Vulnerability Report: GO-2023-1860
- Affects: github.com/cosmos/ibc-go/v7, github.com/cosmos/ibc-go/v6, and 2 more
- Published: Jun 15, 2023
- Modified: May 20, 2024
The ibc-go module is affected by the Inter-Blockchain Communication (IBC) protocol "Huckleberry" vulnerability.
For detailed information about this vulnerability, visit https://forum.cosmos.network/t/ibc-security-advisory-huckleberry/10731.
Affected Packages
-
PathGo VersionsSymbols
-
before v7.0.1
-
before v7.0.1
-
before v6.1.1
-
before v6.1.1
-
before v5.2.1, from v5.3.0 before v5.3.1
-
before v5.2.1, from v5.3.0 before v5.3.1
-
before v4.1.3, from v4.2.0 before v4.2.2, from v4.3.0 before v4.3.1, from v4.4.0 before v4.4.1
-
before v4.1.3, from v4.2.0 before v4.2.2, from v4.3.0 before v4.3.1, from v4.4.0 before v4.4.1
References
- https://forum.cosmos.network/t/ibc-security-advisory-huckleberry/10731
- https://vuln.go.dev/ID/GO-2023-1860.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.