Vulnerability Report: GO-2021-0075
- CVE-2018-12018, GHSA-p5gc-957x-gfw9
- Affects: github.com/ethereum/go-ethereum
- Published: Apr 14, 2021
- Modified: Jun 03, 2024
Due to improper argument validation in RPC messages, a maliciously crafted message can cause a panic, leading to denial of service.
Affected Packages
-
PathGo VersionsSymbols
-
before v1.8.11
1 unexported affected symbols
- ProtocolManager.handleMsg
Aliases
References
- https://github.com/ethereum/go-ethereum/pull/16891
- https://github.com/ethereum/go-ethereum/commit/a5237a27eaf81946a3edb4fafe13ed6359d119e4
- https://vuln.go.dev/ID/GO-2021-0075.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.