Posted on

Tendermint up to 0.31.11/0.32.9/0.33.2 P2P Connection Connection Request uncontrolled memory allocation

A vulnerability, which was classified as problematic, was found in Tendermint up to 0.31.11/0.32.9/0.33.2. Affected is an unknown function of the component P2P Connection Handler. Upgrading to version 0.31.12, 0.32.10 or 0.33.3 eliminates this vulnerability.