GHSA-qjcv-rx3v-7mvj

Suggest an improvement
Source
https://github.com/advisories/GHSA-qjcv-rx3v-7mvj
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/05/GHSA-qjcv-rx3v-7mvj/GHSA-qjcv-rx3v-7mvj.json
JSON Data
https://api.test.osv.dev/v1/vulns/GHSA-qjcv-rx3v-7mvj
Aliases
Published
2024-05-20T21:51:33Z
Modified
2024-05-23T16:07:38Z
Summary
github.com/cosmos/ibc-go affected by IBC protocol "Huckleberry" vulnerability
Details

The ibc-go module is affected by the Inter-Blockchain Communication (IBC) protocol "Huckleberry" vulnerability.

Database specific
{
    "severity": "MODERATE",
    "cwe_ids": [],
    "github_reviewed_at": "2024-05-20T21:51:33Z",
    "nvd_published_at": null,
    "github_reviewed": true
}
References

Affected packages

Go / github.com/cosmos/ibc-go/v7

Package

Name
github.com/cosmos/ibc-go/v7
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go/v7

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.0.1

Go / github.com/cosmos/ibc-go/v6

Package

Name
github.com/cosmos/ibc-go/v6
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go/v6

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.1.1

Go / github.com/cosmos/ibc-go/v5

Package

Name
github.com/cosmos/ibc-go/v5
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go/v5

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.2.1

Go / github.com/cosmos/ibc-go/v5

Package

Name
github.com/cosmos/ibc-go/v5
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go/v5

Affected ranges

Type
SEMVER
Events
Introduced
5.3.0
Fixed
5.3.1

Go / github.com/cosmos/ibc-go/v4

Package

Name
github.com/cosmos/ibc-go/v4
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go/v4

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.1.3

Go / github.com/cosmos/ibc-go/v4

Package

Name
github.com/cosmos/ibc-go/v4
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go/v4

Affected ranges

Type
SEMVER
Events
Introduced
4.2.0
Fixed
4.2.2

Go / github.com/cosmos/ibc-go/v4

Package

Name
github.com/cosmos/ibc-go/v4
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go/v4

Affected ranges

Type
SEMVER
Events
Introduced
4.3.0
Fixed
4.3.1

Go / github.com/cosmos/ibc-go/v4

Package

Name
github.com/cosmos/ibc-go/v4
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go/v4

Affected ranges

Type
SEMVER
Events
Introduced
4.4.0
Fixed
4.4.1

Go / github.com/cosmos/ibc-go/v3

Package

Name
github.com/cosmos/ibc-go/v3
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go/v3

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
3.4.0

Go / github.com/cosmos/ibc-go/v2

Package

Name
github.com/cosmos/ibc-go/v2
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go/v2

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
2.5.0

Go / github.com/cosmos/ibc-go

Package

Name
github.com/cosmos/ibc-go
View open source insights on deps.dev
Purl
pkg:golang/github.com/cosmos/ibc-go

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Last affected
1.5.0