Skip to main content

'Severe' Bug Found in Core Library for Ethereum and ETC

 

A mining pool recently found a severe vulnerability in code used for both Ethereum and Ethereum Classic. But it's now been fixed.





In brief

  • A mining pool discovered a vulnerability affecting the Ethereum and Ethereum Classic blockchains.
  • Some network nodes were not able to update their data due to the bug, the mining pool said.
  • A solution has been implemented on both blockchains.

Mining pool 2Miners recently discovered a bug affecting Ethereum’s “epoch switch,” a term for when the network moves from a set of filled blocks (called an epoch) to a new, unfilled set, as per a blog post last week. The bug also affects Ethereum Classic, a hard fork of Ethereum.

Blockchains, despite what popular culture may compare to mere spreadsheets, are highly-complex mathematical structures that depend on several moving parts in order to operate seamlessly. This means any change, upgrade, or new development can spring up unforeseen consequences, which are usually accounted for, but can still miss the boat sometimes.

An upcoming fork on Ethereum Classic—the ECIP-1099 proposal, which cuts down on the network’s hashing power—reportedly caused the problem this time. 2Miners found that when the blockchain switched to its new epoch, mining pools were not validating the data (despite it being legitimate).

2 Miners later found the bug to be in the core library used for maintaining both Ethereum and Ethereum Classic.

"With thorough investigation, we have discovered that the math in one of the core libraries used in many Ethash-based cryptocurrencies is a little off,” the firm said. It explained that the code was using calculation values of 32 bits instead of the required 64 bits (the latter can store more numerical value).

The issue could have caused some nodes—individual servers that maintain the network—to accept newer data to the blockchain but some other nodes to not, creating a potentially drastic situation that could lead to a chain split (similar to Ethereum's one the other day).

Developers estimated that the problem would occur on January 1 for the Ethereum blockchain, but was already an issue for Ethereum Classic.

2Miners was able to identify and patch the issue for both blockchains. It worked with Ethereum Classic developers, who swiftly installed a fix on November 6. "Thanks for this. We are running a few sync tests and general otherwise sanity checks, but in general this looks good and unless we find something unexpected we'll have it merged very soon," a developer said, before the fix went live.

On Ethereum's side, the mining company released two pull requests to mitigate the issue, one that Ethereum developers installed on November 11. An Ethereum blog post published the next day encouraged users to download a patch for both this issue alongside a further, unrelated critical vulnerability.

Source: decrypt.co

Ethereum's had quite the week.

Comments

Post a Comment

Contact us

Name

Email *

Message *

Popular posts from this blog

Cryptocurrencies Adding to the Safety and Security in the UK Gambling Industry

These are exciting times for the UK gambling industry. The impact of internet technology is now being felt with online gambling now controlling the industry.  The adoption of cutting-edge technology is reasonable for the boom in the industry. From live casinos, mobile apps to artificial intelligence, incredible trends continue shaping the gambling industry. However, it is the rise of cryptocurrency casinos that seeks to redefine UK gambling.  Many operators now include crypto coins such as bitcoin, Ethereum and Litecoin as part of their banking methods. Others offer exclusive bitcoin payments and promotions based on digital tokens. This revolutionary trend has a huge impact due to enhanced safety and security on these platforms. Players looking for peace of mind when playing online now opt to use cryptocurrencies. This post looks at how cryptos guarantee the safety and security of players at online casinos. How Cryptocurrency Gambling Works There’s a lot of talk about cryptocurrency,
Post a Comment
Read more

Will Solana (SOL) Be the Shining Star of the Bull Market?

About 250,000 to 700,000 SOL have been sold daily by FTX for the last three weeks. SOL’s price jumped above $60, as GSOL’s premium also increased. While the price may retrace, it may not take long before SOL hits $70. Despite being a notable casualty of the FTX contagion in 2022, Solana (SOL) has defied all odds in 2023, as the price continues to outshine its peers. In the last 30 days, the value of SOL has increased by 180%, rising as high as $62 on November 11. However, the rising price of SOL is not the only interesting thing the token has shown by the token. For a token that was once described as dead, it has shown tremendous strength. Coin Edition came to this conclusion because of a post by trader Bluntz Capital. The Big Players Are Here According to Bluntz, FTX, after getting the go-ahead to liquidate its assets, has been selling around 250,000 to 700,000 daily for the last three weeks. Regardless of the sales, SOL has failed to nosedive. Rather, the price has chosen the upside
Post a Comment
Read more

Terra Classic Community Passes Major Constructive Proposal, LUNC And USTC To $1?

  The Terra Luna Classic community has passed another key proposal as they prepare for a revival of Terra Luna Classic (LUNC) and repeg USTC stablecoin to $1.  The proposal aimed at having a guideline for a pay-per-job approach on the Terra Classic chain as core developer L1TF goes into maintenance mode for Q4. Meanwhile, the community is also collaborating on other fronts to keep LUNC and USTC above key support levels as traders started booking profits amid the latest pullback in the crypto market. Terra Luna Classic Passes Pay Per Job Proposal Proposal 11889 “Pay-per-job and governance-ruled Job List” has passed successfully. The proposal deemed the monthly model of roadmap and payment planning as suboptimal and plans to switch to a pay-per-job model. The proposal has received 91.99% “Yes” votes, with others mostly voting “Abstain”. The community believes it will optimize compensation structure, provide flexibility and transparency, boost community engagement, and risk mitigation. A
Post a Comment
Read more