schmidty on Nostr: Gloria Zhao, Niklas Gögge, and b10c discuss 3 recently announced Bitcoin Core ...
Gloria Zhao, Niklas Gögge, and b10c discuss 3 recently announced Bitcoin Core vulnerabilities:
- DoS vulnerability in headers sync
- DoS vulnerability in inventory send queue
- Crash vulnerability in compact block relay
High severity:
An attacker could provide a peer with a chain of low-difficulty headers, which could be used to remotely crash the node.
Medium severity:
Increased network activity affected block and transaction propagation and dropped connections.
High severity:
An attacker could remotely crash Bitcoin Core nodes by triggering an assertion in the blocktxn message handling logic.
https://brink.dev/podcast/6-bitcoin-core-pre-25-disclosures/
- DoS vulnerability in headers sync
- DoS vulnerability in inventory send queue
- Crash vulnerability in compact block relay
High severity:
An attacker could provide a peer with a chain of low-difficulty headers, which could be used to remotely crash the node.
Medium severity:
Increased network activity affected block and transaction propagation and dropped connections.
High severity:
An attacker could remotely crash Bitcoin Core nodes by triggering an assertion in the blocktxn message handling logic.
https://brink.dev/podcast/6-bitcoin-core-pre-25-disclosures/