CVE-2024-32985

Source
https://cve.org/CVERecord?id=CVE-2024-32985
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-32985.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-32985
Aliases
  • GHSA-mgx8-frjx-x33m
Published
2024-05-09T20:54:15.065Z
Modified
2026-07-15T01:49:07.497462632Z
Severity
  • 5.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
Stellar-core's Overlay - security fix for DDoS mitigation
Details

Stellar-core is a reference implementation for the peer-to-peer agent that manages the Stellar network. Prior to 20.4.0, core nodes could be randomly crashed due to a race condition with a 3rd party library. The likelihood of affecting the network is low since crashed nodes come back up online right away. Code fix mitigation is part of Stellar-core v20.4.0 release

Database specific
{
    "cwe_ids": [
        "CWE-362"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/32xxx/CVE-2024-32985.json",
    "cna_assigner": "GitHub_M"
}
References

Affected packages

Git / github.com/stellar/stellar-core

Affected ranges

Type
GIT
Repo
https://github.com/stellar/stellar-core
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "20.4.0"
        }
    ],
    "source": "AFFECTED_FIELD"
}

Affected versions

Other
quarkslab-core
soroban-preview-10-July5
soroban-preview-10-June27
v0.*
v0.1
v0.2
v0.2.1
v0.2.2
v0.2.3
v0.2.4
v0.2.5
v0.3.0
v0.3.1
v0.3.2
v0.3.3
v0.4.0
v0.4.1
v0.5.0
v0.5.1
v0.6
v0.6.1
v0.6.2
v0.6.3
v0.6.4
v10.*
v10.0.0
v10.0.0rc1
v10.0.0rc2
v10.0.0rc3
v10.0.0rc4
v10.1.0
v10.1.0rc1
v10.1.0rc2
v10.1.0rc3
v10.2.0
v10.2.0rc1
v10.2.0rc2
v10.2.0rc3
v10.2.0rc4
v11.*
v11.0.0
v11.1.0
v11.1.0rc1
v11.1.0rc2
v11.2.0
v11.2.0rc1
v11.2.0rc2
v11.2.0rc3
v11.3.0
v11.3.0rc1
v11.4.0
v11.4.0rc1
v11.4.0rc2
v12.*
v12.0.0
v12.0.0rc1
v12.0.0rc2
v12.1.0
v12.1.0rc1
v12.1.0rc2
v12.2.0
v12.2.0rc1
v12.2.0rc2
v12.3.0
v12.3.0rc1
v12.3.0rc2
v12.3.0rc3
v12.4.0
v12.4.0rc1
v12.5.0
v12.5.0rc1
v12.5.0rc2
v13.*
v13.0.0
v13.0.0rc1
v13.0.0rc2
v13.0.0rc3
v13.1.0
v13.1.0rc1
v13.1.0rc2
v13.2.0
v13.2.0rc1
v14.*
v14.0.0
v14.0.0rc1
v14.0.0rc2
v14.1.0
v14.1.0rc1
v14.1.0rc2
v14.1.1
v15.*
v15.0.0
v15.0.0rc1
v15.0.0rc2
v15.1.0
v15.1.0rc1
v15.1.0rc2
v15.2.0
v15.2.0rc1
v15.3.0
v15.3.0rc1
v15.4.0
v15.4.0rc1
v15.5.0
v16.*
v16.0.0
v17.*
v17.0.0
v17.0.0rc1
v17.1.0
v17.1.0rc1
v17.1.0rc2
v17.2.0
v17.2.0rc1
v17.2.0rc2
v17.3.0
v17.3.0rc1
v17.4.0
v17.4.0rc1
v18.*
v18.0.0
v18.0.0rc1
v18.0.1
v18.0.2
v18.0.3
v18.1.0
v18.1.0rc1
v18.2.0
v18.2.0rc1
v18.2.0rc2
v18.3.0
v18.3.0rc1
v18.3.0rc2
v18.4.0
v18.4.0rc1
v18.5.0
v18.5.0rc1
v19.*
v19.0.0
v19.0.0rc1
v19.1.0
v19.1.0rc1
v19.10.0
v19.10.0rc1
v19.11.0
v19.11.0rc1
v19.11.0rc2
v19.12.0
v19.12.0rc1
v19.12.0rc2
v19.13.0
v19.13.0rc1
v19.2.0
v19.2.0rc1
v19.3.0
v19.3.0rc1
v19.3.0rc2
v19.4.0
v19.4.0rc1
v19.5.0
v19.5.0rc1
v19.6.0
v19.6.0rc1
v19.7.0
v19.7.0rc1
v19.8.0
v19.8.0rc1
v19.9.0
v19.9.0rc1
v20.*
v20.0.0
v20.0.0rc1
v20.0.1
v20.1.0
v20.2.0
v20.2.0rc1
v20.2.0rc2
v20.2.0rc3
v20.3.0
v20.3.0rc1
v20.3.0rc2
v20.4.0rc1
v9.*
v9.0.0
v9.0.1
v9.1.0
v9.2.0
v9.2.0rc1
v9.2.0rc2
v9.2.0rc3
v9.2.0rc4
v9.2.0rc5
v9.2.0rc6

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-32985.json"