Skip to content

Security advisories for vulnerabilities fixed in v24.0.1 #1063

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Sep 18, 2024
Merged

Security advisories for vulnerabilities fixed in v24.0.1 #1063

merged 1 commit into from
Sep 18, 2024

Conversation

darosior
Copy link
Member

There was one security vulnerability fixed in v24.0.1.

Thanks to Pieter Wuille and Suhas Daftuar for their help in writing this up.

murchandamus
murchandamus reviewed Sep 18, 2024
View reviewed changes
@darosior darosior force-pushed the 202409_september_batch branch from 743626b to 589bc44 Compare September 18, 2024 15:58
@instagibbs
Copy link
Contributor

Looks like the last release of catchup? Month after 28.0 disclose up to 25.X?

@darosior
Copy link
Member Author

There is one more, need to release vulns (if any) in 24.x that were fixed in 25.0.

murchandamus
murchandamus reviewed Sep 18, 2024
View reviewed changes
Copy link
Contributor

@murchandamus murchandamus left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

pinheadmz
pinheadmz reviewed Sep 18, 2024
View reviewed changes
@darosior @sipa
Disclosure of headers OOM (fixed by pre-sync)
0e68bf9 
Thanks to Suhas Daftuar for review and for pointing out a mistake in the
re-calculation of the costs of performing the attack.

Co-Authored-By: Pieter Wuille <pieter@wuille.net>
@darosior darosior force-pushed the 202409_september_batch branch from 589bc44 to 0e68bf9 Compare September 18, 2024 17:19
dergoegge
dergoegge approved these changes Sep 18, 2024
View reviewed changes
Copy link
Member

@dergoegge dergoegge left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ACK 0e68bf9

@sipa
Copy link
Contributor

sipa commented Sep 18, 2024

ACK 0e68bf9

Zero-1729
Zero-1729 reviewed Sep 18, 2024
View reviewed changes
Copy link

@Zero-1729 Zero-1729 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

crACK 0e68bf9

@achow101
Copy link
Member

ACK 0e68bf9

@achow101 achow101 merged commit 6e9b169 into bitcoin-core:master Sep 18, 2024
2 checks passed
@darosior darosior deleted the 202409_september_batch branch September 19, 2024 05:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
4 more reviewers

@pinheadmz pinheadmz pinheadmz left review comments

@murchandamus murchandamus murchandamus left review comments

@Zero-1729 Zero-1729 Zero-1729 left review comments

@dergoegge dergoegge dergoegge approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
8 participants
@darosior @instagibbs @sipa @achow101 @pinheadmz @murchandamus @dergoegge @Zero-1729