AVG-1295 log
Package | consul |
Status | Not affected |
Severity | Medium |
Type | denial of service |
Affected | 1.7.0-1 |
Fixed | 1.8.4-1 |
Current | 1.20.1-1 [extra] |
Ticket | None |
Created | Mon Nov 23 17:43:22 2020 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2020-25201 | Medium | Yes | Denial of service | HashiCorp Consul Enterprise version 1.7.0 up to 1.8.4 allowed operators with service:write ACL permissions to write a malicious config entry that causes... |
Notes |
---|
Arch Linux packages the open source version of consul, not Consul Enterprise. |