A recent discovery in Bitcoin Core has revealed a critical vulnerability (CVE-2024-35202) that threatens the stability of over 13% of the asset’s nodes. The flaw, affecting Core versions before 25.0, allows hackers to execute remote shutdown attacks, putting the network at risk. This vulnerability stems from how the program handles “blocktxn” messages, leaving older nodes open to potential crashes.
Exploiting the Compact Block Protocol
The bug resides in Core’s compact block protocol, which is designed to optimize bandwidth by using shortened transaction IDs. While this method increases efficiency, it also leaves the network vulnerable. Hackers can exploit this weakness by creating conflicts, forcing nodes to request full block data that can lead to system failures.
This flaw, although unlikely to be exploited for financial gain, poses a serious risk to the network’s security. Malicious actors, such as governments or corporations, could potentially use this vulnerability to disrupt the infrastructure.
Vulnerability Report and Fix
Niklas Gögge, the researcher who identified and reported the bug, also contributed to the fix. Bitcoin Core version 25.0, released in May 2023, patches this vulnerability, improving overall network security. However, a significant portion of nodes has not yet been upgraded, leaving them exposed.
Also read: Bitcoin Gets a Boost as Mt. Gox Delays Mass Refund to 2025
The Importance of Updating Bitcoin Nodes
Currently, 13.7% of Bitcoin nodes remain vulnerable to remote shutdown attacks. The Bitcoin Core software does not automatically update, requiring node operators to manually download and install the latest versions. Developers strongly recommend that all node operators upgrade to the most recent version of Bitcoin Core to avoid potential disruptions.
The continuous efforts of Core developers have strengthened the security of the network. With version 28.0 already addressing another flaw discovered in September, the team remains dedicated to maintaining the system’s integrity without sacrificing functionality.
As Bitcoin continues to evolve, regular updates are essential to safeguard the network from potential threats. Node operators should remain vigilant and ensure they are running the latest software to protect against vulnerabilities like the one found in older Core versions. Upgrading not only enhances security but also ensures the network’s long-term resilience.
