Lucene search
GoogleOSV:CVE-2022-29177HistoryMay 20, 2022 - 5:15 p.m.
CVE-2022-29177
2022-05-2017:15:07
Google
osv.dev
3
go ethereum
vulnerability
high verbosity logging
p2p messages
attacker node
patch
workaround
Go Ethereum is the official Golang implementation of the Ethereum protocol. Prior to version 1.10.17, a vulnerable node, if configured to use high verbosity logging, can be made to crash when handling specially crafted p2p messages sent from an attacker node. Version 1.10.17 contains a patch that addresses the problem. As a workaround, setting loglevel to default level (INFO) makes the node not vulnerable to this attack.
Related
osv
osv
DoS via malicious p2p message in Go Ethereum
2022-05-24 20:54:55
cve
cve
CVE-2022-29177
2022-05-20 17:15:07
nvd
nvd
CVE-2022-29177
2022-05-20 17:15:07
github
github
DoS via malicious p2p message in Go Ethereum
2022-05-24 20:54:55
cvelist
cvelist
CVE-2022-29177 DoS via malicious p2p message in Go-Ethereum
2022-05-20 16:20:10
veracode
veracode
Denial Of Service (DoS)
2022-05-23 09:09:12
prion
prion
Design/Logic Flaw
2022-05-20 17:15:00