tendermint

module

Go to main page

Versions in this module

v0

v0.36.0-dev

Oct 4, 2021

v0.35.4

Apr 18, 2022

v0.35.3

Apr 8, 2022

v0.35.2

Mar 2, 2022

v0.35.1

Jan 26, 2022

v0.35.0

Nov 4, 2021

v0.35.0-rc4

Oct 29, 2021

v0.35.0-rc3

Oct 6, 2021

v0.35.0-rc2

Sep 28, 2021

v0.35.0-rc1

Sep 8, 2021

v0.35.0-dev

Sep 25, 2020

v0.34.19

Apr 7, 2022

v0.34.18

Apr 6, 2022

v0.34.17

Apr 1, 2022

v0.34.16

Feb 25, 2022

v0.34.15

Dec 2, 2021

v0.34.14

Oct 13, 2021

v0.34.13

Sep 8, 2021

v0.34.12

Aug 17, 2021

v0.34.11

Jun 18, 2021

v0.34.10

Apr 14, 2021

v0.34.9

Apr 8, 2021

v0.34.8

Feb 25, 2021

v0.34.7

Feb 18, 2021

v0.34.6

Feb 18, 2021

v0.34.5

Feb 18, 2021

v0.34.4

Feb 11, 2021

v0.34.3

Jan 19, 2021

v0.34.2

Jan 12, 2021

v0.34.1

Jan 6, 2021

v0.34.1-rc1

Dec 23, 2020

v0.34.1-dev1

Dec 10, 2020

v0.34.0

Nov 19, 2020

v0.34.0-rc6

Nov 5, 2020

v0.34.0-rc5

Oct 13, 2020

v0.34.0-rc4

Sep 24, 2020

v0.34.0-rc3

Aug 13, 2020

v0.34.0-rc2

Jul 30, 2020

v0.34.0-rc1

Jul 30, 2020

v0.34.0-rc

Oct 13, 2020

v0.34.0-dev1

Jun 24, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.9

Nov 16, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.8

Aug 11, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.7

Aug 4, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.6

Jul 2, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.5

May 28, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.4

Apr 21, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.3

Apr 9, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.2

Mar 11, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.1

Feb 14, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.1-dev3

Mar 9, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.1-dev2

Feb 27, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.1-dev1

Feb 26, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.1-dev0

Feb 7, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.0

Jan 15, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.0-dev2

Feb 7, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.33.0-dev1

Jan 23, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.14

Nov 16, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.13

Aug 5, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.13-rc1

Jul 28, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.12

May 19, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.11

Apr 29, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.10

Apr 9, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.9

Jan 10, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.8

Nov 19, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.7

Oct 29, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.6

Oct 10, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.5

Oct 2, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.4

Sep 20, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.3

Aug 28, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.2

Aug 1, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.1

Jul 15, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.0

Jun 25, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.0-dev2

Jun 22, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.0-dev1

Jun 21, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.32.0-dev0

Jun 12, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.12

Apr 9, 2020 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.11

Oct 29, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.10

Oct 10, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.9

Oct 2, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.8

Jul 29, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.7

Jun 4, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.6

May 30, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.5

Apr 16, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.4

Apr 12, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.3

Apr 2, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.2

Apr 1, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.2-rc0

Mar 30, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.1

Mar 28, 2019 GO-2021-0090

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.0

Mar 19, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.0-rc0

Mar 14, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.0-dev0-fix0

Apr 3, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.31.0-dev0

Feb 28, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.30.4

Apr 16, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.30.3

Apr 2, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.30.2

Mar 11, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.30.1

Feb 20, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.30.0

Feb 9, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.30.0-rc0

Feb 8, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.29.2

Feb 8, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.29.2-rc2

Feb 8, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.29.2-rc1

Feb 8, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.29.2-rc0

Feb 8, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.29.1

Jan 24, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.29.1-rc0

Jan 24, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.29.0

Jan 22, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.29.0-rc0

Jan 22, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.29.0-beta1

Jan 19, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.29.0-beta0

Jan 18, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.28.1

Jan 18, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.28.0

Jan 16, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.28.0-dev0

Jan 10, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.28.0-beta2

Jan 13, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.28.0-beta1

Jan 13, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.27.4

Dec 21, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.27.3

Dec 16, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.27.2

Dec 16, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.27.1

Dec 16, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.27.0

Dec 5, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.27.0-rc1

Dec 5, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.27.0-rc0

Dec 5, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.27.0-dev1

Nov 29, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.27.0-dev0

Nov 28, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.4

Nov 27, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.3

Nov 17, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.2

Nov 15, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.2-rc0

Nov 15, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.1

