CVE-2020-12821
N/A
N/A
Summary
Gossipsub 1.0 does not properly resist invalid message spam, such as an eclipse attack or a sybil attack.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/libp2p/specs/tree/master/pubsub/gossipsub
- https://github.com/libp2p/specs/blob/master/pubsub/gossipsub/gossipsub-v1.1.md
- https://bitcoin.stackexchange.com/questions/61151/eclipse-attack-vs-sybil-attack
- https://github.com/ipfs/blog/pull/450
- https://gateway.ipfs.io/ipfs/QmPWuNBs8h6a8KamRvGqhTq5UDYJRQsEEy37zDKjujQQQm/Gossipsub%20Evaluation%20Report.pdf
References
- https://github.com/libp2p/specs/tree/master/pubsub/gossipsub
- https://github.com/libp2p/specs/blob/master/pubsub/gossipsub/gossipsub-v1.1.md
- https://bitcoin.stackexchange.com/questions/61151/eclipse-attack-vs-sybil-attack
- https://github.com/ipfs/blog/pull/450
- https://gateway.ipfs.io/ipfs/QmPWuNBs8h6a8KamRvGqhTq5UDYJRQsEEy37zDKjujQQQm/Gossipsub%20Evaluation%20Report.pdf
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.