Home - Waterfall Grid T-Grid Console Builders Recent Builds Buildslaves Changesources - JSON API - About

Change #20673

Category None
Changed by anonimal <anonimalohnoyoudont@getmonero.org>
Changed at Fri 14 Jun 2019 08:47:05
Repository https://github.com/monero-project/monero.git
Branch master
Revision 8f66b7053a8e4521fdd68c1d74718e73345fb158

Comments

cryptonote_protocol_handler: prevent potential DoS
Essentially, one can send such a large amount of IDs that core exhausts
all free memory. This issue can theoretically be exploited using very
large CN blockchains, such as Monero.

This is a partial fix. Thanks and credit given to CryptoNote author
'cryptozoidberg' for collaboration and the fix. Also thanks to
'moneromooo'. Referencing HackerOne report #506595.

Changed files