CVE-2016-10725

Name of the Vulnerable Software and Affected Versions Bitcoin Core versions prior to 0.13.0 Bitcoin Knots versions prior to 0.13.0.knots20160814

Description The issue arises from the incorrect order of operations in the remote network alert system, which is deprecated since Q1 2016. This allows a non-final alert to block the special "final alert" that is intended to override all other alerts. The problem affects not only Bitcoin Core but also other uses of the codebase, including Bitcoin Knots and many altcoins.

Recommendations For Bitcoin Core versions prior to 0.13.0, update to version 0.13.0 or later. For Bitcoin Knots versions prior to 0.13.0.knots20160814, update to version 0.13.0.knots20160814 or later.