Go Ethereum Security Vulnerabilities and Issues — Go Ethereum CVE List

Lucene search

EthereumGo Ethereum

4 matches found

CVE•added 2018/07/05 2:29 a.m.•43 views

CVE-2018-12018

The GetBlockHeadersMsg handler in the LES protocol implementation in Go Ethereum (aka geth) before 1.8.11 may lead to an access violation because of an integer signedness error for the array index, which allows attackers to launch a Denial of Service attack by sending a packet with a -1 query.Skip ...

7.5CVSS7.4AI score0.1185EPSS

CVE•added 2018/09/08 3:29 p.m.•42 views

CVE-2018-16733

In Go Ethereum (aka geth) before 1.8.14, TraceChain in eth/api_tracer.go does not verify that the end block is after the start block.

7.5CVSS7.5AI score0.00237EPSS

CVE•added 2018/11/12 2:29 a.m.•42 views

CVE-2018-19184

cmd/evm/runner.go in Go Ethereum (aka geth) 1.8.17 allows attackers to cause a denial of service (SEGV) via crafted bytecode.

7.5CVSS7.2AI score0.00421EPSS

CVE•added 2018/12/24 3:29 a.m.•32 views

CVE-2018-20421

Go Ethereum (aka geth) 1.8.19 allows attackers to cause a denial of service (memory consumption) by rewriting the length of a dynamic array in memory, and then writing data to a single memory location with a large index number, as demonstrated by use of "assembly { mstore }" followed by a "c[0xC800...

7.5CVSS7.3AI score0.00334EPSS