UBUNTU-CVE-2020-13250
- Source
- https://ubuntu.com/security/CVE-2020-13250
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2020/UBUNTU-CVE-2020-13250.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2020-13250
- Related
- Published
- 2020-06-11T20:15:00Z
- Modified
- 2025-01-13T10:22:13Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
HashiCorp Consul and Consul Enterprise include an HTTP API (introduced in 1.2.0) and DNS (introduced in 1.4.3) caching feature that was vulnerable to denial of service. Fixed in 1.6.6 and 1.7.4.
- References
Affected packages
Ubuntu:20.04:LTS / consul
Package
- Name
- consul
- Purl
- pkg:deb/ubuntu/consul@1.5.2+dfsg2-14?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:22.04:LTS / consul
Package
- Name
- consul
- Purl
- pkg:deb/ubuntu/consul@1.7.4+dfsg1-1?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.7.4+dfsg1-1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_version": "1.7.4+dfsg1-1",
"binary_name": "consul"
},
{
"binary_version": "1.7.4+dfsg1-1",
"binary_name": "consul-dbgsym"
},
{
"binary_version": "1.7.4+dfsg1-1",
"binary_name": "golang-github-hashicorp-consul-dev"
}
]
}