Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
go-ethereum denial of service via malicious p2p message
Vulnerability Description
go-ethereum (geth) is a golang execution layer implementation of the Ethereum protocol. Prior to 1.13.15, a vulnerable node can be made to consume very large amounts of memory when handling specially crafted p2p messages sent from an attacker node. The fix has been included in geth version `1.13.15` and onwards.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
Ethereum Go-ethereum 安全漏洞
Vulnerability Description
Ethereum Go-ethereum是以太坊(Ethereum)社区的一个用Go语言实现以太坊协议的代码库。 Ethereum Go-ethereum 1.13.15之前版本存在安全漏洞,该漏洞源于易受攻击的节点在处理从攻击者节点发送的特制 p2p 消息时可能会消耗大量内存。
CVSS Information
N/A
Vulnerability Type
N/A