eth-abi@1.2.0 vulnerabilities
eth_abi: Python utilities for working with Ethereum ABI definitions, especially encoding and decoding
-
latest version
5.1.0
-
latest non vulnerable version
-
first published
6 years ago
-
latest version published
a month ago
-
licenses detected
- [0,)
Direct Vulnerabilities
Known vulnerabilities in the eth-abi package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
eth-abi is an eth_abi: Python utilities for working with Ethereum ABI definitions, especially encoding and decoding Affected versions of this package are vulnerable to Resource Exhaustion due to a recursive pointer issue. An attacker can cause a denial of service by sending a specially crafted payload that triggers an How to fix Resource Exhaustion? Upgrade |
[,5.0.1)
|
eth-abi is an eth_abi: Python utilities for working with Ethereum ABI definitions, especially encoding and decoding Affected versions of this package are vulnerable to Denial of Service (DoS) when parsing zero-sized-types (ZST). Although allowed by the ABI specification, excessive memory can be allocated when processing malicious ZST tuples. How to fix Denial of Service (DoS)? Upgrade |
[,4.2.0)
|