CVE-2024-34478

Name of the Vulnerable Software and Affected Versions btcd versions prior to 0.24.0

Description The issue arises from an incorrect implementation of the consensus rules outlined in BIP 68 and BIP 112, making btcd susceptible to consensus failures. Specifically, it uses the transaction version as a signed integer when it is supposed to be treated as unsigned. This can lead to a chain split and loss of funds.

Recommendations For versions prior to 0.24.0, update to version 0.24.0 or later to resolve the issue. As a temporary workaround, consider restricting transactions that may trigger the incorrect consensus rule implementation until a patch is applied.