Blockchain safety agency Halborn not too long ago examined the Dogecoin open-source codebase and found crucial vulnerabilities in Dogecoin Core 1.14.5 and older software program. The vulnerabilities have been additionally discovered to have an effect on over 280 different cases of blockchain software program derived from Bitcoin, together with Litecoin and Zcash, placing over $25 billion in digital belongings in danger.
Based on the safety disclosure, Halborn was employed by Dogecoin in March 2022 to conduct a safety evaluation and determine any bugs that might compromise the blockchain’s safety. In the course of the evaluation, Halborn researchers found a number of safety vulnerabilities within the open-source code for blockchain networks like Dogecoin and Litecoin, with essentially the most crucial vulnerability present in peer-to-peer (P2P) communications.
The “Rab13s” vulnerabilities found by Halborn contained in the P2P messaging protocols on affected networks might allow an attacker to craft malicious consensus messages, main particular person nodes to close down and finally exposing the community to severe risks like 51% assaults. Halborn additionally found a zero-day vulnerability unique to Dogecoin and an RPC (Distant Process Name) distant code execution vulnerability that affected particular person miners. Variations of those zero-day vulnerabilities have been discovered on associated blockchain networks resembling Litecoin and Zcash.
After privately alerting Dogecoin builders of the vulnerabilities, fixes have been carried out within the code that was made out there in model 1.14.6.
Dogecoin builders urge customers to replace their nodes to the latest model in response to this safety disclosure.
Picture Credit score: Shutterstock
