The Zcash Foundation has released Zebra 4.4.0, addressing critical security vulnerabilities in its consensus protocol. The update resolves a denial-of-service vulnerability that could halt block discovery, corrects sigops count issues affecting transaction validation, and fixes a transparent sighash consensus discrepancy. Additionally, it mitigates a memory allocation risk in network deserialization. Node operators are strongly advised to upgrade immediately to ensure network security and stability. The release also includes resource limits on the indexer gRPC server and RPC request body sizes, and updates the librustzcash dependency to address a security risk.
Zcash Foundation Urges Immediate Upgrade to Zebra 4.4.0 for Security Fixes
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.