FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-19 19:12:13 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
767dfb2d-3c9e-11ef-a829-5404a68ad561	traefik -- Bypassing IP allow-lists via HTTP/3 early data requests The traefik authors report: There is a vulnerability in Traefik that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses. Discovery 2024-07-02 Entry 2024-07-07 traefik < 2.11.6 CVE-2024-39321 https://github.com/traefik/traefik/security/advisories/GHSA-gxrv-wf35-62w9

VuXML ID

Description

767dfb2d-3c9e-11ef-a829-5404a68ad561

traefik -- Bypassing IP allow-lists via HTTP/3 early data requests

The traefik authors report:

There is a vulnerability in Traefik that allows bypassing IP allow-lists via HTTP/3 early data requests in QUIC 0-RTT handshakes sent with spoofed IP addresses.

Discovery 2024-07-02
Entry 2024-07-07
traefik

< 2.11.6

CVE-2024-39321
https://github.com/traefik/traefik/security/advisories/GHSA-gxrv-wf35-62w9