\n<\/p>\n
Affected configurations<\/strong>: geth 1.4.8<\/p>\n Likelihood<\/strong>: High<\/p>\n Severity<\/strong>: High<\/p>\n Details<\/strong>:<\/p>\n An attack vector has been identified in the freshly released implementation of the DAO\u00a0soft fork. The fork enactment code in geth (and other clients) allows execution of\u00a0EVM code up to the block gas limit without paying for gas. This can slow down mining\u00a0and prevent inclusion of legitimate transactions.<\/p>\n The soft fork will not be enabled if the gas limit of block 1800000 is above\u00a04000000 gas (i.e. if the community vote to activate the fork fails).\u00a0The attack cannot be performed in this case.<\/p>\n Effects on expected chain reorganisation depth<\/strong>: None<\/p>\n Proposed temporary workarounds<\/strong>:<\/p>\n Follow-up action<\/strong>:<\/p>\n Available options are being considered. The community can avoid any negative consequences\u00a0of the soft fork by voting against it until a better solution has been found. Note that,\u00a0to the best of our knowledge, no funds can be retrieved from the affected DAOs until July 14th 2016.\u00a0There is no immediate urgency to block transactions while further proposals\u00a0are being worked out.<\/p>\n<\/div>\n\n