forks/go-ethereum
1
0
Fork 1
mirror of https://github.com/ethereum/go-ethereum.git synced 2026-05-24 08:49:29 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
go-ethereum/p2p/nat
History
ozpool ac53e42b9c p2p/nat: bump pion/stun to v3 to pull in fixed pion/dtls (#34621) 
CVE-2026-26014 affects github.com/pion/dtls/v2, currently pulled in
transitively via github.com/pion/stun/v2 v2.0.0. The fix lives in
github.com/pion/dtls/v3, which github.com/pion/stun/v3 already uses.

The v3 API surface used by p2p/nat/stun.go (Dial, Build, TransactionID,
BindingRequest, Event, XORMappedAddress, DefaultPort) is identical to
v2 in shape and behaviour, so the source change is just an import
rename plus matching alias rename (stunV2 -> stunV3). go mod tidy
drops every dtls/v2 and stun/v2 entry from go.sum and pulls in
dtls/v3 v3.0.7 / stun/v3 v3.0.1 / transport/v3 v3.0.8 as the new
indirect set.

Verified:
- go build ./p2p/nat/ clean.
- go test ./p2p/nat/ clean (26s).
- grep 'pion/dtls/v2\\|pion/stun/v2' go.sum returns 0 matches.

Closes #34621
2026-05-15 16:50:07 +05:30
..
nat.go all: use fmt.Appendf instead of fmt.Sprintf where possible (#31301) 2025-03-25 14:53:02 +01:00
nat_test.go p2p/nat: add stun protocol (#31064) 2025-01-24 16:16:02 +01:00
natpmp.go p2p/nat: remove forceful port mapping in upnp (#30265) 2025-04-04 10:56:55 +02:00
natupnp.go p2p/nat: fix err shadowing in UPnP addAnyPortMapping (#33355) 2025-12-08 15:02:24 +01:00
natupnp_test.go all: replace strings.Replace with string.ReplaceAll (#24835) 2022-05-09 13:13:23 +03:00
stun-list-update.sh p2p/nat: add stun protocol (#31064) 2025-01-24 16:16:02 +01:00
stun-list.txt p2p/nat: add stun protocol (#31064) 2025-01-24 16:16:02 +01:00
stun.go p2p/nat: bump pion/stun to v3 to pull in fixed pion/dtls (#34621) 2026-05-15 16:50:07 +05:30
stun_test.go p2p/nat: remove test with default servers (#31225) 2025-02-21 10:42:54 +08:00