Tag

Signature-Validation

2 briefs RSS

Nimiq nimiq-keys Ed25519 Signature Length Vulnerability (CVE-2026-40092)

A malicious network peer can crash a Nimiq full node by publishing a crafted Kademlia DHT record due to unchecked Ed25519 signature length in `TaggedPublicKey::verify` (CVE-2026-40092).

nimiq-keys dos nimiq signature-validation

2r 1t May 15, 2026

critical advisory

Zebra Consensus Failure due to Improper SIGHASH_SINGLE Validation

2 rules 1 TTP

Zebra 4.4.0 failed to enforce a ZIP-244 consensus rule for V5 transparent transactions, potentially leading to a consensus split with zcashd nodes if an input is signed with `SIGHASH_SINGLE` and there is no corresponding output.

zebra +1 consensus failure signature validation network partition

2r 1t Oct 26, 2024