Go modules package
github.com/btcsuite/btcd
pkg:golang/github.com/btcsuite/btcd
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-38365 | — | < 0.24.2-beta.rc1 | 0.24.2-beta.rc1 | Oct 11, 2024 | btcd is an alternative full node bitcoin implementation written in Go (golang). The btcd Bitcoin client (versions 0.10 to 0.24) did not correctly re-implement Bitcoin Core's "FindAndDelete()" functionality. This logic is consensus-critical: the difference in behavior with the oth | ||
| CVE-2024-34478 | — | < 0.24.0 | 0.24.0 | May 5, 2024 | btcd before 0.24.0 does not correctly implement the consensus rules outlined in BIP 68 and BIP 112, making it susceptible to consensus failures. Specifically, it uses the transaction version as a signed integer when it is supposed to be treated as unsigned. There can be a chain s | ||
| CVE-2022-44797 | — | < 0.23.2 | 0.23.2 | Nov 7, 2022 | btcd before 0.23.2, as used in Lightning Labs lnd before 0.15.2-beta and other Bitcoin-related products, mishandles witness size checking. |
- CVE-2024-38365Oct 11, 2024affected < 0.24.2-beta.rc1fixed 0.24.2-beta.rc1
btcd is an alternative full node bitcoin implementation written in Go (golang). The btcd Bitcoin client (versions 0.10 to 0.24) did not correctly re-implement Bitcoin Core's "FindAndDelete()" functionality. This logic is consensus-critical: the difference in behavior with the oth
- CVE-2024-34478May 5, 2024affected < 0.24.0fixed 0.24.0
btcd before 0.24.0 does not correctly implement the consensus rules outlined in BIP 68 and BIP 112, making it susceptible to consensus failures. Specifically, it uses the transaction version as a signed integer when it is supposed to be treated as unsigned. There can be a chain s
- CVE-2022-44797Nov 7, 2022affected < 0.23.2fixed 0.23.2
btcd before 0.23.2, as used in Lightning Labs lnd before 0.15.2-beta and other Bitcoin-related products, mishandles witness size checking.