• NOW

News

  • NOW

PR: Bitcoin ABC releases vulnerability fix for Bitcoin Cash

This is a paid press release, which contains forward looking statements, and should be treated as advertising or promotional material. Bitcoin.com does not endorse nor support this product/service. Bitcoin.com is not responsible for or liable for any content, accuracy or quality within the press release.

This Press Release contains information regarding the response to a critical vulnerability applicable to miners of Bitcoin Cash using Bitcoin-ABC version 0.17.0. Appropriate action has been taken to mitigate the impact of this vulnerability. This release is provided for information purposes only.

Bitcoin ABC 0.17.1 fixes this problem.

On April 26, 2018, Bitcoin-ABC developers were notified by unknown person(s) of the vulnerability. If exploited the flaw would have caused an unintended split in the Bitcoin Cash network.

An attacker could have constructed a malicious transaction which would be accepted by Bitcoin-ABC 0.17.0 and mined into a block. This block would be rejected by all other versions of Bitcoin Cash compliant implementations. The malicious transaction would contain the bitflag of 0x20 set in the signature hash type.

BUCash (Bitcoin Unlimited) and versions of Bitcoin-ABC prior to 0.17.0 could have been split from the majority Bitcoin Cash blockchain. Only Bitcoin ABC and BUCash nodes were included in the analysis of this vulnerability.

After analysis of the vulnerability and possible responses, Bitcoin-ABC developers prepared a patch for the vulnerability, and a private release, to distribute directly to mining pool operators. Due to the decentralized nature of the mining community it was not possible to reach everyone directly. This private release was provided to verified Bitcoin Cash miners to forward to trusted miners once they had upgraded.

We advise any Bitcoin ABC 0.17.0 users to upgrade to the latest version as soon as possible.

Bitcoin ABC will be taking several actions in order to prevent such an event from occuring again, as well as reduce the overall response time in the case of emergent issues in the future. Additionally, Bitcoin ABC is in discussions with industry participants to establish a formal bug bounty system.

Bitcoin ABC wants to thank the person(s) who disclosed this vulnerability responsibly. They provided a clear and professional report. If they are willing to come forward, we would like to ensure they receive a reward.

We also want to thank the miners for their cooperation, understanding, and for the fast and professional way in which they took action to protect the Bitcoin Cash network and its users.

Supporting Link
https://www.bitcoinabc.org/
Contact Email Address
info@bitcoinabc.org

This is a paid press release. Readers should do their own due diligence before taking any actions related to the promoted company or any of its affiliates or services. Bitcoin.com is not responsible, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any content, goods or services mentioned in the press release.

Tags in this story
BCH, Bitcoin ABC, bitcoin cash, Bitcoin-ABC 0.17.0, block, BUCash nodes, bug bounty, emergent issues, incident report, malicious transaction, Miners, mitigate vulnerability, response time, Split, Vulnerability
Related
PR: Anxone Provides Multi-Layer Security For Crypto Storage

Hacking is a front and center issue for digital asset exchanges. Especially given its worrying year-over-year increases, from US$152mn in… read more.

PR: Decoin Exchange Launches Unique Revenue Sharing Protocol

Amid the gory reports of fake trading volumes claimed by crypto exchanges which have made many traders apprehensive of crypto… read more.

Bitcoin.com PR

Bitcoin.com is your premier source for everything Bitcoin-related. We can help you buy bitcoins and choose a bitcoin wallet. You can also read the latest news, or engage with the community on our Bitcoin Forum. Please keep in mind that this is a commercial website that lists wallets, exchanges and other Bitcoin-related companies.