1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
|
Delivery-date: Wed, 09 Oct 2024 14:41:00 -0700
Received: from mail-yb1-f183.google.com ([209.85.219.183])
by mail.fairlystable.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(Exim 4.94.2)
(envelope-from <bitcoindev+bncBCRY7FFSIEIOH4E3XADBUBD4T6CXM@googlegroups.com>)
id 1syeQV-000595-Oe
for bitcoindev@gnusha.org; Wed, 09 Oct 2024 14:41:00 -0700
Received: by mail-yb1-f183.google.com with SMTP id 3f1490d57ef6-e25cae769absf342691276.0
for <bitcoindev@gnusha.org>; Wed, 09 Oct 2024 14:40:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=googlegroups.com; s=20230601; t=1728510053; x=1729114853; darn=gnusha.org;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:x-original-sender:mime-version
:subject:message-id:to:from:date:sender:from:to:cc:subject:date
:message-id:reply-to;
bh=ZYaOia5I9ruekZh3o59mNG9qVjwd5VikD3vDo0R/lnI=;
b=Jc3kOQpTVkHWfO7TfQjaPh8MFqysCTf6opEcXrPW3VWuCUQ5xEEAkR5zi4O3JyqKHI
lCUYLcYzX8KFgdqgx9cWl8SEpcRI26V0T2d1tQGmaXAeptiybta6SpUEwqYwfagRwNSl
kgVT5GWH44sy0N35UGaaNz5ecD+UvmAswd4+CkDpFApOY8PRctq+UPttqRdC9n9hBZ5V
dZw+cbaKsYWxnOXZXn7op91NzBiMIR5ZLLcZ9aBHPOtznvlbvLVgWf/m24ejxfxVUyka
RidoRYwFI1Fp4ZdBy98S67bHQIweYlj+xbpbXyrfWKh9GH5RejR+x8X/5d8W2QAI73nz
lZsw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=20230601; t=1728510053; x=1729114853; darn=gnusha.org;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:x-original-sender:mime-version
:subject:message-id:to:from:date:from:to:cc:subject:date:message-id
:reply-to;
bh=ZYaOia5I9ruekZh3o59mNG9qVjwd5VikD3vDo0R/lnI=;
b=PEFQMrTC5HM/5fCHd3gA4Rz7fbvGgoOHkhwq3AxYu7LD7lec0LUDDy53/Ep2lGH27J
u8ndycy/iox4LpGqpVYFI/Xw0P4dPHjgmOipIOMFePUdJhJ3Edn8fSkNG/8TcjaVevXh
Jqf9LIaPmhHyocdQlAwBKIsp6UgM3v+6x6mLr55gIRc5j/b//MbdzzIOjR7Wcy8DblIt
cVEG85b3n0n4t4HbBxg+yDQzQUgpIJnpO2ProLn2TVhi0KQqcO1fjy00fjrFE7ZYLJ0Z
7SVez12/xrZPuZTysSC0PJFfzNAXaF9XdYJjvTZEd00X2TPTrGTvAADu3fgtzrEZUFJX
S6Dg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1728510053; x=1729114853;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:x-original-sender:mime-version
:subject:message-id:to:from:date:x-beenthere:x-gm-message-state
:sender:from:to:cc:subject:date:message-id:reply-to;
bh=ZYaOia5I9ruekZh3o59mNG9qVjwd5VikD3vDo0R/lnI=;
b=fuVZisEbAh5JvVjO7r23CQ0nJq1yy0UexrS9z0t/BUaJrCxzMqrmweEBN0xkpKWZz1
p62z7sz6/bDzbyEZbyQmO032CFhxPeCuZg+t/Rv83FpLc6LBroqFZpFAeggUXkTDbIq+
Gvha68zUWZ2wG9EBIY56cOgoKrkFr6CYv97KIWXTVbjxG7QEpCE2sknq8Sc1AlSdiyVB
2dvlqwDN2stbrntWHdFtWbEUXpVzeQHZmHscw/Me515zb0XXSKb1LAtOPNCxrXGrVwg3
gdXkq/8fgkFTcM0j5Nnk6vxC+OIHH7PgYw6CPGw+T3Hh2+n/jPafmXQgFgx+WxAinaTz
RNkg==
Sender: bitcoindev@googlegroups.com
X-Forwarded-Encrypted: i=1; AJvYcCWMq1fSU5kMCszxiIQUi79BAkbIUp+thQEvmPdYFy3pqmJGOC4kyRbHVhVoyIEGDkXzS/k3STzxnk/p@gnusha.org
X-Gm-Message-State: AOJu0Yy44ARKSggPFK2E7dewQ29/phqo7saw0YcsHkiek/T2omT8ii0Q
48YU8YvWQ7ihDcr8HjWKjZyiKWm85pZTNYj06KqDffy3H8YyH8Kc
X-Google-Smtp-Source: AGHT+IG3/vyK7KhGk9VsbHb1A5jPSTUy/phTrZfMyYRVmlijp3B1V5878zOKZzNDeuJTjBH1fYe14A==
X-Received: by 2002:a05:6902:2585:b0:e25:d3fb:4c9 with SMTP id 3f1490d57ef6-e2909c89465mr1554579276.48.1728510053219;
Wed, 09 Oct 2024 14:40:53 -0700 (PDT)
X-BeenThere: bitcoindev@googlegroups.com
Received: by 2002:a05:6902:18ca:b0:e1d:a3e8:5b29 with SMTP id
3f1490d57ef6-e290bb64da1ls652556276.1.-pod-prod-07-us; Wed, 09 Oct 2024
14:40:50 -0700 (PDT)
X-Received: by 2002:a05:690c:2843:b0:6e3:2ea5:729e with SMTP id 00721157ae682-6e32ea57429mr14012837b3.26.1728510050811;
Wed, 09 Oct 2024 14:40:50 -0700 (PDT)
Received: by 2002:a05:690c:46c9:b0:6d6:77c4:ed15 with SMTP id 00721157ae682-6e31f00567cms7b3;
Wed, 9 Oct 2024 12:30:17 -0700 (PDT)
X-Received: by 2002:a05:690c:d08:b0:6e2:43ea:54e with SMTP id 00721157ae682-6e322309fa7mr38552847b3.21.1728502216771;
Wed, 09 Oct 2024 12:30:16 -0700 (PDT)
Date: Wed, 9 Oct 2024 12:30:16 -0700 (PDT)
From: Niklas Goegge <n.goeggi@gmail.com>
To: Bitcoin Development Mailing List <bitcoindev@googlegroups.com>
Message-Id: <2df30c0a-3911-46ed-b8fc-d87528c68465n@googlegroups.com>
Subject: [bitcoindev] Public disclosure of three vulnerabilities affecting
Bitcoin Core <v25.0
