Urgent bug fixes, Monero 0.13-RC1 tagged
by Riccardo Spagni
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Hi all,
A pair of denial of service vulnerabilities have been found, one by the
Cisco Talos team, and one reported to our VRP via HackerOne. In addition, a
bug was found that could affect the RPC wallet. Both fixes have been pushed
to master, and are part of the 0.13 release candidate, as well as to the
0.12 branch. Therefore, it is recommended that you update to 0.13 release
candidate in order to ensure you are ready for the expected network upgrade
next month, or alternatively use the 0.12 branch. I trust that everyone
running a service compiles their own binaries and doesn't need to trust the
release binaries;)
Riccardo
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEElLc43TUBMvWsvuodVUMt8xzNT80FAluqT0gACgkQVUMt8xzN
T80FsQgAisThCIa4o+HDEQzQ2Kb7snGEW2MfQH1hy7PSCDRY5qhfmJ/zPJ7CFkLG
MJFjgr8lyKmkBvmH1o4DfKrze3agMpuRK7T2LPoitb15bWjnR7SqW9XEd4dnpqHs
rgqzgrH92snzSZ9GgkKMMwp+h7/f2K+piAlKQ+QAMXT0E5QOcfBD1h/kbuFbKeHb
Xa846MvkKbysd4CRtCHGD5UL9tm7eGIVe/UCxAaFKIWmw35hRIte7toI4fI9slzV
JImvlbQlazVBe+TvSOhmBFlk/eR6Q8ywbPUo+BxVjvsizQvvmiibP/z+pd3VuO0c
ZURspTRvRkgZZFqWLnX4i8cE1IKaXw==
=AWNB
-----END PGP SIGNATURE-----
6 years