Skip to content

iprange may panic when parsing ranges with invalid masks

Moderate severity GitHub Reviewed Published Jul 12, 2023 to the GitHub Advisory Database

Package

gomod github.com/malfunkt/iprange (Go)

Affected versions

<= 0.9.0

Patched versions

None

Description

Parsing a range with a mask larger than 32 bits causes a panic.

References

Published to the GitHub Advisory Database Jul 12, 2023
Reviewed Jul 12, 2023

Severity

Moderate

EPSS score

Weaknesses

No CWEs

CVE ID

No known CVE

GHSA ID

GHSA-f99h-w337-mv56

Source code

Loading Checking history
See something to contribute? Suggest improvements for this vulnerability.