Apr 3, 02:51 PM

Critical Ethereum Bug Discovered and Fixed Before Dencun Upgrade

A critical vulnerability was disclosed to the Ethereum Foundation by iosiro_security, which could have allowed attackers to crash Ethereum mainnet geth clients remotely through the eth_call over RPC. This issue, affecting all major RPC providers including Infura, AlchemyPlatform, Ankr, and QuickNode, was identified prior to the Dencun upgrade. The flaw, humorously dubbed the 'Ping of Geth,' could have disrupted all public RPCs across Ethereum. A bounty reward of $1k was offered for finding this vulnerability, highlighting its significance.

#Ethereum Foundation #Ethereum #Infura #AlchemyPlatform #Ankr #QuickNode #Dencun #Ping of Geth

Written with ChatGPT (GPT-4).

Sources

Kris Kaczor 🦆⚡️@krzKaczor
2 years ago
Find a vulnerability causing geth nodes with exposed RPC interface to crash (including half of node as a service offering), get $1k bounty reward 🤡 https://t.co/Z9CHVIPy7n
Daniel Von Fange@danielvf
2 years ago
Mad props to these guys for finding the "Ping of Geth" - a major bug in Geth that would have let an attacker easily knock all public RPCs offline across Ethereum. https://t.co/uN2o0uj80S
Mikko Ohtamaa@moo9000
2 years ago
The amazing team of @iosiro_security whitehatted a bug that could have crashed all #Ethereum JSON-RPC nodes post-Dencun upgrade https://t.co/urcydcMXpt https://t.co/EioiXZMwP0

Additional media

Image #1 for story critical-ethereum-bug-discovered-fixed-before-dencun-upgrade

Critical Ethereum Bug Discovered and Fixed Before Dencun Upgrade

Sources

Additional media

Similar Stories