Name of the Vulnerable Software and Affected Versions: Lodestar (affected versions not specified)

Description: The issue affects the Lodestar implementation of the ssz snappy encoding protocol, where the checksum in snappy framing uncompressed chunks is not verified. This can lead to unintended permanent chain splits affecting greater than or equal to 25% of the network, requiring a hard fork. The problem arises from the decoder not checking the checksum of uncompressed chunks, unlike the golang implementation.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.