High severityNVD Advisory· Published Nov 18, 2021· Updated Aug 4, 2024
CVE-2021-43667
CVE-2021-43667
Description
A vulnerability has been detected in HyperLedger Fabric v1.4.0, v2.0.0, v2.1.0. This bug can be leveraged by constructing a message whose payload is nil and sending this message with the method 'forwardToLeader'. This bug has been admitted and fixed by the developers of Fabric. If leveraged, any leader node will crash.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/hyperledger/fabricGo | >= 2.3.0, < 2.3.3 | 2.3.3 |
github.com/hyperledger/fabricGo | < 2.2.4 | 2.2.4 |
Affected products
2- HyperLedger/Fabricdescription
Patches
Vulnerability mechanics
References
6- github.com/advisories/GHSA-vjj6-5m9f-wqjwghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-43667ghsaADVISORY
- github.com/hyperledger/fabricghsaPACKAGE
- github.com/hyperledger/fabric/pull/2838/commits/ebf94b10ecc86d3a91619b98befc52277b1e3474ghsaWEB
- github.com/hyperledger/fabric/pull/2844ghsax_refsource_MISCWEB
- jira.hyperledger.org/browse/FAB-18529ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.