CVE-2019-11636

CVE-2019-11636

EPSS 2.2%

Zcash 2.x allows an inexpensive approach to "fill all transactions of all blocks" and "prevent any real transaction from occurring" via a "Sapling Wood-Chipper" attack.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/zcash/zcash/issues/3955 https://saplingwoodchipper.github.io https://twitter.com/dukeleto/status/1120467430118232066