Headline
CVE-2022-28937: A malicious node becomes a leader and set the view to a very large one, blocks cannot be processed · Issue #2312 · FISCO-BCOS/FISCO-BCOS
FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node, via an invalid proposal with an invalid header, will cause normal nodes to stop producing new blocks and processing new clients’ requests.
Describe the bug
I setup a group with 10 nodes. One of them are malicious one. First, the malicious node starts, and after that all the other nodes start. Then I start the press testing program to send transactions to the group. And it stuck here:
To Reproduce
Steps to reproduce the behavior:
- setup 10 nodes
- start press testing program
- the bug occurs
Expected behavior
The system should not stuck and keep changing the view.
Screenshots
Environment (please complete the following information):
- OS: Ubuntu 20.04
- FISCO BCOS Version 3.0.0-rc2
Additional context
There maybe an integer overflow during the viewchange and the malicious node can always be the leader.
Related news
ERP-Pro v3.7.5 was discovered to contain a SQL injection vulnerability via the component /base/SysEveMenuAuthPointMapper.xml..
FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node can trigger an integer overflow and cause a Denial of Service (DoS) via an unusually large viewchange message packet.
FISCO-BCOS release-3.0.0-rc2 was discovered to contain an issue where a malicious node, via an invalid proposal with an invalid header, will cause normal nodes to stop producing new blocks and processing new clients' requests.