Bitcoin developers are urging users to update their software after a critical vulnerability was discovered that could crash over 13% of the network’s nodes.
The bug, identified as CVE-2024-35202, affects Bitcoin Core software versions prior to 25.0. These outdated nodes are susceptible to a remote attack that could force them to shut down entirely.
The vulnerability stems from how Bitcoin Core handles shortened transaction identifiers used to save bandwidth. An attacker could exploit a flaw in processing subsequent messages, causing the node to crash through manipulated logic.
The good news: Patching this vulnerability is simple. Updating your Bitcoin Core software to version 25.0 or later addresses the issue. The latest version, 28.0, is even more secure.
The not-so-good news: Bitcoin Core doesn’t update automatically. Node operators must download and install updates themselves.
What this means: Over 13% of BTC nodes, according to BitNodes.io, are currently vulnerable. If left unpatched, these nodes could be targeted by attackers seeking to disrupt the network.
Financial impact limited, but disruption possible: While attackers wouldn’t gain direct financial benefits, a targeted attack could destabilize the BTC network. This vulnerability could be exploited by entities with a vested interest in disrupting Bitcoin for non-immediate financial reasons.
