Security advisories for issues found by Asymmetric Research. Please also see our blog.
| Title | Description | Author |
|---|---|---|
| Polygon Heimdall - Ethereum Log Confusion | A log confusion vulnerability that allows Heimdall to be coerced into parsing specially crafted events as highly sensitive events, that could lead to taking over the network's consensus layer. | Felix Wilhelm |
| Cosmos IBC - Reentrancy Infinite Mint | A reentrancy vulnerability during the handling of timeout messages could have allowed an attacker to mint an infinite amount of IBC tokens on affected Cosmos chains. | Max Dulin (Strikeout) |
| Evmos - Distribution Precompile Denial of Service | A vulnerability in the Distribution precompile that allows allocating large chunks of memory, leading to out-of-memory exceptions. | Jason Matthyser |
| Evmos - Precompile State Commit Infinite Mint | Due to incorrect state commits during precompile execution, it is possible to introduce discrepancies in the EVM state that could be abused to mint native tokens. | Jason Matthyser |
| Circle - Noble CCTP Mint Bug | A vulnerability that could have been exploited by circumventing the CCTP message sender verification process to potentially mint fake USDC tokens on Noble. | Ruslan Habalov |
| Ethereum - Ghost in the Block | Slight nuances in SSZ deserialization between the Prysm and Lighthouse clients could have allowed an attacker to degrade Ethereum consensus. | Giuseppe Cocomazzi |
| CometBFT - Missing BLS12-381 Public Key Validation | Omission of the subgroup check for public keys allows for computations in small subgroups. | Giuseppe Cocomazzi |
| CometBFT - Wrong BLS12-381 Signature Generation | A further hashing operation weakens the second-preimage resistance of the signatures. | Giuseppe Cocomazzi |
| Corrupt Commitments: Proposer Equivocation Bug in Helix MEV Relay | How a lack of validation on proposers’ commitments to blob data can be used in unbundling attacks. | Troy Sargent |