Debian Patches
Status for libnet-cidr-lite-perl/0.22-3
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| CVE-2026-40198-Reject-invalid-uncompressed-IPv6.patch | CVE-2026-40198: Reject invalid uncompressed IPv6 _pack_ipv6() accepted uncompressed IPv6 addresses with fewer than 8 groups. This resulted in incorrect packed values affecting mask and comparison operations. Possibly allowing IP ACL bypass via find(). |
Stig Palmquist <git@stig.io> | no | https://github.com/stigtsp/Net-CIDR-Lite/commit/25d65f85dbe4885959a10471725ec9d250a589c3 | 2026-04-10 | |
| CVE-2026-40198-Add-tests.patch | CVE-2026-40198: Add tests | Stig Palmquist <git@stig.io> | no | https://github.com/stigtsp/Net-CIDR-Lite/commit/380562e04f66026ba3859f76b3c8ae0489cbc750 | 2026-04-10 | |
| CVE-2026-40199-Fix-IPv4-mapped-IPv6-packed-length.patch | CVE-2026-40199: Fix IPv4 mapped IPv6 packed length _pack_ipv6() incorrectly included the sentinel byte from _pack_ipv4() when packing IPv4 mapped addresses. This resulted in incorrect mask and comparison operations. Possibly allowing IP ACL bypass via find(). |
Stig Palmquist <git@stig.io> | no | https://github.com/stigtsp/Net-CIDR-Lite/commit/b7166b1fa17b3b14b4c795ace5b3fbf71a0bd04a | 2026-04-10 | |
| CVE-2026-40199-Add-tests.patch | CVE-2026-40199: Add tests | Stig Palmquist <git@stig.io> | no | https://github.com/stigtsp/Net-CIDR-Lite/commit/029b9417d2078827f790addfa1dceb1df8297b85 | 2026-04-10 |
All known versions for source package 'libnet-cidr-lite-perl'
- 0.22-3 (forky, sid)
- 0.22-3~deb13u1 (trixie-proposed-updates)
- 0.22-2 (trixie, bookworm)