Bug #19479: Support IPv4-mapped IPv6 addresses in IPAddr#private? - Ruby master - Ruby Issue Tracking System

Actions

Bug #19479

closed

Status:

Closed

Assignee:

Target version:

ruby -v:

ruby 3.2.1 (2023-02-08 revision 31819e82c8) [x86_64-linux]

Backport:

Description

irb(main):010:0> IPAddr.new("172.16.0.0").private?
=> true
irb(main):011:0> IPAddr.new("::ffff:172.16.0.0").private?
=> false

If IPAddr#private? is used in a critical code path, not supporting IPv4-mapped IPv6 addresses could lead to security issues.

Actions

#1 [ruby-core:114005]

I submitted an upstream pull request to fix this: https://github.com/ruby/ipaddr/pull/57

Actions

[ruby/ipaddr] Consider IPv4-mapped IPv6 addresses private if IPv4 address is private

Fixes [Bug #19479]

Actions

Also available in: Atom PDF

Like0

Like0Like0