CVE-2024-36051

Name of the Vulnerable Software and Affected Versions btcd versions prior to 0.24.2

Description The issue concerns a consensus rule discrepancy in the signature verification process. Specifically, the removeOpcodeByData function mishandles legacy signature verification rules, potentially leading to a standard transaction being considered valid by Bitcoin Core but invalid by btcd.

Recommendations To mitigate the risks, upgrade to version 0.24.2. As a temporary workaround, consider restricting the use of the removeOpcodeByData function until the patch is applied. Ensure your systems are secure by upgrading to the latest release.