\n<\/p>\n
State transition and consensus issue in geth client causes panic (crash) when processing a (valid) block with a specific combination of transactions, which may cause overall network instability if block is accepted and relayed by unaffected clients thus causing a DoS. This may happen in a block that contains transactions which suicide to the block reward address. <\/strong><\/p>\n Affected configurations: <\/b>Issue reported for Geth.While investigating the issue, related issues were discovered and corrected in pyethereum, hence pyethapp is also affected. C++ clients are unaffected.<\/span><\/p>\n Likelihood: <\/b>Low<\/span><\/p>\n Severity: <\/b>High<\/span><\/p>\n Complexity: <\/b>High<\/span><\/p>\n Impact: <\/b>Network Instability and DoS<\/span><\/p>\n Details: A block containing a specific combination of transactions which include one or more SUICIDE calls, while valid, causes panic crash in go-ethereum client and crash in pyethereum. Additional details may be posted when available.<\/span><\/b><\/p>\n Effects on expected chain reorganisation depth:\u00a0<\/b>None.<\/p>\n Remedial action taken by Ethereum<\/b>: Provision of fixes as below.<\/span><\/p>\n Proposed temporary workaround:<\/b> Switch to unaffected client such as eth (C++).<\/span><\/p>\n Fix:<\/b>Upgrade geth and pyethereum client software.<\/span><\/p>\n go-ethereum (geth):<\/b><\/p>\n Please note that the current stable version of geth is now 1.1.1; if you are running 1.0 and using a package manager such as apt-get or homebrew the client will be upgraded.<\/span><\/p>\n If using the PPA: <\/span>sudo apt-get update<\/span> then <\/span>sudo apt-get upgrade<\/span><\/p>\n If using brew: <\/span>brew update<\/span> then <\/span>brew reinstall ethereum<\/span><\/p>\n If using a windows binary: download the <\/span>updated binary<\/span><\/a>.<\/span><\/p>\n If you are building from source: <\/span>git pull<\/span> followed by <\/span>make geth<\/span> (please use the Master branch commit <\/span>8f09242d7f527972acb1a8b2a61c9f55000e955d)<\/span><\/span><\/p>\n \u00a0<\/p>\n The correct version for this update on Ubuntu AND OSX is Geth\/v1.1.1-<\/span>8f09242d<\/span><\/p>\n pyethereum:<\/b><\/p>\n