SSRF protection bypass possible with IPv4-mapped IPv6 addresses
Package
Discourse
(Discourse)
Affected versions
beta <= 3.1.0.beta2; tests-passed <= 3.1.0.beta2
Patched versions
beta >= 3.1.0.beta3; tests-passed >= 3.1.0.beta3
Impact
Attackers will be able to bypass our SSRF protection for private IPv4 addresses by using a IPv4-mapped IPv6 address.
Patches
The issue is patched in the latest beta and tests-passed version of Discourse.
Workarounds
None.