星球日报|6月 01, 2026 14:06
Zcash Foundation releases Zebra 4.5.1 emergency update: fixing critical consensus level security vulnerabilities
Odaily Planet Daily News: Zcash Foundation announced the release of Zebra 4.5.1 version update, which fixes a consensus level security vulnerability and strongly recommends all node operators to upgrade immediately. The vulnerability number is GHSA-2prc-cj5x-4443, which involves a statistical error in sigop (signature operand) in P2SH transactions, which may lead to potential consensus fork risks. This fix has corrected the incomplete patching issue in the previous version 4.5.0, which was just released yesterday. The Zcash development team stated that the issue stems from the bias of sigop counting logic between different implementations, which may result in different outcomes for nodes when verifying transactions, thereby affecting consensus consistency on the chain. The fix involves rolling back and adjusting the Rust implementation logic to ensure consistency with the expected behavior of the protocol. The Zcash Foundation emphasizes that there is currently no solution to bypass this issue, and upgrading to 4.5.1 is the only way to ensure that nodes remain on the correct chain and avoid potential fork risks.
Share To
Timeline
HotFlash
APP
X
Telegram
CopyLink