Nov 12, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.1-rc3

Nov 10, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.1-rc2

Nov 9, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.1-rc1

Nov 7, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.1-rc0

Nov 6, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.0

Nov 3, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.0-rc1

Nov 1, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.0-rc0

Oct 29, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.26.0-dev0

Oct 15, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.25.1-rc0

Oct 18, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.25.0

Sep 23, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.24.0

Sep 7, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.24.0-rc0

Sep 5, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.23.1

Aug 31, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.23.1-rc0

Aug 22, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.23.0

Aug 5, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.8

Jul 27, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.8-rc0

Jul 27, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.8-autodraft

Jul 27, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.7

Jul 26, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.6

Jul 25, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.6-rc0

Jul 25, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.5

Jul 24, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.4

Jul 14, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.4-rc0

Jul 14, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.3

Jul 10, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.2

Jul 10, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.2-rc0

Jul 10, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.1

Jul 10, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.0

Jul 2, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.0-rc2

Jul 2, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.0-rc1

Jul 1, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.0-rc0

Jul 1, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.22.0-autodraft

Jul 4, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.21.1-rc1

Jun 27, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.21.1-rc0

Jun 22, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.21.0

Jun 21, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.21.0-rc0

Jun 15, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.20.1-rc0

Jun 19, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.20.0

Jun 7, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.20.0-rc3

Jun 3, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.20.0-rc2

Jun 2, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.20.0-rc1

Jun 1, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.20.0-rc0

May 31, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.9

Jun 6, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.9-rc0

Jun 6, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.8

Jun 4, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.7

May 31, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.7-rc0

May 31, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.6

May 29, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.6-rc2

May 29, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.6-rc1

May 25, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.6-rc0

May 24, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.5

May 21, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.5-rc1

May 20, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.5-rc0

May 20, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.4-rc0

May 17, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.3

May 15, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.3-rc0

May 14, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.2

Apr 30, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.2-rc0

Apr 30, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.1

Apr 28, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.0

Apr 17, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.0-rc4

Apr 9, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.19.0-rc3

Apr 9, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.18.0

Apr 6, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.18.0-rc1

Apr 5, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.18.0-autodraft

Apr 6, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.17.1

Mar 27, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.17.0

Mar 27, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.16.0

Feb 21, 2018 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.15.0

Dec 29, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.14.0

Dec 12, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.13.0

Dec 6, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.12.1

Nov 28, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.12.0

Oct 28, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.11.1

Oct 10, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.11.0

Sep 22, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.10.5

Nov 1, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.10.4

Sep 5, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.10.3

Aug 10, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.10.2

Jul 10, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.10.1

Jun 28, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.10.0

Jun 3, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.10.0-rc2

May 29, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.10.0-rc1

May 18, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.9.2

Apr 26, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.9.1

Apr 21, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.9.0

Mar 6, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.8.0

Jan 13, 2017 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.7.4

Dec 14, 2016 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.7.3

Oct 21, 2016 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.7.2

Sep 11, 2016 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.7.1

Sep 11, 2016 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.7.0

Aug 7, 2016 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.0.1

Mar 19, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.

v0.0.0

Mar 19, 2019 GO-2020-0037GO-2021-0090

GO-2020-0037: Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, which may be used as a denial of service vector.

GO-2021-0090: Proposed commits may contain signatures for blocks not contained within the commit. Instead of skipping these signatures, they cause failure during verification. A malicious proposer can use this to force consensus failures.