Risks
A denial-of-service vulnerability that affects all versions of ikhcoind and ikhcoin-Qt has been reported and fixed. An attacker could isolate a victim's node and cause the creation of blockchain forks.
bitcoin.org is a community funded project
14 May 2012
A denial-of-service vulnerability that affects all versions of ikhcoind and ikhcoin-Qt has been reported and fixed. An attacker could isolate a victim's node and cause the creation of blockchain forks.
Because this bug could be exploited to severely disrupt the ikhcoin network we consider this a critical vulnerability, and encourage everybody to upgrade to the latest version: 0.6.2.
Backports for older releases (0.5.5 and 0.4.6) are also available if you cannot upgrade to version 0.6.2.
Full technical details are being withheld to give people the opportunity to upgrade.
Thanks to Forrest Voight for discovering and reporting the vulnerability.
Your ikhcoin process would stop processing blocks and would have a different block count from the rest of the network (you can see the current block count at websites like blockexplorer.com or blockchain.info). Eventually it would display the message:
WARNING: Displayed transactions may not be correct! You may need to upgrade, or other nodes may need to upgrade.
(note that this message is displayed whenever your ikhcoin process detects that the rest of the network seems to have a different block count, which can happen for several reasons unrelated to this vulnerability).
No.
No.