Home
News
Details

Babylon Staking Protocol Discovers Vulnerability That Could Slow Block Generation

iconChaincatcher
Share
Share IconShare IconShare IconShare IconShare IconShare IconCopy
This is the logo of the coin.
BTC
$71,780.801.46%
AI summary iconSummary

expand icon
News of a vulnerability in the Babylon staking protocol emerged as developers disclosed a flaw in the BLS voting extension scheme. The issue could allow malicious validators to omit the block hash field, thereby disrupting consensus checks at epoch boundaries. This flaw might slow down block generation if multiple validators are affected. Although developers have not observed active exploitation, they have warned of potential abuse if the issue remains unresolved. A protocol update is expected to address the problem.

According to a ChainCatcher report citing Cointelegraph, developers stated in a post published on GitHub on Thursday that a newly disclosed software vulnerability in the Bitcoin staking protocol Babylon could allow malicious validators to disrupt parts of the network's consensus process, potentially slowing down block production during critical periods. The vulnerability affects Babylon's block signing scheme, specifically the BLS voting extension scheme, which is used to prove that validators have reached an agreement on a particular block. The flaw allows malicious validators to intentionally omit the block hash field when sending voting extensions, potentially causing consensus issues among validators during network epoch boundaries. The block hash field is used to inform validators which specific blocks they are voting for during the consensus process, and this vulnerability allows the omission of this field. Through this vulnerability, malicious validators could theoretically cause other validators to crash during critical consensus checks at phase boundaries. If multiple validators are affected, it could lead to a slowdown in block production. There are currently no reports of this vulnerability being actively exploited, but developers have warned that if left unresolved, the flaw could be abused.

Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information. Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.