We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
A parsing vulnerability in lnd's onion processing logic led to a DoS vector due to excessive memory allocation.
The issue was patched in lnd v0.17.0. Users should update to a version >= v0.17.0 to be protected.
Detailed blog post: https://morehouse.github.io/lightning/lnd-onion-bomb/
Developer discussion: https://delvingbitcoin.org/t/dos-disclosure-lnd-onion-bomb/979
Impact
A parsing vulnerability in lnd's onion processing logic led to a DoS vector due to excessive memory allocation.
Patches
The issue was patched in lnd v0.17.0. Users should update to a version >= v0.17.0 to be protected.
References
Detailed blog post: https://morehouse.github.io/lightning/lnd-onion-bomb/
Developer discussion: https://delvingbitcoin.org/t/dos-disclosure-lnd-onion-bomb/979