Michael Davidson

Name of the Vulnerable Software and Affected Versions: Zcashd versions prior to 2.1.1-1 Description: The issue allows attackers to trigger consensus failure and double spending. A valid chain could be incorrectly rejected because timestamp requirements on block headers were not properly enforced. Recommendations: For versions prior to 2.1.1-1, update to version 2.1.1-1 or later to resolve the issue. As a temporary workaround, consider implementing additional validation checks on block headers to enforce timestamp requirements until a patch is applied. Restrict access to the consensus mechanism to minimize the risk of exploitation.