Odaily Planet Daily News Bitcoin developers recently disclosed details of a serious software vulnerability again. According to senior Core developers, more than 13% of home and business computers around the world that execute Bitcoin rules are vulnerable to remote shutdown. The vulnerability is named CVE-2024-35202 and affects Bitcoin nodes running Core software versions before 25.0. Nodes that have not been updated to at least 25.0 allow attackers to remotely exploit assertions in the software logic that processes block transactions ('blocktxn') messages. It is worth mentioning that the vulnerability has little economic benefit for ordinary attackers. Specifically, the vulnerability stems from Core's compact block protocol, which uses shortened transaction identifiers to reduce the use of Internet bandwidth. Attackers can trigger conflicts in these identifiers, causing nodes to request a complete block. Although requesting complete, unabridged blocks is a security precaution, software versions before 25.0 have flaws in the logic of processing subsequent blocktxn messages. In short, it is possible to manipulate logic gates to force a node into an invalid state, causing it to crash completely. The vulnerability was discovered and disclosed by Niklas Gögge, who also provided a patch deployed in Bitcoin Core v25.0. He fixed the vulnerability in Bitcoin Core's pull request number 26898, and other developers merged it into production before May 26, 2023. BitNodes.io information shows that 13.7% of the 18,843 nodes running the Bitcoin network are vulnerable to attacks. Developers urge all node operators to update their software to fix this vulnerability. The latest version of Bitcoin Core software is 28.0. (Protos)