1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
|
Return-Path: <gmaxwell@gmail.com>
Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org
[172.17.192.35])
by mail.linuxfoundation.org (Postfix) with ESMTPS id 5A27DBB3
for <bitcoin-dev@lists.linuxfoundation.org>;
Tue, 7 Jul 2015 23:14:20 +0000 (UTC)
X-Greylist: whitelisted by SQLgrey-1.7.6
Received: from mail-ig0-f177.google.com (mail-ig0-f177.google.com
[209.85.213.177])
by smtp1.linuxfoundation.org (Postfix) with ESMTPS id 4DA8D157
for <bitcoin-dev@lists.linuxfoundation.org>;
Tue, 7 Jul 2015 23:14:19 +0000 (UTC)
Received: by igcsj18 with SMTP id sj18so273978278igc.1
for <bitcoin-dev@lists.linuxfoundation.org>;
Tue, 07 Jul 2015 16:14:18 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
h=mime-version:in-reply-to:references:date:message-id:subject:from:to
:content-type; bh=n79TrbTPfw+9av1KCjbfiJQ+57bdOrv4YPv23vf6PkA=;
b=GaPNoXmWIPxnZxX3q3/BkBSqe9r2bLLr8fhqYj+4K523/nhxhIhx1RK10QaR0J1pBs
t9JlK7m1Td6cj7gwzUFSKhOyWZE+pEPeBEd70RBu6n4A4R6ebG/dYYZKnh3wQUGieUt8
DMeu39Bh2ov5nB5r9XCsJuF6vEB6jTjdg6K4k7WyM6wsMVMdJhgCsB1en1zl2WUdO+XJ
Hv/upZl9PHQrbD8UHenqD5tBz394EdGeLnaJ2hvFcy5GKKt+G9skJ7jie2+26HJ6HbQS
Qfgn01v3FtChRx7KJXDWNg6qzaSu/OFarplRUsNzMVx8DC/6WZVYkJqAjpb+sQxTiSd5
DhsA==
MIME-Version: 1.0
X-Received: by 10.107.133.234 with SMTP id p103mr11522526ioi.85.1436310858817;
Tue, 07 Jul 2015 16:14:18 -0700 (PDT)
Received: by 10.107.147.69 with HTTP; Tue, 7 Jul 2015 16:14:18 -0700 (PDT)
In-Reply-To: <CAAS2fgR0ak5B1gdSvR7s4YRydbpXb0jC45U3V50D6n=aMLUn7w@mail.gmail.com>
References: <CAAS2fgR0ak5B1gdSvR7s4YRydbpXb0jC45U3V50D6n=aMLUn7w@mail.gmail.com>
Date: Tue, 7 Jul 2015 23:14:18 +0000
Message-ID: <CAAS2fgSO+Bbyr1pHweiv4QT1MVcMOGBmJTd6b1+VHVAd7K2rSg@mail.gmail.com>
From: Gregory Maxwell <gmaxwell@gmail.com>
To: bitcoin-dev@lists.linuxfoundation.org
Content-Type: text/plain; charset=UTF-8
X-Spam-Status: No, score=-2.7 required=5.0 tests=BAYES_00,DKIM_SIGNED,
DKIM_VALID, DKIM_VALID_AU, FREEMAIL_FROM,
RCVD_IN_DNSWL_LOW autolearn=ham version=3.3.1
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
smtp1.linux-foundation.org
Subject: Re: [bitcoin-dev] Upcoming DOS vulnerability announcements for
Bitcoin Core
X-BeenThere: bitcoin-dev@lists.linuxfoundation.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Bitcoin Development Discussion <bitcoin-dev.lists.linuxfoundation.org>
List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe>
List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/>
List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org>
List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help>
List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe>
X-List-Received-Date: Tue, 07 Jul 2015 23:14:20 -0000
On Sat, Jun 27, 2015 at 6:21 AM, Gregory Maxwell <gmaxwell@gmail.com> wrote:
> On July 7th I will be making public details of several serious denial of
> service vulnerabilities which have fixed in recent versions of Bitcoin Core,
> including CVE-2015-3641.
>
> I strongly recommend anyone running production nodes exposed to inbound
> connections from the internet upgrade to 0.10.2 as soon as possible.
>
> Upgrading older systems, especially miners, is also important due to the
> BIP66 soft-fork which is about to reach enforcing status, see also:
> http://sourceforge.net/p/bitcoin/mailman/message/34199290/
Just an update here-- I'm delaying this somewhat due to recent network
turbulance and unusual attempted DOS attack activity on relayed
infrastructure.
I've also had some requests from other cryptocurrency implementors to
use a somewhat longer horizon here.
|
