Bitcoin Core Integer Overflow Bug Fix
Details of an integer overflow bug that caused an assertion crash were disclosed, with a fix released in Bitcoin Core version v22.0 on September 14, 2021.
This issue is being considered High severity.
Details of the Bug
CAddrMan: The bug resides in a 32-bit field called nIdCount within CAddrMan. This field is incremented each time a new address is inserted, serving as the identifier for the entry. If an attacker manages to insert 2^32 entries (for instance, by flooding the system with messages to spam addresses), the identifier overflows, leading to an assertion crash.
Bug Discovery and Fix
The vulnerability was discovered and disclosed by Eugene Siegel. Pieter Wuille was credited with fixing the bug promptly to ensure the security of Bitcoin Core.
Timeline of Events
- 21-06-2021 – Initial report by Eugene Siegel sent to security@bitcoincore.org
- 19-07-2021 – Fixes merged
- 13-09-2021 – Bitcoin Core version v22.0 released
- July 31, 2024 – Public disclosure of the bug
In conclusion, the timely discovery and fixing of the integer overflow bug in Bitcoin Core highlight the importance of regular security audits and swift response to potential vulnerabilities. By addressing such issues promptly, the Bitcoin community can ensure the stability and security of the network for users worldwide.
