CVE-2020-13250

Опубликовано: 11 июн. 2020

Источник: debian

Описание

HashiCorp Consul and Consul Enterprise include an HTTP API (introduced in 1.2.0) and DNS (introduced in 1.4.3) caching feature that was vulnerable to denial of service. Fixed in 1.6.6 and 1.7.4.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
consul	fixed	1.7.4+dfsg1-1		package
consul	not-affected		buster	package

Примечания

https://github.com/hashicorp/consul/blob/v1.7.4/CHANGELOG.md
https://github.com/hashicorp/consul/pull/8023

Связанные уязвимости

CVE-2020-13250

CVSS3: 7.5

ubuntu

больше 5 лет назад

HashiCorp Consul and Consul Enterprise include an HTTP API (introduced in 1.2.0) and DNS (introduced in 1.4.3) caching feature that was vulnerable to denial of service. Fixed in 1.6.6 and 1.7.4.

CVE-2020-13250

CVSS3: 7.5

nvd

больше 5 лет назад

HashiCorp Consul and Consul Enterprise include an HTTP API (introduced in 1.2.0) and DNS (introduced in 1.4.3) caching feature that was vulnerable to denial of service. Fixed in 1.6.6 and 1.7.4.

GHSA-rqjq-mrgx-85hp

CVSS3: 7.5

github

больше 4 лет назад

Allocation of Resources Without Limits or Throttling in Hashicorp Consul