openSUSE: 2023:0215-1 Moderate: perl-Net-Netmask Access Control Fix

opensuse

August 7, 2023

An update that fixes one vulnerability is now available

Description

This update for perl-Net-Netmask fixes the following issues:

* CVE-2021-29424: Leading zeros are no longer allowed for IPv4 octets.

This (in some situations) allows attackers to bypass access control that

is based on IP addresses.(boo#1184425)

Topics Covered

security advisory moderate access control openSUSE perl-Net-Netmask

Patch

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods

like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

- openSUSE Backports SLE-15-SP4:

zypper in -t patch openSUSE-2023-215=1

Package List

- openSUSE Backports SLE-15-SP4 (noarch):

perl-Net-Netmask-1.9022-bp154.2.3.1

References

https://www.suse.com/security/cve/CVE-2021-29424.html

https://bugzilla.suse.com/1184425

Announcement ID: openSUSE-SU-2023:0215-1

Rating: moderate

Affected Products: openSUSE Backports SLE-15-SP4 .

Topics Covered

security advisory moderate access control openSUSE perl-Net-Netmask

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

openSUSE: 2023:0215-1 Moderate: perl-Net-Netmask Access Control Fix

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

openSUSE: 2023:0215-1 Moderate: perl-Net-Netmask Access Control Fix

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!