Share this article
Bitcoin development team patches its own security patch
Bitcoin's dev team has fixed several security flaws in the client, including two introduced by its last security patch.
Updated Dec 10, 2022, 9:17 p.m. Published Sep 5, 2013, 12:23 p.m.
Make us preferred on Google
Bitcoin’s core development team published an update to the bitcoin client this week. Version 0.8.4 provides protection against some core DDoS attacks, and also fixes security bugs introduced during the last patch.
The patch fixes an attack that could crash a process in the part of the bitcoin client that dealt with Bloom Filters. These are data structures used to decide whether a piece of data is a member of a larger data set, and were introduced in version 0.8 of the client so that only the relevant transactions would be sent to lightweight clients.
STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
They are therefore a key feature in bitcoin going forward, as the size of the block chain increases. In versions 0.8.0 through 0.8.3 of Bitcoin-QT and Bitcoind, an attacker could send a series of messages to the Bloom Filter that would cause it to crash. The core devs call this a “critical denial-of-service attack”.
The update also fixed a security bug that was introduced when the core developers patched another flaw in version 0.8.3. That patch implemented a better fix for a flaw that enabled attackers to fill system memory with flawed transactions. The flaw was originally fixed in version 0.8.3, but that fix in turn introduced two other flaws, according to blogger and crypto expert Sergio Lerner.
“What worries me is not that a bug was found, nor that a bug in the patch was found, but that the github commit of the patch does not show a history of a discussion regarding the patch correctness, nor is it recorded if the code was audited and by whom,” said Lerner at the time, arguing that the process for treating sensitive patches should be corrected.
Members of the dev team didn't respond to questions about development and patch documentation and process yesterday.
Bitcoin suffered a denial of service attack targeting network nodes as recently as June.
BTC Keychain via Flickr
Di più per voi
Pudgy Penguins is building a multi-vertical consumer IP platform — combining phygital products, games, NFTs and PENGU to monetize culture at scale.
Cosa sapere:
Pudgy Penguins is emerging as one of the strongest NFT-native brands of this cycle, shifting from speculative “digital luxury goods” into a multi-vertical consumer IP platform. Its strategy is to acquire users through mainstream channels first; toys, retail partnerships and viral media, then onboard them into Web3 through games, NFTs and the PENGU token.
The ecosystem now spans phygital products (> $13M retail sales and >1M units sold), games and experiences (Pudgy Party surpassed 500k downloads in two weeks), and a widely distributed token (airdropped to 6M+ wallets). While the market is currently pricing Pudgy at a premium relative to traditional IP peers, sustained success depends on execution across retail expansion, gaming adoption and deeper token utility.
More For You
Meta and Microsoft continue going big on AI Spending. Here's how bitcoin miners could benefit
In its fourth quarter earnings report, Meta said capital spending plans for 2026 should be in the range of $115-$135 billion, well ahead of consensus forecasts.
What to know:
- Fourth-quarter earnings results from Microsoft (MSFT) and Meta (META) suggested no slowdown in AI-related spending.
- Microsoft highlighted that AI is now one of its largest businesses and pointed to long-term growth.
- Meta projected sharply higher capital spending in 2026 to fund its Meta Super Intelligence Labs and core business.
Top Stories
