CVE-2021-43668

2021-11-1816:15:09

Google

osv.dev

6.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.8%

JSON

Go-Ethereum 1.10.9 nodes crash (denial of service) after receiving a serial of messages and cannot be recovered. They will crash with “runtime error: invalid memory address or nil pointer dereference” and arise a SEGV signal.

CPENameOperatorVersion
go-ethereumeq1.6.4
go-ethereumeq1.10.5
go-ethereumeq1.9.6
go-ethereumeq0.7.11
go-ethereumeq1.9.11
go-ethereumeq0.5.13
go-ethereumeq1.5.4
go-ethereumeq2
go-ethereumeq1.9.23
go-ethereumeq1.8.20

Name	Operator	Version
go-ethereum	eq	1.6.4
go-ethereum	eq	1.10.5
go-ethereum	eq	1.9.6
go-ethereum	eq	0.7.11
go-ethereum	eq	1.9.11
go-ethereum	eq	0.5.13
go-ethereum	eq	1.5.4
go-ethereum	eq	2
go-ethereum	eq	1.9.23
go-ethereum	eq	1.8.20