State transition and consensus subject in geth shopper causes panic (crash) when processing a (legitimate) block with a particular mixture of transactions, which can trigger general community instability if block is accepted and relayed by unaffected shoppers thus inflicting a DoS. This will occur in a block that comprises transactions which suicide to the block reward tackle.
Affected configurations: Situation reported for Geth.Whereas investigating the difficulty, associated points have been found and corrected in pyethereum, therefore pyethapp can also be affected. C++ shoppers are unaffected.
Chance: Low
Severity: Excessive
Complexity: Excessive
Impression: Community Instability and DoS
Particulars: A block containing a particular mixture of transactions which embrace a number of SUICIDE calls, whereas legitimate, causes panic crash in go-ethereum shopper and crash in pyethereum. Extra particulars could also be posted when out there.
Results on anticipated chain reorganisation depth: None.
Remedial motion taken by Ethereum: Provision of fixes as under.
Proposed momentary workaround: Swap to unaffected shopper similar to eth (C++).
Repair:Improve geth and pyethereum shopper software program.
go-ethereum (geth):
Please observe that the present secure model of geth is now 1.1.1; in case you are working 1.0 and utilizing a package deal supervisor similar to apt-get or homebrew the shopper can be upgraded.
If utilizing the PPA: sudo apt-get replace then sudo apt-get improve
If utilizing brew: brew replace then brew reinstall ethereum
If utilizing a home windows binary: obtain the updated binary.
In case you are constructing from supply: git pull adopted by make geth (please use the Grasp department commit 8f09242d7f527972acb1a8b2a61c9f55000e955d)
The right model for this replace on Ubuntu AND OSX is Geth/v1.1.1-8f09242d
pyethereum:
Customers of pyethapp ought to reinstall
> pip set up pyethapp –force-reinstall
Source link