CVE-2021-3121
Improper Validation of Array Index in go/github.com/hashicorp/consul/acl
Identifiers
CVE-2021-3121
Package Slug
go/github.com/hashicorp/consul/acl
Vulnerability
Improper Validation of Array Index
Description
An issue was discovered in GoGo Protobuf plugin/unmarshal/unmarshal.go lacks certain index validation, aka the skippy peanut butter issue.
Affected Versions
All versions before 1.8.15, all versions starting from 1.9.0 before 1.9.9, all versions starting from 1.10.0 before 1.10.2
Solution
Upgrade to versions 1.8.15, 1.9.9, 1.10.2 or above.
Last Modified
2021-09-17
| source |