CVE-2022-36058

Name of the Vulnerable Software and Affected Versions elrond-go versions prior to 1.3.34

Description The issue affects elrond-go, the go implementation for the Elrond Network protocol. In affected versions, processing blocks that contain a MultiESDTNFTTransfer transaction with a missing function name could cause problems. Basic functionality like p2p messaging, storage, and API requests are unaffected.

Recommendations For versions prior to 1.3.34, update to version 1.3.34 or higher to resolve the issue. As a temporary workaround, consider avoiding the processing of blocks that contain MultiESDTNFTTransfer transactions with missing function names until a patch is applied. No other workarounds are available.