The Lightning Labs team urged the community to upgrade to the latest LND client version for the Lightning Network due to the discovered vulnerability.
In the blog отмечается, that the issue affects versions 0.10.x and earlier. The technical details were not disclosed by Conner Fromknecht, a spokesperson for the team. According to him, a full analysis will be published on October 20.
Partial LND Vulnerability Disclosure, Update to 0.11.x
Full disclosure will be published on October 20th 2020.https://t.co/1vnXLDME7G
— Conner Fromknecht (@bitconner) October 9, 2020
“Although we have no reason to believe that these vulnerabilities were exploited in practice, we strongly recommend the community upgrade to LND 0.11.0 or higher,” the statement said.
Developers issued a similar plea to users in late August. At that time, the vulnerability threatened the Eclair wallet from ACINQ, c-lightning from Blockstream and the LND client.
A new bug appeared after the addition of Wumbo channels to the network. It allowed bitcoins to be withdrawn from circulation with little effort.
Lightning Network: fast and cheap Bitcoin transactions
Follow ForkLog news on Twitter!