AVG-1295 log
| Package | consul |
| Status | Not affected |
| Severity | Medium |
| Type | denial of service |
| Affected | 1.7.0-1 |
| Fixed | 1.8.4-1 |
| Current | 1.19.2-1 [extra] |
| Ticket | None |
| Created | Mon Nov 23 17:43:22 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-25201 | Medium | Yes | Denial of service | HashiCorp Consul Enterprise version 1.7.0 up to 1.8.4 allowed operators with service:write ACL permissions to write a malicious config entry that causes... |
| Notes |
|---|
Arch Linux packages the open source version of consul, not Consul Enterprise. |