-
Notifications
You must be signed in to change notification settings - Fork 122
Open
Description
This is a security vulnerability.
In the ConnectBlock() function of src/main.cpp, it misses the check for whether the block is corrupted or not. If the block is corrupted, it should be abort immediately, otherwise it will repeat trying to connect the corrupted block.
A possible solution is to add a corruption check inner the if statement of line 2341 in src/main.cpp.
Similar fix from Bitcoin: bitcoin/bitcoin@0e7c52d.
Reported by 6004ed5feaa31ae9df36b5dbc60f0fa53255a5fb734334082c6d202405fc738c.
Reactions are currently unavailable
Metadata
Metadata
Assignees
Labels
No labels