Go to main page
Versions in this module
v1
Oct 9, 2024 GO-2024-2430 +4 more
GO-2024-2430: Authenticated users can crash the CubeFS servers with maliciously crafted requests in github.com/cubefs/cubefs
GO-2024-2431: Insecure random string generator used for sensitive data in github.com/cubefs/cubefs
GO-2024-2432: CubeFS timing attack can leak user passwords in github.com/cubefs/cubefs
GO-2024-2433: CubeFS leaks magic secret key when starting Blobstore access service in github.com/cubefs/cubefs
GO-2024-2434: CubeFS leaks users key in logs in github.com/cubefs/cubefs