Vulnerability Report: GO-2022-0256
- CVE-2021-41173, GHSA-59hh-656j-3p7v
- Affects: github.com/ethereum/go-ethereum
- Published: Jul 15, 2022
- Modified: May 20, 2024
A maliciously crafted snap/1 protocol message can cause a panic.
Affected Packages
-
PathGo VersionsSymbols
-
before v1.10.9
1 unexported affected symbols
- handleMessage
-
before v1.10.9
Aliases
References
- https://github.com/ethereum/go-ethereum/pull/23657/commits/f1fd963a5a965e643e52fcf805a2a02a323c32b8
- https://vuln.go.dev/ID/GO-2022-0256.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.