Impact
A specially crafted Bitcoin script can cause a discrepancy between the specified SLP consensus rules and the validation result of the slp-validate@1.0.0 npm package. An attacker could create a specially crafted Bitcoin script in order to cause a hard-fork from the SLP consensus.
Patches
All versions >1.0.0 have been patched.
Workarounds
Upgrade to any version > 1.0.0.
References
The bug was located and fixed here.
For more information
If you have any questions or comments about this advisory:
Impact
A specially crafted Bitcoin script can cause a discrepancy between the specified SLP consensus rules and the validation result of the slp-validate@1.0.0 npm package. An attacker could create a specially crafted Bitcoin script in order to cause a hard-fork from the SLP consensus.
Patches
All versions >1.0.0 have been patched.
Workarounds
Upgrade to any version > 1.0.0.
References
The bug was located and fixed here.
For more information
If you have any questions or comments about this advisory: