Security update for perl-Net-CIDR-Lite
Multiple vulnerabilities in perl-Net-CIDR-Lite can lead to IP ACL bypass due to improper validation of IP address formats and CIDR mask values. These include issues with trailing newlines or non-ASCII digits, extraneous leading zeros in CIDR masks, missing validation of IPv6 group counts, and mishandling of IPv4 mapped IPv6 addresses. The vulnerabilities affect SUSE Linux Enterprise Module for Development Tools 15 SP7 and related versions. No known exploits are reported in the wild. A security update addressing these issues has been released by the SUSE Product Security Team.
AI Analysis
Technical Summary
The perl-Net-CIDR-Lite package contained multiple validation flaws that could allow an attacker to bypass IP Access Control Lists (ACLs). Specifically, CVE-2026-45190 involves improper validation of trailing newlines or non-ASCII digits, CVE-2026-45191 concerns extraneous leading zeros in CIDR mask values, CVE-2026-40198 relates to missing validation of the IPv6 group count, and CVE-2026-40199 involves mishandling of IPv4 mapped IPv6 addresses. These issues collectively enable IP ACL bypass, potentially allowing unauthorized network access. The vulnerabilities were identified and fixed in a security update for SUSE Linux Enterprise Module for Development Tools 15 SP7 and related packages.
Potential Impact
Successful exploitation of these vulnerabilities could allow an attacker to bypass IP-based access controls, potentially granting unauthorized network access or evading network restrictions enforced by IP ACLs. However, no known exploits are reported in the wild at this time.
Mitigation Recommendations
A security update addressing these vulnerabilities has been released by the SUSE Product Security Team (advisory SUSE-SU-2026:2113-1). Applying this update to the affected perl-Net-CIDR-Lite package versions is the recommended remediation. Patch status is confirmed by the vendor advisory. No additional mitigation actions are indicated.
Security update for perl-Net-CIDR-Lite
Description
Multiple vulnerabilities in perl-Net-CIDR-Lite can lead to IP ACL bypass due to improper validation of IP address formats and CIDR mask values. These include issues with trailing newlines or non-ASCII digits, extraneous leading zeros in CIDR masks, missing validation of IPv6 group counts, and mishandling of IPv4 mapped IPv6 addresses. The vulnerabilities affect SUSE Linux Enterprise Module for Development Tools 15 SP7 and related versions. No known exploits are reported in the wild. A security update addressing these issues has been released by the SUSE Product Security Team.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The perl-Net-CIDR-Lite package contained multiple validation flaws that could allow an attacker to bypass IP Access Control Lists (ACLs). Specifically, CVE-2026-45190 involves improper validation of trailing newlines or non-ASCII digits, CVE-2026-45191 concerns extraneous leading zeros in CIDR mask values, CVE-2026-40198 relates to missing validation of the IPv6 group count, and CVE-2026-40199 involves mishandling of IPv4 mapped IPv6 addresses. These issues collectively enable IP ACL bypass, potentially allowing unauthorized network access. The vulnerabilities were identified and fixed in a security update for SUSE Linux Enterprise Module for Development Tools 15 SP7 and related packages.
Potential Impact
Successful exploitation of these vulnerabilities could allow an attacker to bypass IP-based access controls, potentially granting unauthorized network access or evading network restrictions enforced by IP ACLs. However, no known exploits are reported in the wild at this time.
Mitigation Recommendations
A security update addressing these vulnerabilities has been released by the SUSE Product Security Team (advisory SUSE-SU-2026:2113-1). Applying this update to the affected perl-Net-CIDR-Lite package versions is the recommended remediation. Patch status is confirmed by the vendor advisory. No additional mitigation actions are indicated.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- SUSE Product Security Team
- Advisory Id
- SUSE-SU-2026:2113-1
- Cve Count
- 4
- Additional Cves
- ["CVE-2026-40199","CVE-2026-45190","CVE-2026-45191"]
- Cvss Version
- null
Threat ID: 6a1ca16ae29bf47b505e4540
Added to database: 5/31/2026, 9:00:26 PM
Last enriched: 5/31/2026, 9:04:58 PM
Last updated: 5/31/2026, 11:56:26 PM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.