Lightning Vulnerability Discovered; LND Node Operators Urged to Upgrade ASAP
An undisclosed vulnerability in LND versions 0.10.x and below was revealed Thursday. Developers are urging node operators to update to the newest version.
Oct 9, 2020 at 12:58 a.m. UTCUpdated Aug 19, 2021 at 4:51 a.m. UTC
:format(webp)/cloudfront-us-east-1.images.arcpublishing.com/coindeskuat/TK26XOFTUZEH3CE45F5UTRVKB4.jpg)
A vulnerability in LND versions 0.10.x and below has been disclosed to the Lightning Labs team, according to engineer Conner Fromknecht in the Lightning Network developer channel Thursday. In light of the disclosure, the firm is urging node operators to upgrade to versions 0.11.0 or higher as soon as possible.
STORY CONTINUES BELOW
- No known exploitations of the vulnerability have been found to date, but "circumstances surrounding the discovery resulted in a compressed disclosure timeline," Fromknecht said.
- The vulnerability was "partially" disclosed with a detailed publishing of the findings promised Oct. 20.
- Lightning Labs – one of three major implementations of the Lightning Network – released its newest v0.11.1-beta on Oct. 1.
- Lightning Labs did not respond immediately to a request for comment.
13:18
Bitcoin Mining in the U.S. Will Become 'a Lot More Decentralized': Core Scientific CEO
05:10
Binance to Discontinue Its Nigerian Naira Services After Government Scrutiny
04:07
The first video of the year 2024
40:07
The last regression video of the year 3.67.0
:format(webp)/downloads.coindesk.com/arc/failsafe/user/1x1.png)