Описание
Go Ethereum affected by DoS via malicious p2p message
Impact
An attacker can cause high memory usage by sending a specially-crafted p2p message. More details to be released later.
Patches
The issue is resolved in the v1.17.0 release.
Credit
This issue was reported to the Ethereum Foundation Bug Bounty Program by @revofusion
Пакеты
Наименование
github.com/ethereum/go-ethereum
go
Затронутые версииВерсия исправления
< 1.17.0
1.17.0
Связанные уязвимости
CVSS3: 7.5
nvd
около 1 месяца назад
go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. Prior to version 1.17.0, an attacker can cause high memory usage by sending a specially-crafted p2p message. The issue is resolved in the v1.17.0 release.
CVSS3: 7.5
debian
около 1 месяца назад
go-ethereum (geth) is a golang execution layer implementation of the E ...