市值: $3.4163T -1.550%
成交额(24h): $133.3849B -8.180%
  • 市值: $3.4163T -1.550%
  • 成交额(24h): $133.3849B -8.180%
  • 恐惧与贪婪指数:
  • 市值: $3.4163T -1.550%
加密货币
话题
百科
资讯
加密话题
视频
热门新闻
加密货币
话题
百科
资讯
加密话题
视频
bitcoin
bitcoin

$108452.054690 USD

-1.13%

ethereum
ethereum

$2760.321956 USD

-0.75%

tether
tether

$1.000038 USD

0.00%

xrp
xrp

$2.249970 USD

-1.61%

bnb
bnb

$667.438855 USD

-0.21%

solana
solana

$160.026292 USD

-2.50%

usd-coin
usd-coin

$0.999802 USD

0.00%

dogecoin
dogecoin

$0.192224 USD

-1.67%

tron
tron

$0.276432 USD

-4.81%

cardano
cardano

$0.694606 USD

-2.41%

hyperliquid
hyperliquid

$41.404755 USD

0.55%

sui
sui

$3.352021 USD

-2.91%

chainlink
chainlink

$14.757478 USD

-2.66%

avalanche
avalanche

$21.452376 USD

-3.00%

stellar
stellar

$0.277006 USD

-0.77%

加密货币新闻

Solana Patches Critical Token Bug Before Major Exploit

2025/05/05 17:02

Solana Patches Critical Token Bug Before Major Exploit

Solana, the rapidly developing blockchain, encountered and swiftly patched a critical bug in its Token-2022 system. If left unaddressed, this vulnerability could have been used by hackers to forge tokens endlessly and steal funds from any account.

The Solana Foundation confirmed that the bug was reported on April 16, and within 48 hours, it was completely fixed. Core developers Anza, Jito, and Firedancer spearheaded the response, while security firms OtterSec, Neodyme, and Asymmetric Research also contributed.

Crucially, this issue never reached the public domain. Solana opted to handle it quickly and quietly to prevent any potential panic or misuse of the vulnerability.

The bug resided in the “confidential transfers” feature, designed to conceal transaction details using zero-knowledge proofs, specifically the ZK ElGamal system. A missing mathematical element in the cryptographic hash allowed attackers to forge proofs that appeared valid to the system.

These false proofs could have been used to mint unlimited tokens or steal funds from any account without detection.

Solana’s rapid response and the cooperation of several security firms ensured that the bug was patched before it could be exploited. No instances of token forging or account theft have been reported.

Following this incident, SOL developers will continue to audit Token-2022 to identify and mitigate any future threats. The Foundation also highlighted the importance of teamwork in handling such events effectively.

This incident underscores the fact that even advanced cryptographic techniques are susceptible to flaws when implemented carelessly. Constant vigilance and a collaborative approach are crucial in securing blockchain networks from malicious actors.

免责声明:info@kdj.com

所提供的信息并非交易建议。根据本文提供的信息进行的任何投资,kdj.com不承担任何责任。加密货币具有高波动性,强烈建议您深入研究后,谨慎投资!

如您认为本网站上使用的内容侵犯了您的版权,请立即联系我们(info@kdj.com),我们将及时删除。

2025年06月13日 发表的其他文章