---

CVE-2020-26265 - log back

CVE-2020-26265 edited at 11 Dec 2020 20:32:48
Severity	- Unknown + High
Remote	- Unknown + Remote
Type	- Unknown + Incorrect calculation
Description	+ In go-ethereum from version 1.9.4 and before version 1.9.20, a consensus-vulnerability could cause a chain split, where vulnerable versions refuse to accept the canonical chain. The fix was included in the Paragade release version 1.9.20. No individual workaround patches have been made - all users are recommended to upgrade to a newer version.
References	+ https://github.com/ethereum/go-ethereum/security/advisories/GHSA-xw37-57qp-9mm4
Notes

CVE-2020-26265 created at 11 Dec 2020 20:29:58