🚨 Zebra 4.3.1 Released – Critical Update! The Zcash Foundation has announced version 4.3.1 of the Zebra node software, containing critical security fixes. All node operators must update immediately. 🔍 Critical Security Fixes: • Consensus bug (CVE-2026-40880): A logic flaw in the transaction validation cache allowed a malicious miner to cause a chain split on the network → fully removed • Memory exhaustion vulnerability (CVE-2026-40881): Nodes could be crashed via malformed addr/addrv2 messages → memory allocation now capped • Sighash validation errors: Critical inconsistencies between Zebra and zcashd that caused transaction acceptance discrepancies have been resolved • Orchard transaction panic: Risk of node crash via specially crafted transactions has been eliminated • JSON-RPC DoS: Node crashes triggered by incomplete requests have been prevented 🛡️ Security Improvements: • Supply chain and license audits added to CI pipelines • SECURITY.md updated (secure disclosure channel) • Historical security records made more transparent ⚙️ New Features: • 🐳 Docker-based mining setup • 🔄 Automatic checkpoint and end-of-support block height updates ⚠️ Important: These vulnerabilities can directly cause consensus splits and node crashes. ➡️ No workaround exists — updating is the only solution. 🔗 Source: https://t.co/LO3rkw3veL #Zcash #Crypto #Blockchain #NodeOperators #privacy