The Ethereum network is experiencing a computational denial-of-service attack targeting miners and nodes through the EXTCODESIZE opcode. The attack exploits a vulnerability where certain blocks require excessive processing time despite low gas prices, causing network disruption.
A high-severity DoS vulnerability has been discovered in geth 1.4.8's implementation of the DAO soft fork. The vulnerability allows attackers to execute EVM code up to the block gas limit without payment, creating a potential denial of service attack vector.
A critical security vulnerability has been discovered in Geth and potentially other Ethereum clients that allows remote attackers to perform DoS attacks and stall the synchronization process. While the likelihood of exploitation is very low, the severity is high, prompting immediate updates for all Go client versions.
A critical security vulnerability was discovered in Go and Python Ethereum clients (geth) that causes crashes when processing blocks with specific transaction combinations. The bug creates state transition and consensus issues that could lead to network-wide DoS attacks if exploited, but has been fixed and requires immediate client updates.
A transaction spam attack targeted the network using EXTCODESIZE opcode calls, causing blocks to take 20-60 seconds to validate due to excessive disk fetches. This resulted in a 2-3x reduction in network performance as validators struggled to process the malicious transactions.