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="----=_Part_74622_1858290055.1728502216275"
X-Original-Sender: n.goeggi@gmail.com
Precedence: list
Mailing-list: list bitcoindev@googlegroups.com; contact bitcoindev+owners@googlegroups.com
List-ID: <bitcoindev.googlegroups.com>
X-Google-Group-Id: 786775582512
List-Post: <https://groups.google.com/group/bitcoindev/post>, <mailto:bitcoindev@googlegroups.com>
List-Help: <https://groups.google.com/support/>, <mailto:bitcoindev+help@googlegroups.com>
List-Archive: <https://groups.google.com/group/bitcoindev
List-Subscribe: <https://groups.google.com/group/bitcoindev/subscribe>, <mailto:bitcoindev+subscribe@googlegroups.com>
List-Unsubscribe: <mailto:googlegroups-manage+786775582512+unsubscribe@googlegroups.com>,
<https://groups.google.com/group/bitcoindev/subscribe>
X-Spam-Score: -0.5 (/)
------=_Part_74622_1858290055.1728502216275
Content-Type: multipart/alternative;
boundary="----=_Part_74623_1837901298.1728502216275"
------=_Part_74623_1837901298.1728502216275
Content-Type: text/plain; charset="UTF-8"
Hi everyone,
Today we are releasing three security advisories for the Bitcoin Core
project. These vulnerabilities affect versions of Bitcoin Core before (and
not including) 25.0.
The details are available here:
-
https://bitcoincore.org/en/2024/10/08/disclose-mutated-blocks-hindering-propagation/
- https://bitcoincore.org/en/2024/10/08/disclose-large-inv-to-send/
- https://bitcoincore.org/en/2024/10/08/disclose-blocktxn-crash/
This is part of the gradual adoption by the project of a new vulnerability
disclosure policy. The policy is available at
https://bitcoincore.org/en/security-advisories/#policy. We will follow up
next month with vulnerabilities affecting Bitcoin Core versions before (and
not including) 26.0, if any.
--
You received this message because you are subscribed to the Google Groups "Bitcoin Development Mailing List" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bitcoindev+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/bitcoindev/2df30c0a-3911-46ed-b8fc-d87528c68465n%40googlegroups.com.
------=_Part_74623_1837901298.1728502216275
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Hi everyone,
<br />
<br />Today we are releasing three security advisories for the Bitcoin Core=
=20
project. These vulnerabilities affect versions of Bitcoin Core before (and
not including) 25.0.
<br />
<br />The details are available here:<br /><div>- <a href=3D"https://bitcoi=
ncore.org/en/2024/10/08/disclose-mutated-blocks-hindering-propagation/">htt=
ps://bitcoincore.org/en/2024/10/08/disclose-mutated-blocks-hindering-propag=
ation/</a><br /></div><div>- <a href=3D"https://bitcoincore.org/en/2024/10/=
08/disclose-large-inv-to-send/">https://bitcoincore.org/en/2024/10/08/discl=
ose-large-inv-to-send/</a></div><div>- <a href=3D"https://bitcoincore.org/e=
n/2024/10/08/disclose-blocktxn-crash/">https://bitcoincore.org/en/2024/10/0=
8/disclose-blocktxn-crash/</a></div>
<br />This is part of the gradual adoption by the project of a new vulnerab=
ility disclosure policy. The policy is available at <a href=3D"https://bitc=
oincore.org/en/security-advisories/#policy" target=3D"_blank" rel=3D"nofoll=
ow">https://bitcoincore.org/en/security-advisories/#policy</a>.=C2=A0 We wi=
ll follow up next month with vulnerabilities affecting Bitcoin Core version=
s before (and not including) 26.0, if any.
<br />
<p></p>
-- <br />
You received this message because you are subscribed to the Google Groups &=
quot;Bitcoin Development Mailing List" group.<br />
To unsubscribe from this group and stop receiving emails from it, send an e=
mail to <a href=3D"mailto:bitcoindev+unsubscribe@googlegroups.com">bitcoind=
ev+unsubscribe@googlegroups.com</a>.<br />
To view this discussion on the web visit <a href=3D"https://groups.google.c=
om/d/msgid/bitcoindev/2df30c0a-3911-46ed-b8fc-d87528c68465n%40googlegroups.=
com?utm_medium=3Demail&utm_source=3Dfooter">https://groups.google.com/d/msg=
id/bitcoindev/2df30c0a-3911-46ed-b8fc-d87528c68465n%40googlegroups.com</a>.=
<br />
------=_Part_74623_1837901298.1728502216275--
------=_Part_74622_1858290055.1728502216275--
|
