CVE-2024-28860

Description

Insecure IPsec transparent encryption in github.com/cilium/cilium

Affected packages (9)

• Bitnami/cilium>= 1.14.0, < 1.14.9, >= 1.15.0, < 1.15.3 | >= 1.4.0, <= 1.13.14
• Bitnami/cilium-operator>= 1.14.0, < 1.14.9, >= 1.15.0, < 1.15.3 | >= 1.4.0, <= 1.13.14
• Bitnami/cilium-proxy>= 1.4.0, < 1.13.14, >= 1.14.0, < 1.14.9, >= 1.15.0, < 1.15.3
• Bitnami/hubble>= 1.4.0, < 1.13.14, >= 1.14.0, < 1.14.9, >= 1.15.0, < 1.15.3
• Bitnami/hubble-relay>= 1.14.0, < 1.14.9, >= 1.15.0, < 1.15.3 | >= 1.4.0, <= 1.13.14
• Bitnami/hubble-ui>= 1.4.0, < 1.13.14, >= 1.14.0, < 1.14.9, >= 1.15.0, < 1.15.3
• Bitnami/hubble-ui-backend>= 1.4.0, < 1.13.14, >= 1.14.0, < 1.14.9, >= 1.15.0, < 1.15.3
• Go/github.com/cilium/ciliumfrom 0, < 1.13.14, >= 1.14.0, < 1.14.9, >= 1.15.0, < 1.15.3
• Go/github.com/cilium/cilium>= 1.4.0, < 1.13.14

CVSS scores

References (8)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2024-28860
• PATCHhttps://github.com/cilium/cilium
• WEBhttps://docs.cilium.io/en/stable/security/network/encryption-ipsec
• WEBhttps://github.com/cilium/cilium/commit/311fbce5280491cddceab178d83b06fa23688c72
• WEBhttps://github.com/cilium/cilium/commit/a1742b478306fa256cd27df1039dfae0537b4149
• WEBhttps://github.com/cilium/cilium/commit/a652c123331852cca90c74202f993d4170fd37fa
• WEBhttps://github.com/cilium/cilium/security/advisories/GHSA-pwqm-x5x6-5586
• WEBhttps://pkg.go.dev/vuln/GO-2024-2666