Right now we printed the primary set of vulnerabilities from the Ethereum Basis Bug Bounty Program. These vulnerabilities had been found earlier and he reported them on to the Ethereum Basis or consumer workforce through a bug bounty program. execution layer When consensus layer.
Via a bug bounty program that enables the Ethereum Basis (EF) to coordinate and cross-check vulnerabilities throughout its purchasers, EF presently helps Nimbus, Teku, Lighthouse, Prysm, Lodestar, Go Ethereum, Nethermind, Erigon, and Besu. We settle for vulnerability experiences.
New repository and vulnerability record
Yow will discover the complete record of vulnerabilities and extra data within the git repository right here.
new Disclosure repository Catalog all recognized vulnerabilities patched earlier than the most recent laborious fork of the execution and consensus layers.
I want to present a big quantity shout out Due to everybody concerned find and reporting vulnerabilities, and to the workforce answerable for fixing them. We have now tried to incorporate the reporter’s title or alias, however the consumer, his workforce, and the Ethereum Basis have many builders and researchers who’ve discovered and stuck vulnerabilities exterior of Bounty’s program. There are additionally many unsung heroes, together with builders on consumer groups, neighborhood members, and others who’ve spent numerous hours triaging, cross-checking, and mitigating vulnerabilities earlier than they had been exploited.
For extra data and to be taught extra about our disclosure coverage, timelines and stock, please see our new Disclosure repository.
Your immeasurable efforts have helped make sure the safety of Ethereum. thanks very a lot!