GO-2023-2078
and 5 other vulnerabilities
GO-2023-2078 : Kubernetes users may update Pod labels to bypass network policy in github.com/cilium/cilium
GO-2023-2079 : Specific Cilium configurations vulnerable to DoS via Kubernetes annotations in github.com/cilium/cilium
GO-2023-2080 : Cilium vulnerable to bypass of namespace restrictions in CiliumNetworkPolicy in github.com/cilium/cilium
GO-2024-2656 : Unencrypted traffic between nodes with IPsec in github.com/cilium/cilium
GO-2024-2666 : Insecure IPsec transparent encryption in github.com/cilium/cilium
GO-2024-3072 : Policy bypass for Host Firewall policy due to race condition in Cilium agent in github.com/cilium/cilium
Discover Packages
github.com/cilium/cilium
pkg
labels
cidr
package
Version:
v1.12.0-rc0
Opens a new window with list of versions in this module.
Published: Mar 4, 2022
License: Apache-2.0
Opens a new window with license information.
Imports: 4
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Documentation
¶
Package cidr provides helper methods for generating labels for CIDRs which
are partially derived from node state.
GetCIDRLabels turns a CIDR into a set of labels representing the cidr itself
and all broader CIDRS which include the specified CIDR in them. For example:
CIDR: 10.0.0.0/8 =>
"cidr:10.0.0.0/8", "cidr:10.0.0.0/7", "cidr:8.0.0.0/6",
"cidr:8.0.0.0/5", "cidr:0.0.0.0/4, "cidr:0.0.0.0/3",
"cidr:0.0.0.0/2", "cidr:0.0.0.0/1", "cidr:0.0.0.0/0"
The identity reserved:world is always added as it includes any CIDR.
IPStringToLabel parses a string and returns it as a CIDR label.
If "IP" is not a valid IP address or CIDR Prefix, returns an error.
¶
Click to show internal directories.
Click to hide internal directories.
Affected by 
Documentation
¶
Source Files