c/go/+/1500 Reviewed-by: Tatiana Bradley <[email protected]> Reviewed-on: https://go-review.googlesource.com/c/go/+/590315 Auto-Submit: Michael Knyszek <[email protected]> LUCI-TryBot-Result: Go LUCI <[email protected]> Reviewed-by: David Chase <[email protected]>
gopherbot
pushed a commit
that referenced
this issue
Jun 4, 2024
…s methods In all of the Is* methods, check if the address is a v6 mapped v4 address, and unmap it if so. Thanks to Enze Wang of Alioth (@zer0yu) and Jianjun Chen of Zhongguancun Lab (@chenjj) for reporting this issue. Fixes #67680 Fixes #67682 Fixes CVE-2024-24790 Change-Id: I6bd03ca1a5d93a0b59027d861c84060967b265b0 Reviewed-on: https://go-internal-review.googlesource.com/c/go/+/1460 Reviewed-by: Russ Cox <[email protected]> Reviewed-by: Damien Neil <[email protected]> (cherry picked from commit f7f270c1621fdc7ee48e0487b2fac0356947d19b) Reviewed-on: https://go-internal-review.googlesource.com/c/go/+/1480 Reviewed-by: Tatiana Bradley <[email protected]> Reviewed-on: https://go-review.googlesource.com/c/go/+/590296 Auto-Submit: Michael Knyszek <[email protected]> Reviewed-by: David Chase <[email protected]> LUCI-TryBot-Result: Go LUCI <[email protected]>
mknyszek
changed the title
8 tasks
13 tasks
kraj
pushed a commit
to YoeDistro/poky
that referenced
this issue
Jun 23, 2024
Upstream-Status: Backport from golang/go@12d5810 Reference: golang/go#67680 (From OE-Core rev: f05580df2db46ba123c4eac822d16f7a1d621a61) Signed-off-by: Vijay Anusuri <[email protected]> Signed-off-by: Alexandre Belloni <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
The various Is methods (IsPrivate, IsLoopback, etc) did not work as expected for
IPv4-mapped IPv6 addresses, returning false for addresses which would return
true in their traditional IPv4 forms.
Thanks to Enze Wang of Alioth (@zer0yu) and Jianjun Chen of Zhongguancun Lab
(@chenjj) for reporting this issue.
This is CVE-2024-24790.
/cc @golang/security and @golang/release
The text was updated successfully, but these errors were encountered: