Public disclosure of 1 vulnerability affecting Bitcoin Core <24.0.1

70 views
Skip to first unread message

Antoine Poinsot

unread,
Sep 19, 2024, 3:27:23 AMSep 19
to Bitcoin Development Mailing List
Hi everyone,

Today we are releasing 1 security advisory for the Bitcoin Core project. This vulnerability affects versions of Bitcoin Core before (and not including) 24.0.1.

The details for this vulnerability are available at https://bitcoincore.org/en/2024/09/18/disclose-headers-oom.

This is part of the gradual adoption by the project of a new vulnerability disclosure policy. The policy is available at https://bitcoincore.org/en/security-advisories/#policy. We will follow up next month with vulnerabilities affecting Bitcoin Core versions before (and not including) 25.0, if any.

Antoine Poinsot

Antoine Riard

unread,
Sep 19, 2024, 8:37:16 AMSep 19
to Bitcoin Development Mailing List
Hi Darosior,

Thanks for writing the report.

"With that, Bitcoin Core no longer relies on having checkpoints to protect against any known attacks."

I think it's good time to get that back on track:
https://github.com/bitcoin/bitcoin/pull/25725

As of commit ab0b5706b, it sounds checkpoints are still there.

Best,
Antoine (the other one)
ots hash: e4888dbb9983b541649f66bb23665e25fa22c47deeec5a294cf6e7624911cd07
Reply all
Reply to author
Forward
0 new messages