Description

The “ipaddress” module contained incorrect information about whether certain IPv4 and IPv6 addresses were designated as “globally reachable” or “private”. This affected the is_private and is_global properties of the ipaddress.IPv4Address, ipaddress.IPv4Network, ipaddress.IPv6Address, and ipaddress.IPv6Network classes, where values wouldn’t be returned in accordance with the latest information from the IANA Special-Purpose Address Registries. CPython 3.12.4 and 3.13.0a6 contain updated information from these registries and thus have the intended behavior.

INFO

Published Date :

2024-06-17T15:05:58.827Z

Last Modified :

2025-11-03T21:57:16.975Z

Source :

PSF
AFFECTED PRODUCTS

The following products are affected by CVE-2024-4032 vulnerability.

Vendors Products
Python
  • Cpython
Redhat
  • Enterprise Linux
  • Rhel Aus
  • Rhel E4s
  • Rhel Eus
  • Rhel Tus
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-4032.

URL Resource
http://www.openwall.com/lists/oss-security/2024/06/17/3 cve-icon cve-icon
https://github.com/python/cpython/commit/22adf29da8d99933ffed8647d3e0726edd16f7f8 cve-icon cve-icon
https://github.com/python/cpython/commit/40d75c2b7f5c67e254d0a025e0f2e2c7ada7f69f cve-icon cve-icon
https://github.com/python/cpython/commit/895f7e2ac23eff4743143beef0f0c5ac71ea27d3 cve-icon cve-icon
https://github.com/python/cpython/commit/ba431579efdcbaed7a96f2ac4ea0775879a332fb cve-icon cve-icon
https://github.com/python/cpython/commit/c62c9e518b784fe44432a3f4fc265fb95b651906 cve-icon cve-icon
https://github.com/python/cpython/commit/f86b17ac511e68192ba71f27e752321a3252cee3 cve-icon cve-icon
https://github.com/python/cpython/issues/113171 cve-icon cve-icon
https://github.com/python/cpython/pull/113179 cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2024/12/msg00000.html cve-icon
https://mail.python.org/archives/list/[email protected]/thread/NRUHDUS2IV2USIZM2CVMSFL6SCKU3RZA/ cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-4032 cve-icon
https://security.netapp.com/advisory/ntap-20240726-0004/ cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-4032 cve-icon
https://www.iana.org/assignments/iana-ipv4-special-registry/iana-ipv4-special-registry.xhtml cve-icon cve-icon
https://www.iana.org/assignments/iana-ipv6-special-registry/iana-ipv6-special-registry.xhtml cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact