13 C
May 1, 2019
Image default

‘Very Scary’: Bitcoin Sore Developers Confirm Duplicate Transaction Bug Fix

Bitcoin developers released a new version of the Bitcoin Core client September 18 after fixing a “very scary” bug which could have seen a malicious party take many nodes offline.


In release notes for Bitcoin Core version 0.16.3, Wladimir van der Laan confirmed the vulnerability, known as CVE-2018-17144, had received an effective patch. The Bitcoin Core client remains the most popular comprising over 94% of all Bitcoin software implementations today.

“A denial-of-service vulnerability… exploitable by miners have been discovered in Bitcoin Core versions 0.14.0 up to 0.16.2,” he summarized.

“It is recommended to upgrade any of the vulnerable versions to 0.16.3 as soon as possible.”

CVE-2018-17144 could technically have allowed a malicious miner or group of miners to perform duplicate transactions and burn block rewards, forcing nodes off the network in the process.

Cobra, the creator of information resource Bitcoin.org, said the bug even had the potential to create chaos in a “huge chunk” of the ecosystem.

“A very scary bug in Bitcoin Core has just been fixed which could have crashed a huge chunk of the Bitcoin network is exploited by any rogue miners,” he wrote on Twitter.


Other than the official release notes, developers have yet to publicly explain the origin and circumstances around the offending code. On Github, fellow Core developer Andrew Chow remained brief, telling users only that a “third party” reported the bug.

“The bug was disclosed to other projects simultaneously to it being disclosed to us,” Matt Corallo added.

Bitcoin Core bugs rarely create a sense of urgency within the community, making the discovery of CVE-2018-17144 an unusual exception.

As CryptoCapInfo reported, however, code problems regularly afflict the cryptocurrency’s spin-offs, with Bitcoin Cash frequently coming under suspicion over the strength of its infrastructure.

An ongoing attempt to ‘test’ the network from an entity known as BitPico continues.

Related posts

Bitcoin Hit $20k in 2017 Without Institutions, What’s Next in 2019?


Crypto Market Falls Below $200 Billion- Bitcoin and Ether Lack Momentum


Partnership Could See up to 100,000 Regular ATMs in U.S. Turned into Bitcoin-Vending Machines

Monira Sharmin

Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.