![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
Nachrichtenartikel zu Kryptowährungen
The Solana Foundation has revealed that a critical vulnerability affecting its Token-2022 standard was quietly patched in April, averting what could have been a catastrophic breach.
May 05, 2025 at 04:36 pm
A critical vulnerability affecting Solana’s Token-2022 standard was patched in April, according to a statement by the Solana Foundation.
The bug, which affected a specific feature in Solana’s Token-2022 framework known as “confidential transfers,” could have been exploited to mint an unlimited number of tokens or withdraw funds from any account without authorization.
This feature relies on zero-knowledge cryptography, specifically the ZK ElGamal proof system, to enable private transactions. However, a missing algebraic component in a hash used for cryptographic verification left the door open for manipulation.
With this flaw, a malicious actor could forge a valid cryptographic proof. Such a fake proof would grant them the ability to mint new tokens or drain existing accounts without detection.
The issue was first reported on April 16 and was fixed within two days. The fix was coordinated by core development teams from Anza, Jito, and Firedancer, with additional support from Asymmetric Research, Neodyme, and OtterSec.
No exploit was observed, and the bug was patched quickly. However, the revelation caused some market jitters.
After news of the vulnerability broke, the combined value of these tokens dropped by around 5%, settling at $16.1 million.
The Solana Foundation’s decision to keep the issue quiet drew mixed reactions. Some critics argued that the manner in which validators quickly came together to coordinate such a complex fix reflects an uncomfortable level of centralization within the network.
One community member questioned whether validators could use similar coordination to carry out or cover up harmful actions in the future.
However, others defended the approach, adding that silent patches are a standard best practice when dealing with zero-day bugs. Industry veterans, including developers from Bitcoin and Polygon, said these behind-the-scenes efforts prevent real-time exploits while teams work on a secure fix.
Hudson James, a VP at Ethereum layer-2 network developer Polygon Labs, said: “This is totally fine. Bitcoin, Zcash, and Ethereum have all had instances where the core devs needed to privately plan a secret bug fix. A good chain culture means having mature devs who can accomplish stealth fixes.”
Anatoly Yakovenko, co-founder of Solana, also noted that validator coordination is not unique to his blockchain network. He compared the process to similar consensus-building mechanisms on Ethereum, which would usually involve validators like Lido, Binance, Coinbase, and Kraken.
Haftungsausschluss:info@kdj.com
Die bereitgestellten Informationen stellen keine Handelsberatung dar. kdj.com übernimmt keine Verantwortung für Investitionen, die auf der Grundlage der in diesem Artikel bereitgestellten Informationen getätigt werden. Kryptowährungen sind sehr volatil und es wird dringend empfohlen, nach gründlicher Recherche mit Vorsicht zu investieren!
Wenn Sie glauben, dass der auf dieser Website verwendete Inhalt Ihr Urheberrecht verletzt, kontaktieren Sie uns bitte umgehend (info@kdj.com) und wir werden ihn umgehend löschen.
-
- John Squire schlägt vor, dass die SEC Ripple -Fall besiegen könnte, indem er XRP anstelle von Bargeld akzeptiert.
- Jun 11, 2025 at 02:55 am
- Die Verzögerung der Genehmigung der XRP -ETF könnte dazu beitragen, dass SEC vor der Abwicklung steigende Preise vermeiden kann. Am 17. Juni könnte ETF -Verzögerung Teil des berechneten Umzugs von SEC sein, sagt Squire.
-
-
-
-
- Die US -Regierung könnte sich darauf vorbereiten, einen großen Bitcoin zu bewegen und möglicherweise bis zu 100 Milliarden US -Dollar zu investieren
- Jun 11, 2025 at 02:45 am
- Gerüchten wirbeln Gerüchte darüber, dass die US -Regierung sich darauf vorbereiten könnte, einen großen Bitcoin zu machen und möglicherweise bis zu 100 Milliarden US -Dollar zu investieren.
-
-
-
- Der Preis von Bitcoin (BTC) fiel am 30. April kurz nach einem Ausfluss in den US-amerikanischen Spot-BTC-ETFs gesunken
- Jun 11, 2025 at 02:40 am
- Der Nettoabfluss von 56,23 Millionen US -Dollar kam, als Fidelity's FBTC und Ark & 21shares 'ArkB -Zustrom von BlackRock Ibit von 267 Millionen US -Dollar neutralisiert wurde.
-