GHSA-qjcv-rx3v-7mvj

Source

https://github.com/advisories/GHSA-qjcv-rx3v-7mvj

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/05/GHSA-qjcv-rx3v-7mvj/GHSA-qjcv-rx3v-7mvj.json

JSON Data

https://api.test.osv.dev/v1/vulns/GHSA-qjcv-rx3v-7mvj

Aliases

GO-2024-2874

Published

2024-05-20T21:51:33Z

Modified

2024-05-23T16:07:38Z

Summary

github.com/cosmos/ibc-go affected by IBC protocol "Huckleberry" vulnerability

Details

The ibc-go module is affected by the Inter-Blockchain Communication (IBC) protocol "Huckleberry" vulnerability.

Database specific

{
    "cwe_ids": [],
    "severity": "MODERATE",
    "github_reviewed_at": "2024-05-20T21:51:33Z",
    "nvd_published_at": null,
    "github_reviewed": true
}

References

Affected packages

Go / github.com/cosmos/ibc-go/v7

Package

Name: github.com/cosmos/ibc-go/v7; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go/v7

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

7.0.1

Go / github.com/cosmos/ibc-go/v6

Package

Name: github.com/cosmos/ibc-go/v6; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go/v6

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.1.1

Go / github.com/cosmos/ibc-go/v5

Package

Name: github.com/cosmos/ibc-go/v5; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go/v5

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

5.2.1

Go / github.com/cosmos/ibc-go/v5

Package

Name: github.com/cosmos/ibc-go/v5; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go/v5

Affected ranges

Type: SEMVER
Events: Introduced

5.3.0

Fixed

5.3.1

Go / github.com/cosmos/ibc-go/v4

Package

Name: github.com/cosmos/ibc-go/v4; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go/v4

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.1.3

Go / github.com/cosmos/ibc-go/v4

Package

Name: github.com/cosmos/ibc-go/v4; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go/v4

Affected ranges

Type: SEMVER
Events: Introduced

4.2.0

Fixed

4.2.2

Go / github.com/cosmos/ibc-go/v4

Package

Name: github.com/cosmos/ibc-go/v4; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go/v4

Affected ranges

Type: SEMVER
Events: Introduced

4.3.0

Fixed

4.3.1

Go / github.com/cosmos/ibc-go/v4

Package

Name: github.com/cosmos/ibc-go/v4; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go/v4

Affected ranges

Type: SEMVER
Events: Introduced

4.4.0

Fixed

4.4.1

Go / github.com/cosmos/ibc-go/v3

Package

Name: github.com/cosmos/ibc-go/v3; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go/v3

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

3.4.0

Go / github.com/cosmos/ibc-go/v2

Package

Name: github.com/cosmos/ibc-go/v2; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go/v2

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

2.5.0

Go / github.com/cosmos/ibc-go

Package

Name: github.com/cosmos/ibc-go; View open source insights on deps.dev
Purl: pkg:golang/github.com/cosmos/ibc-go

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

1.5.0