blob: 40511e7709ee4bcc96942e44ff709ac7206f2e06 [file] [log] [blame]
module: github.com/ethereum/go-ethereum
package: github.com/ethereum/go-ethereum/les
versions:
- fixed: v1.8.11
description: |
Due to improper argument validation in RPC messages, a maliciously crafted
message can cause a panic, leading to denial of service.
published: 2021-04-14T12:00:00Z
cve: CVE-2018-12018
symbols:
- protocolManager.handleMsg
links:
pr: https://github.com/ethereum/go-ethereum/pull/16891
commit: https://github.com/ethereum/go-ethereum/commit/a5237a27eaf81946a3edb4fafe13ed6359d119e4
context:
- https://peckshield.com/2018/06/27/EPoD/