Lightning community node operators working LND variations previous to the Oct. 1 model 0.11 improve have been urged to improve instantly after a vu
Lightning community node operators working LND variations previous to the Oct. 1 model 0.11 improve have been urged to improve instantly after a vulnerability was found affecting LND variations 0.10 and beneath.
The vulnerability was made public in an Oct. 9 announcement from Lightning engineer Conner Fromknecht, Head of Cryptographic Engineering at Lightning Labs. Fromknecht mentioned:
“Whereas now we have no motive to consider these vulnerabilities have been exploited within the wild, we strongly urge the neighborhood to improve to lnd 0.11.Zero or above ASAP,”
Few particulars have been revealed to this point, with Fromknecht assuring that the vulnerabilities might be disclosed in full on Oct. 20.
This isn’t the primary time a vulnerability has been found within the Lightning community. Final 12 months, Lightning Labs CTO, Olaoluwa Osuntokun, confirmed situations of Widespread Vulnerabilities and Exposures (CVE) “being exploited within the wild.”
Earlier this 12 months, researchers warned concerning the privateness vulnerabilities within the Lightning community that would expose monetary data of Bitcoin transactions that had been believed to be nameless.
At the moment, Lightning Labs, Blockstream, and ACINQ are the three main groups engaged on the event of the Lightning community.