* [bitcoindev] Public disclosure of 1 vulnerability affecting Bitcoin Core <24.0.1
@ 2024-09-19 5:15 'Antoine Poinsot' via Bitcoin Development Mailing List
2024-09-19 8:12 ` [bitcoindev] " Antoine Riard
0 siblings, 1 reply; 2+ messages in thread
From: 'Antoine Poinsot' via Bitcoin Development Mailing List @ 2024-09-19 5:15 UTC (permalink / raw)
To: Bitcoin Development Mailing List
Hi everyone,
Today we are releasing 1 security advisory for the Bitcoin Core project. This vulnerability affects versions of Bitcoin Core before (and not including) 24.0.1.
The details for this vulnerability are available at https://bitcoincore.org/en/2024/09/18/disclose-headers-oom.
This is part of the gradual adoption by the project of a new vulnerability disclosure policy. The policy is available at https://bitcoincore.org/en/security-advisories/#policy. We will follow up next month with vulnerabilities affecting Bitcoin Core versions before (and not including) 25.0, if any.
Antoine Poinsot
--
You received this message because you are subscribed to the Google Groups "Bitcoin Development Mailing List" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bitcoindev+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/bitcoindev/WhFGS_EOQtdGWTKD1oqSujp1GW-v_ZUJemlNePPGaGBgzpmu6ThpqLwJpUVei85OiMu_xxjEzt_SeOWY7547C72BVISLENOd_qrdCwPajgk%3D%40protonmail.com.
^ permalink raw reply [flat|nested] 2+ messages in thread
* [bitcoindev] Re: Public disclosure of 1 vulnerability affecting Bitcoin Core <24.0.1
2024-09-19 5:15 [bitcoindev] Public disclosure of 1 vulnerability affecting Bitcoin Core <24.0.1 'Antoine Poinsot' via Bitcoin Development Mailing List
@ 2024-09-19 8:12 ` Antoine Riard
0 siblings, 0 replies; 2+ messages in thread
From: Antoine Riard @ 2024-09-19 8:12 UTC (permalink / raw)
To: Bitcoin Development Mailing List
[-- Attachment #1.1: Type: text/plain, Size: 1563 bytes --]
Hi Darosior,
Thanks for writing the report.
"With that, Bitcoin Core no longer relies on having checkpoints to protect
against any known attacks."
I think it's good time to get that back on track:
https://github.com/bitcoin/bitcoin/pull/25725
As of commit ab0b5706b, it sounds checkpoints are still there.
Best,
Antoine (the other one)
ots hash: e4888dbb9983b541649f66bb23665e25fa22c47deeec5a294cf6e7624911cd07
Le jeudi 19 septembre 2024 à 08:27:23 UTC+1, Antoine Poinsot a écrit :
> Hi everyone,
>
> Today we are releasing 1 security advisory for the Bitcoin Core project.
> This vulnerability affects versions of Bitcoin Core before (and not
> including) 24.0.1.
>
> The details for this vulnerability are available at
> https://bitcoincore.org/en/2024/09/18/disclose-headers-oom.
>
> This is part of the gradual adoption by the project of a new vulnerability
> disclosure policy. The policy is available at
> https://bitcoincore.org/en/security-advisories/#policy. We will follow up
> next month with vulnerabilities affecting Bitcoin Core versions before (and
> not including) 25.0, if any.
>
> Antoine Poinsot
>
--
You received this message because you are subscribed to the Google Groups "Bitcoin Development Mailing List" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bitcoindev+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/bitcoindev/950859e2-e548-4361-8e5b-2595c0ed7a43n%40googlegroups.com.
[-- Attachment #1.2: Type: text/html, Size: 2683 bytes --]
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2024-09-19 12:37 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2024-09-19 5:15 [bitcoindev] Public disclosure of 1 vulnerability affecting Bitcoin Core <24.0.1 'Antoine Poinsot' via Bitcoin Development Mailing List
2024-09-19 8:12 ` [bitcoindev] " Antoine Riard
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox