GHSA-5m8f-chrv-7rw5

Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/11/GHSA-5m8f-chrv-7rw5/GHSA-5m8f-chrv-7rw5.json

Aliases

CVE-2021-43668

Published

2021-11-23T18:04:47Z

Modified

2023-09-18T19:45:26Z

Details

Go-Ethereum 1.10.9 nodes crash (denial of service) after receiving a serial of messages and cannot be recovered. They will crash with "runtime error: invalid memory address or nil pointer dereference" and arise a SEGV signal.

References

https://nvd.nist.gov/vuln/detail/CVE-2021-43668
https://github.com/ethereum/go-ethereum/issues/23866
https://github.com/syndtr/goleveldb/issues/373
https://github.com/ethereum/go-ethereum

Affected packages

Go / github.com/ethereum/go-ethereum

Source Details

Package Name: github.com/ethereum/go-ethereum

Affected ranges

Type: SEMVER
Events: Introduced

0The exact introduced commit is unknown

Last affected

1.10.9

Ecosystem specific

{
    "affected_functions": [
        ""
    ]
}