市值: $3.3012T 0.460%
成交额(24h): $163.9614B 28.200%
  • 市值: $3.3012T 0.460%
  • 成交额(24h): $163.9614B 28.200%
  • 恐惧与贪婪指数:
  • 市值: $3.3012T 0.460%
加密货币
话题
百科
资讯
加密话题
视频
热门新闻
加密货币
话题
百科
资讯
加密话题
视频
bitcoin
bitcoin

$105398.502299 USD

1.75%

ethereum
ethereum

$2555.207592 USD

3.43%

tether
tether

$1.000429 USD

-0.02%

xrp
xrp

$2.141971 USD

2.09%

bnb
bnb

$651.827388 USD

1.41%

solana
solana

$146.611988 USD

2.90%

usd-coin
usd-coin

$0.999805 USD

-0.01%

dogecoin
dogecoin

$0.177273 USD

3.19%

tron
tron

$0.271470 USD

0.86%

cardano
cardano

$0.634997 USD

1.86%

hyperliquid
hyperliquid

$41.657613 USD

9.72%

sui
sui

$3.026449 USD

2.34%

bitcoin-cash
bitcoin-cash

$444.966315 USD

11.29%

chainlink
chainlink

$13.256001 USD

2.72%

unus-sed-leo
unus-sed-leo

$9.032403 USD

1.94%

加密货币新闻

Solana Patches Critical Token Bug Before Major Exploit

2025/05/05 17:02

Solana Patches Critical Token Bug Before Major Exploit

Solana, the rapidly developing blockchain, encountered and swiftly patched a critical bug in its Token-2022 system. If left unaddressed, this vulnerability could have been used by hackers to forge tokens endlessly and steal funds from any account.

The Solana Foundation confirmed that the bug was reported on April 16, and within 48 hours, it was completely fixed. Core developers Anza, Jito, and Firedancer spearheaded the response, while security firms OtterSec, Neodyme, and Asymmetric Research also contributed.

Crucially, this issue never reached the public domain. Solana opted to handle it quickly and quietly to prevent any potential panic or misuse of the vulnerability.

The bug resided in the “confidential transfers” feature, designed to conceal transaction details using zero-knowledge proofs, specifically the ZK ElGamal system. A missing mathematical element in the cryptographic hash allowed attackers to forge proofs that appeared valid to the system.

These false proofs could have been used to mint unlimited tokens or steal funds from any account without detection.

Solana’s rapid response and the cooperation of several security firms ensured that the bug was patched before it could be exploited. No instances of token forging or account theft have been reported.

Following this incident, SOL developers will continue to audit Token-2022 to identify and mitigate any future threats. The Foundation also highlighted the importance of teamwork in handling such events effectively.

This incident underscores the fact that even advanced cryptographic techniques are susceptible to flaws when implemented carelessly. Constant vigilance and a collaborative approach are crucial in securing blockchain networks from malicious actors.

免责声明:info@kdj.com

所提供的信息并非交易建议。根据本文提供的信息进行的任何投资,kdj.com不承担任何责任。加密货币具有高波动性,强烈建议您深入研究后,谨慎投资!

如您认为本网站上使用的内容侵犯了您的版权,请立即联系我们(info@kdj.com),我们将及时删除。

2025年06月14日 发表的其他文章