It was the big hot item of the last weekend. A bug was found on older versions of GETH, from one of the 3 biggest “clients” of the network. The vulnerability could have affected more than 53% of the nodes on the Ethereum network (ETH) and validators who have not updated to the latest version are still potentially at risk.
Panic on board on Ethereum
A major bug has affected just over half of the nodes on the Ethereum network, causing those running older versions of GETH to be separated from the new version on the main network. We explained it to you from a technical point of view in the article : Panic on Ethereum : double spending alert… And wild fork !
“Do not make transactions for a while until new confirmations, unless you are sure to submit to the latest version of Geth “
Andre Cronje, founder of the Yearn.finance protocol
He also added with his customary wisdom, “Take a walk outside, we all need it.”
According to one ofEthereum‘s(ETH) lead developers, Marius van der Wijden, an individual (or group of individuals) may have exploited a vulnerability affecting earlier versions of Geth, one of Ethereum’s software clients tasked with the highly strategic job of verifying transactions for each block.
For the more geeky among you, Go Ethereum (GETH) is one of the three original implementations (along with C++ and Python) of the Ethereum protocol. It is written in Go, fully open source and licensed under the GNU LGPL v3.
According to the developer, Geth clients and Ethereum nodes running v1.10.7 or earlier are in danger of nothing less than splitting from the network:
A network under high surveillance
Several Twitter accounts have been quick to warn Geth client validators to update to v1.10.8, in order to apply the patch as quickly as possible. Chains compatible with Ethereum virtual machines, such as Polygon (MATIC), may also be at risk. According to data fromEthernodes.org, 74.6% of all Ethereum nodes run Geth, with only 28.4% of Geth clients currently running v1.10.8, meaning that about 53% of all nodes in the network were potentially at risk at the time of the alert.
While bugs have previously threatened nodes in the <a href=”https://journalducoin.com/ethereum/actualites-ethereum/” target=”_self” rel=”noopener”>Ethereum in the past, this incident appears to be one of the largest ever to affect a major blockchain. For comparison, in August 2020, about 12% of the network’s nodes had become unusable in another security incident.
However, this kind of incident also shows the solidarity and resilience of the Ethereum network. The core developers of the network have indeed made available the patch on August 24 and the community of miners has quickly and mostly updated the versions of Go ETHereum problematic. Finally more fear than harm, for a bug that could have been dramatic if it had been ignored. Anyway the Ethereum hashrate is soaring, in the middle of the NFT craze.
If you’re among the first 400 to read this, don’t miss the chance to grab an airdrop of 5$ offered for any registration on the famous Ascendex platform! This welcome bonus can be combined with a 10% discount on your trading fees! (affiliate link, subject to trading at least $100, see conditions on site).