all InfoSec news
Numbers turned weapons: DoS in Osmosis’ math library
Malware Analysis, News and Indicators - Latest topics malware.news
By Sam Alws
Trail of Bits is publicly disclosing a vulnerability in the Osmosis chain that allows an attacker to craft a transaction that takes up a disproportionate amount of compute time on Osmosis nodes compared to the amount of gas it consumes. Using the vulnerability, an attacker can halt the Osmosis chain by spamming validators with these transactions. After we informed the Osmosis developers about this bug, they performed a hard fork that fixed the vulnerability, avoiding the attack. …
attacker bits compute dos gas library math nodes numbers sam trail of bits transaction vulnerability weapons