Fun

Bitcoin Core devs set up new policy aimed at handling ‘critical bugs’

News Feed - 2024-07-04 01:07:50

Brayden Lindrea4 hours agoBitcoin Core devs set up new policy aimed at handling ‘critical bugs’Bitcoin Core developer Antoine Poinsot said there is a dangerous perception that Bitcoin Core is free of bugs, noting it is “dangerous and, unfortunately, not accurate.”1626 Total views3 Total sharesListen to article 0:00NewsOwn this piece of crypto historyCollect this article as NFTJoin us on social networksA group of Bitcoin Core developers has launched a “critical bug” disclosure policy aimed at more effectively communicating Bitcoin security vulnerabilities.


“The project has historically done a poor job at publicly disclosing security-critical bugs, whether externally reported or found by contributors,” Bitcoin core developer Antoine Poinsot and five others wrote to members of the Bitcoin Development Mailing List on July 3.


This has led to a situation where Bitcoin users are led to believe that Bitcoin Core is free of bugs, but Poinsot stressed that this simply isn’t the case.“This perception is dangerous and, unfortunately, not accurate.”


Bitcoin Core is the software that Bitcoin node operators download to access the Bitcoin blockchain, validate transactions and build blocks. It plays a crucial role in securing more than $1.1 trillion locked in the Bitcoin network.Source:Antoine Poinsot


Poinsot said the new policy would allow better communication about the risk of running outdated versions of Bitcoin Core and would provide a standardized disclosure process that would give researchers more incentive to find and responsibly disclose vulnerabilities.“Making the security bugs available to the wider group of contributors can help prevent future ones.”


The new disclosure policy will categorize vulnerabilities based on four levels of severity.


The first category, “low,” includes bugs that are hard to exploit and have low impact, such as a wallet bug that requires access to the victim’s machine.


The second category, “medium” are bugs with limited impact, such as local network remote crash.


The last two categories include bugs of “high” severity that could have significant impact, while the “critical” severity are ones that threaten the entire network’s integrity.


An example of a critical bug could involve manipulating Bitcoin Core to inflate Bitcoin’s hard-capped supply or committing a “coin theft.”


Low, medium and high bugs will aim to be disclosed two weeks after a fixed version is released, while disclosures for critical bugs will be determined on a case-by-case basis.


Related:Bitcoin Ordinals proponents should demand a new Bitcoin fork


The policy will be “gradually adopted” in the coming months, Poinsot added.


Poinsot noted that all vulnerabilities fixed in Bitcoin Core versions 0.21.0 and earlier has been disclosed as of July 3, and disclosures for versions 0.22.0 and 0.23.0 will come out later this month and in August.


Bitcoin Core version 27.1 is the latest version adopted.


The new policy received praise from fellow Bitcoin Core developer Eric Voskuil:“Many other projects have been on the receiving end of this misperception, and it has in fact caused material harm to the community. I don"t know what precipitated this change, but props to you all for stepping up.”


Magazine:‘Bitcoin Layer 2s’ aren’t really L2s at all: Here’s why that matters# Bitcoin# Bitcoin Core# Business# Security# Adoption# DevelopersAdd reaction

News Feed

Sotheby's to sell CryptoPunk and Beeple NFT at digital auction
Ezra Reguerra12 hours agoSotheby"s to sell CryptoPunk and Beeple NFT at digital auctionThe online event will occur at 7 pm UTC and end on Aug. 22. 1568 Total views17 Total sharesListen to article 0:00NewsOwn this piece
Bitcoin price reclaims $70K as Coinbase BTC supply hits 9-year low
Zoltan Vardai6 hours agoBitcoin price reclaims $70K as Coinbase BTC supply hits 9-year lowBitcoin supply on cryptocurrency exchange Coinbase has reached a nine-year low as BTC accumulation resumes to push price back abov
Bybit introduces Indian digital rupee CBDC payment option
Derek Andersen5 hours agoBybit introduces Indian digital rupee CBDC payment optionThe use of the CBDC on the cryptocurrency exchange will enhance security and, it hopes, attract merchants.449 Total views15 Total sharesLi
Bitcoin needs to hold above $80,000 to keep mining profitable post-halving
Prashant Jha13 hours agoBitcoin needs to hold above $80,000 to keep mining profitable post-halvingFor miners to remain profitable and continue their mining operations, the BTC price must rise above $80,000 post-halving.1
Tom Mitchelhill7 hours agoReddit to wind down blockchain-based rewards service ‘Community Points’Reddit will shutter its Community Points feature on Nov. 8, citing scalability issues.1315 Total views13 Total sharesLi
Circle launches USD Coin on Ethereum zkSync
Zhiyuan Sun6 hours agoCircle launches USD Coin on Ethereum zkSyncA surge in DeFi applications building on zkSync has led to demand for stablecoins that support the blockchain.887 Total views35 Total sharesListen to artic
While Politicians Worldwide Clamor Over Tax Evasion, Pandora Papers Show Bureaucrats Are the Worst Offenders
While Politicians Worldwide Clamor Over Tax Evasion, Pandora Papers Show Bureaucrats Are the Worst Offenders As bureaucrats across the globe continue to ask the common citizenry fo
Bitcoin uses more renewable energy, but will Tesla accept it again?
Daniel Ramirez-Escudero2 hours agoBitcoin uses more renewable energy, but will Tesla accept it again?Tesla removed Bitcoin payments citing environmental concerns, but Elon Musk pledged to reinstate them if renewable ener
Onchain Data Shows FTX US Paused ETH Withdrawals for 2 Hours, Users Complain of Withdrawal Errors
Onchain Data Shows FTX US Paused ETH Withdrawals for 2 Hours, Users Complain of Withdrawal Errors After FTX International’s parent firm West Realm Shires Services filed for
South African University Professor Urges Country to ‘Finalize Cryptocurrency Policy’ — Warns Against Resisting Crypto
South African University Professor Urges Country to "Finalize Cryptocurrency Policy" — Warns Against Resisting Crypto A professor with the University of Johannesburg, Rabelani Da
Brayden Lindrea8 hours agoLido on Solana wind down ‘deemed a necessity’ after low fees, says staking firmUnsustainable financials and low fees generated by Lido on Solana were two of the main reasons for the sunsetti
Amaka Nwaokocha12 hours agoSEC wins default judgment against Thor Technologies and founderThor Technologies has been instructed to pay $903,193.06, including disgorgement of $744,555 and prejudgment interest amounting to