CVE-2021-42766

Name of the Vulnerable Software and Affected Versions Ethereum consensus protocol through 2021-10-19

Description The Proof-of-Stake (PoS) Ethereum consensus protocol allows an adversary to cause a denial of service, specifically long-range consensus chain reorganizations. This can occur even when the adversary has little stake and cannot influence network message propagation, potentially causing a protocol stall or increasing the profits of individual validators.

Recommendations For Ethereum consensus protocol versions through 2021-10-19, consider implementing measures to prevent long-range consensus chain reorganizations, such as enhancing network message propagation security or adjusting validator profit mechanisms, until a more comprehensive fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.