2 matches found
CVE-2021-43669
Affected product/versions: Hyperledger Fabric v1.4.0, v2.0.0, v2.0.1, v2.3.0. Vulnerability detail: crafted message with an invalid header to the Order interface can cause disruption of multiple orderers. Root cause: header validation issue at the Order interface; exact code details not provided ...
CVE-2021-43667
CVE-2021-43667 affects Hyperledger Fabric versions 1.4.0, 2.0.0, and 2.1.0. The vulnerability arises when a message with a nil payload is sent via the forwardToLeader method, which can cause a leader node to crash. The issue has been admitted and fixed by the Fabric developers. The provided sourc...