Vulnerability Report: GO-2021-0075
- CVE-2018-12018, GHSA-p5gc-957x-gfw9
- Affects: github.com/ethereum/go-ethereum
- Published: Apr 14, 2021
- Modified: Dec 14, 2023
Due to improper argument validation in RPC messages, a maliciously crafted message can cause a panic, leading to denial of service.
Affected Packages
-
PathVersionsSymbols
-
before v1.8.11all symbols
Aliases
References
- https://github.com/ethereum/go-ethereum/pull/16891
- https://github.com/ethereum/go-ethereum/commit/a5237a27eaf81946a3edb4fafe13ed6359d119e4
- https://peckshield.com/2018/06/27/EPoD/
- https://vuln.go.dev/ID/GO-2021-0075.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.