Описание
HashiCorp Consul Enterprise version 1.7.0 up to 1.8.4 includes a namespace replication bug which can be triggered to cause denial of service via infinite Raft writes. Fixed in 1.7.9 and 1.8.5.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| consul | fixed | 1.8.6+dfsg1-1 | package | |
| consul | not-affected | buster | package |
Примечания
https://github.com/hashicorp/consul/pull/9024
https://github.com/hashicorp/consul/blob/master/CHANGELOG.md#185-october-23-2020
EPSS
Процентиль: 81%
0.01543
Низкий
Связанные уязвимости
CVSS3: 7.5
ubuntu
больше 5 лет назад
HashiCorp Consul Enterprise version 1.7.0 up to 1.8.4 includes a namespace replication bug which can be triggered to cause denial of service via infinite Raft writes. Fixed in 1.7.9 and 1.8.5.
CVSS3: 7.5
nvd
больше 5 лет назад
HashiCorp Consul Enterprise version 1.7.0 up to 1.8.4 includes a namespace replication bug which can be triggered to cause denial of service via infinite Raft writes. Fixed in 1.7.9 and 1.8.5.
EPSS
Процентиль: 81%
0.01543
Низкий