Hyperledger Fabric 2.3 allows attackers to cause a denial of service (orderer crash) by repeatedly sending a crafted channel tx with the same Channel name. NOTE: the official Fabric with Raft prevents exploitation via a locking mechanism and a check for names that already exist.
CPE | Name | Operator | Version |
---|---|---|---|
hyperledger | eq | 0.0.2 | |
hyperledger | eq | 0.0.3 | |
hyperledger | eq | 0.0.5 | |
hyperledger | eq | 0.0.6 | |
hyperledger | eq | 0.0.7 | |
hyperledger | eq | 0.0.8 | |
hyperledger | eq | 0.0.9 | |
hyperledger | eq | 0.1.0 | |
hyperledger | eq | 0.1.1 | |
hyperledger | eq | 0.1.2 |