\n<\/p>\n
Affected configurations:\u00a0<\/b>All<\/span>\u00a0Go client versions\u00a0<\/span><\/p>\n Likelihood:\u00a0<\/b>Very low<\/span><\/p>\n Severity:\u00a0<\/b>High<\/span><\/p>\n Details:<\/b>\u00a0A bug in Geth (and potentially other clients) may suffer from a DoS attack and allows remote attackers to stall synchronisation process almost indefinitely by supplying a valid, lighter chain. More information will be given out a later time including the report that was submitted through the bug bounty program.<\/span><\/p>\n Effects on expected chain reorganisation depth:\u00a0<\/b>None<\/span><\/p>\n Proposed temporary workaround:<\/b>\u00a0None<\/span><\/p>\n Remedial action taken by Ethereum<\/b>: Provision of hotfixes as below:<\/span><\/p>\n If you’re using Mist: download the updated binary from the release page<\/a><\/p>\n If using the PPA:\u00a0<\/span>sudo apt-get update<\/span><\/span>\u00a0then\u00a0<\/span>sudo apt-get upgrade<\/span><\/span><\/p>\n If using brew:\u00a0<\/span>brew update<\/span><\/span>\u00a0then\u00a0<\/span>brew reinstall ethereum<\/span><\/span><\/p>\n If using a windows binary: download the updated binary from the\u00a0<\/span>release page<\/span><\/a><\/p>\n