Incorrect Synchronization
CVE-2024-58133
Summary
In chainmaker-go (aka ChainMaker) before 2.4.0, when making frequent updates to a node's configuration file and restarting this node, concurrent writes by logger.go to a map are mishandled. Creating other logs simultaneously can lead to a read-write conflict and panic.
- HIGH
- NETWORK
- NONE
- CHANGED
- NONE
- NONE
- NONE
- LOW
CWE-821 - Incorrect Synchronization
The software utilizes a shared resource in a concurrent manner, but it does not correctly synchronize access to the resource.
References
Advisory Timeline
- Published
