Bitcoin Core Vulnerability: Integer Overflow Bug
Details of an integer overflow bug that caused an assertion crash were disclosed, with a fix released in Bitcoin Core version v22.0 on September 14, 2021.
This issue is being considered High severity.
Details of the Vulnerability
The vulnerability in question lies within the CAddrMan module. Specifically, there is a 32-bit field called nIdCount that serves as the identifier for new entries in addrman. Each time a new entry is inserted, this field is incremented. However, if an attacker manages to penetrate 2^32 entries by, for example, sending messages to spam addresses, the identifier overflows, leading to an assertion crash.
Attribution and Fix
The vulnerability was discovered and disclosed by Eugene Siegel. The fix was implemented by Pieter Wuille. It is crucial to acknowledge the efforts of these individuals in identifying and addressing this issue promptly.
Timeline of Events
Here is the timeline of events related to this vulnerability:
- 21-06-2021 – Initial report by Eugene Siegel sent to security@bitcoincore.org
- 19-07-2021 – Fixes merged
- 13-09-2021 – Bitcoin Core version v22.0 released
- July 31, 2024 – Public disclosure
Overall, the swift response in identifying and fixing this integer overflow bug in Bitcoin Core demonstrates the importance of continuous security monitoring and prompt actions in the world of cryptocurrency. It serves as a reminder of the ever-evolving threats that cryptocurrency platforms face and the need for vigilance in ensuring the security and stability of such systems.
