Bitcoin Core developer Luke Dashjr: The vulnerability exploited by "Inscription" in the Bitcoin Core client has been assigned the identifier CVE-2023

On December 10th, Bitcoin Core developer Luke Dashjr posted on social media that "Mingwen" has been assigned identifier CVE-2023-50428 by exploiting a vulnerability in the Bitcoin Core client.

As previously reported by BlockBeats, on December 6th, Bitcoin Core developer Luke Dashjr posted on social media that "Mingwen" is using a vulnerability in the Bitcoin Core client to send garbage information to the blockchain. Since 2013, Bitcoin Core has allowed users to set additional data size limits when forwarding or mining transactions. By blurring its data into program code, Mingwen bypassed this limit.

Luke Dashjr said, "This vulnerability was recently fixed in Bitcoin Knots v25.1. Due to serious disruptions to my workflow at the end of last year (v24 was completely skipped), the fix took longer than usual. In the upcoming v26 release, Bitcoin Core still has vulnerabilities. I can only hope it will be finally fixed before v27 next year."