Ethereum Developers Address Vulnerability in Leading Client

The team behind the Ethereum client Geth, written in the Go programming language, has released version 1.14.13, codenamed Schwarzschild.

?PSA: go-ethereum emergency release?

We released v1.14.13 today which fixes an issue introduced in 1.14.0. If you are running a version of geth that 1.14 or later, please update to the newest version. Nodes running v1.13.x are not affected#ethereumhttps://t.co/mXqkbIEziv

— MariusVanDerWijden (@vdWijden) January 30, 2025

The update addresses a vulnerability identified as CVE-2025-24883. Exploiting this flaw allows an attacker to halt a node’s operation through DoS attacks via malicious P2P messages.

The bug was first discovered by Polygon security expert David Matosse.

The release of the Geth update was coordinated with several L2 networks, including Optimism, which could have been affected by the vulnerability, the client developers noted.

The issue did not affect software versions prior to v1.14.

“Please update your nodes as soon as possible,” urged the programmers.

Geth covers nearly 50% of the Ethereum client segment. The solution dominates alongside Nethermind (over 32%) written in C#.

Earlier, Ethereum developers planned the implementation of the major Pectra upgrade in the main network for March 2025.