Affected by GO-2024-2430
and 4 other vulnerabilities
GO-2024-2430: Authenticated users can crash the CubeFS servers with maliciously crafted requests in github.com/cubefs/cubefs
GO-2024-2431: Insecure random string generator used for sensitive data in github.com/cubefs/cubefs
GO-2024-2432: CubeFS timing attack can leak user passwords in github.com/cubefs/cubefs
GO-2024-2433: CubeFS leaks magic secret key when starting Blobstore access service in github.com/cubefs/cubefs
GO-2024-2434: CubeFS leaks users key in logs in github.com/cubefs/cubefs
package
Version:
v2.5.1-rc.0+incompatible
Opens a new window with list of versions in this module.
Published: Jan 26, 2022
License: Apache-2.0
Opens a new window with license information.
Imports: 4
Opens a new window with list of imports.
Imported by: 2
Opens a new window with list of known importers.
Documentation
¶
set default max distance from two ips to length of ipv6
FromRequest return client's real public IP address from http request headers.
RealIP is depreciated, use FromRequest instead
Source Files
¶
Click to show internal directories.
Click to hide internal directories.