Lightning community node operators operating LND variations previous to the Oct. 1 model 0.11 improve have been urged to improve instantly after a vulnerability was found affecting LND variations 0.10 and under.
The vulnerability was made public in an Oct. 9 announcement from Lightning engineer Conner Fromknecht, Head of Cryptographic Engineering at Lightning Labs. Fromknecht mentioned:
“Whereas now we have no motive to imagine these vulnerabilities have been exploited within the wild, we strongly urge the group to improve to lnd 0.11.Zero or above ASAP,”
Few particulars have been revealed to this point, with Fromknecht assuring that the vulnerabilities will probably be disclosed in full on Oct. 20.
This isn’t the primary time a vulnerability has been found within the Lightning community. Final 12 months, Lightning Labs CTO, Olaoluwa Osuntokun, confirmed cases of Frequent Vulnerabilities and Exposures (CVE) “being exploited within the wild.”
Earlier this 12 months, researchers warned concerning the privateness vulnerabilities within the Lightning community that would expose monetary info of Bitcoin transactions that have been believed to be nameless.
Presently, Lightning Labs, Blockstream, and ACINQ are the three main groups engaged on the event of the Lightning community.
Credit score: Source link