blob: 01b38babd80e8a1f956fd332a8670e179652225a [file] [log] [blame]
module: github.com/holiman/uint256
versions:
- introduced: v0.1.0
- fixed: v1.1.1
description: |
Due to improper bounds checking, certain mathmatical operations can cause a panic, due to an
out of bounds read. If this package is used to process untrusted user inputs, this may be used
as a vector for a denial of service attack.
cve: CVE-2020-26242
credit: Dima Stebaev
symbols:
- udivrem
published: 2021-07-28T12:00:00Z
links:
commit: https://github.com/holiman/uint256/commit/6785da6e3eea403260a5760029e722aa4ff1716d
pr: https://github.com/holiman/uint256/pull/80
context:
- https://github.com/ethereum/go-ethereum/security/advisories/GHSA-jm5c-rv3w-w83m