The developers of Geth, the Ethereum client side, released a version of the 1.14.13 codenamed "Schwarzschild" on Thursday. This release explicitly addresses a vulnerability affecting the peer-to-peer (p2p) layer of Geth that could result in Distributed Denial-of-service to nodes running them, and possibly the layer 2 client side.
Geth is the most widely used execution layer client side of Ethereum. The vulnerability is classified as CVE-2025-24883, noting that Geth versions are "vulnerable to DoS attacks via malicious p2p messages". Version 1.14.0 appears to have introduced this security issue accidentally. Users running Geth 1.14 (or later, until 1.14.13) are urged to update to the latest version to mitigate the risk of node crashes or other outages.
This urgent release is critical because the vulnerability, originally discovered by security researchers at Polygon, could allow attackers to remotely crash nodes running vulnerable versions of Geth. The Geth team clarified that nodes running on the v1.13.x series are not affected by this particular vulnerability.
Ethereum client side Geth releases "Schwarzschild" update to fix old version vulnerabilities
2025-01-31 07:24:58
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
Previous article:
以太坊客户端Geth发布“Schwarzschild”更新,修复旧版本漏洞Next article:
现货黄金上破2800美元 再创历史新高