-
Notifications
You must be signed in to change notification settings - Fork 263
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
State syncing validator from malicious node may lead to a chain split #1468
Labels
Comments
rootulp
added
the
T:dependencies
Type: Pull requests that update a dependency file
label
Sep 4, 2024
I'm going to try and merge v0.34.35 into v0.34.x-celestia. If that proves difficult, I'll cherry-pick the commits that resolve the security advisory. |
rootulp
pushed a commit
to rootulp/celestia-core
that referenced
this issue
Sep 20, 2024
Otherwise, the events from app's BeginBlock won't be fired. Closes celestiaorg#1468 Co-authored-by: forcodedancing <just.haha.it@gmail.com> Co-authored-by: Andy Nogueira <me@andynogueira.dev>
2 tasks
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
Context
GHSA-g5xx-c4hv-9ccc
Problem
There is a security vulnerability with state sync
Proposal
Pull upstream changes from https://github.com/cometbft/cometbft/releases/tag/v0.34.34
The text was updated successfully, but these errors were encountered: