![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
![]() |
|
Articles d’actualité sur les crypto-monnaies
Solana Quietly Patches Vulnerability: Hero or Controller?
May 05, 2025 at 02:54 pm
Recently, Solana encountered a serious issue. A security vulnerability that allowed attackers to mint unlimited tokens or even withdraw tokens from other users’ accounts without permission was discovered.
However, after fixing the bug, investors are criticizing Solana. Let’s explore the reason behind this controversy.
Solana Patches Vulnerability
Solana disclosed a vulnerability in its ZK ElGamal Proof program, which is a native program used to verify the correctness of complex zero-knowledge proofs and ensure that encrypted balances in accounts and transactions are valid. The bug affects tokens using the Token-2022 standard.
This vulnerability enables attackers to perform actions that the system shouldn’t allow, such as creating new tokens or withdrawing from another user’s wallet.
“This vulnerability only affects Token-22 confidential tokens and allows an attacker to perform actions such as minting tokens or withdrawing tokens from any account that the system should not allow,” Solana explained.
If this vulnerability were to be exploited, it could have had serious consequences.
“An attacker can create a variant of the ElGamal Proof program and submit transactions to the network to execute arbitrary programs in the context of the ZK ElGamal Proof program. This includes actions such as minting tokens or withdrawing tokens from any account.”
Fortunately, the issue was quickly patched by Solana, which updated the software and retested it with the help of several security research teams, including Asymmetric Research, Neodyme, and OtterSec. Most importantly, there are no reports indicating that the vulnerability had been exploited before it was patched.
Investors Criticize Solana
Although Solana acted quickly to fix the bug and it seems that no one misused the vulnerability, its handling of the situation sparked mixed reactions.
While a developer named Fede’s intern from LambdaClass defended Solana and stated that those criticizing the platform don’t understand the technology, he also claimed that the response would likely have been the same if a similar incident had occurred on Ethereum or Bitcoin, investors are still showing concern.
In 2018, the Bitcoin network experienced a serious inflation bug. Developers from Bitcoin Core had to quietly contact mining pools to apply a fix for an inflation bug before informing the public about it.
Still, many expressed concerns about Solana’s transparency and decentralization.
For example, investor Clouted expressed alarm over the secretive patch. As he explained, seven out of eight of the largest Solana validators privately applied a critical hotfix, upgrading the system and patching the bug. Afterward, they disclosed the issue to the community.
However, according to Clouted, these actions went against the spirit of decentralization. He argued that if validators could coordinate privately to fix bugs, they might also collaborate to censor transactions or alter blockchain data, which a decentralized system should not allow.
“Am I hearing this right? There was a zero-day on Solana mainnet and >70% of the validators privately colluded to upgrade and patch the critical bug before it was even made public. But they never announced it. Instead, they're now rolling out the narrative that it's all patched up. Is this the future of Solana: a centrally controlled chain with opaque updates and patching at the whim of a few large validators? I'm not sure I want to stick around for that future. I'd rather invest in protocols that prioritize transparency, decentralization
Clause de non-responsabilité:info@kdj.com
Les informations fournies ne constituent pas des conseils commerciaux. kdj.com n’assume aucune responsabilité pour les investissements effectués sur la base des informations fournies dans cet article. Les crypto-monnaies sont très volatiles et il est fortement recommandé d’investir avec prudence après une recherche approfondie!
Si vous pensez que le contenu utilisé sur ce site Web porte atteinte à vos droits d’auteur, veuillez nous contacter immédiatement (info@kdj.com) et nous le supprimerons dans les plus brefs délais.
-
- Le prochain grand mème de Crypto: Magacoin Finance est-il le nouveau Doge ou Shib?
- Jul 28, 2025 at 04:00 pm
- La finance de Magacoin émerge comme un concurrent fort dans l'arène de la pièce MEME, dépassant potentiellement la croissance précoce de Shib. Serait-ce la prochaine grande sensation de crypto?
-
- Altcoins, cryptos et 250x potentiel: attraper la prochaine vague
- Jul 28, 2025 at 04:00 pm
- Les altcoins sont prêts pour une surtension, les analystes prédisant un rendement potentiel de 250x. Plongez dans les choix d'experts et les tendances du marché pour découvrir les prochains joyaux cryptographiques.
-
- Le vétéran de Blackrock rejoint Sharplink alors que Ethereum Treasury Swells: A New Era?
- Jul 28, 2025 at 03:58 pm
- L'accumulation agressive d'Ethereum de SharpLink Gaming, alimentée par l'expertise de Blackrock, déclenche un débat sur les stratégies de cryptographie des entreprises et l'impact du marché.
-
- Bitcoin Whitering, blockchain criminalistique et fraude crypto: une plongée profonde dans le côté obscur des actifs numériques
- Jul 28, 2025 at 03:58 pm
- Explorez les dernières tendances et idées du blanchiment du bitcoin, de la criminalistique blockchain et de la fraude cryptographique. Des escroqueries religieuses aux menaces d'initiés d'entreprise, nous découvrons le paysage évolutif de la criminalité numérique des actifs.
-
-
- Alerte des baleines: Solana plongez dans la médaille de vigne - un mouvement risqué ou un jeu de génie?
- Jul 28, 2025 at 03:51 pm
- Une crypto baleine déplace des millions à Solana (Sol) dans Vine Coin (Vine) après le tweet de renouveau de l'IA d'Elon Musk. Est-ce une décision intelligente ou un pari risqué sur le marché des pièces MEME?
-
-
-
- Cryptos Surge: Décodage du buzz blockchain avec Sui, unilabs, et au-delà
- Jul 28, 2025 at 02:00 pm
- Plongez dans la surtension de la cryptographie! Nous décomposons les dernières tendances de la blockchain, du rallye de Cardano à la montée en puissance de Sui et Unilabs, ainsi qu'un aperçu de l'avenir sans gaz d'Edachain.