QBFT HasBadProposal Quorum Inconsistency, Consensus Liveness Violation
QBFT's HasBadProposal check is symmetric across the round, one prepared bad proposal halts the round for every validator.
Blockchain / Consensus
2 writeupsCVE-2024-32972: Integer Underflow in GetBlockHeaders Causes Full Network Denial of Service
N-day demonstration of CVE-2024-32972 against an unpatched go-ethereum fork. Single unauthenticated TCP packet causes 7.8 GB allocation, OOM-kills the node. Targeting all IBFT validators halts the entire chain.
Read the writeup →