PT-2022-28210 — Ckb

PT-2022-28210 · Ckb · Ckb

Published

2022-11-02

Updated

2022-11-02

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions ckb versions prior to 0.101.1

Description The issue arises from the HeaderChecker#check valid function skipping main chain checking, which can lead to network forking if a transaction uses a forked block header not present in the local node's storage.

Recommendations For versions prior to 0.101.1, update to version 0.101.1 or later to resolve the issue.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

GHSA-7FW6-6MFJ-G3Q2

Affected Products

Ckb

Related Identifiers

Affected Products

References · 4