Affected by GO-2024-2430
and 4 other vulnerabilities
GO-2024-2430: Authenticated users can crash the CubeFS servers with maliciously crafted requests in github.com/cubefs/cubefs
GO-2024-2431: Insecure random string generator used for sensitive data in github.com/cubefs/cubefs
GO-2024-2432: CubeFS timing attack can leak user passwords in github.com/cubefs/cubefs
GO-2024-2433: CubeFS leaks magic secret key when starting Blobstore access service in github.com/cubefs/cubefs
GO-2024-2434: CubeFS leaks users key in logs in github.com/cubefs/cubefs
command
Version:
v2.3.0-rc.2+incompatible
Opens a new window with list of versions in this module.
Published: Feb 9, 2021
License: Apache-2.0
Opens a new window with license information.
Imports: 3
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.
Click to show internal directories.
Click to hide internal directories.