PT-2021-23355 · Blockstream · C-Lightning
Eugene Siegel
·
Published
2021-10-04
·
Updated
2022-07-12
·
CVE-2021-41592
CVSS v3.1
9.4
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Blockstream c-lightning versions through 0.10.1
Description
The issue allows for loss of funds due to dust HTLC exposure.
Recommendations
For versions through 0.10.1, update to a version that fixes the dust HTLC exposure issue to prevent loss of funds.
Fix
Allocation of Resources Without Limits
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
C-Lightning