Authz Module Non-Determinism
Package
No package listed
Affected versions
0.44.x
Patched versions
None
Description
Credits
-
robert-zaremba Analyst
-
iramiller Analyst
robert-zaremba
Analyst
iramiller
Analyst
Impact
Consensus failure for 0.43.x and 0.44.{0,1} users.
Funds and balances are safe.
Patches
0.44.2
Workarounds
Manually patch the code.
Full details posted in https://forum.cosmos.network/t/cosmos-sdk-vulnerability-retrospective-security-advisory-jackfruit-october-12-2021/5349.