[bitcoin-dev] [BIP Draft] Datastream compression of Blocks and Transactions
Pavel at Janik.cz
Wed Dec 2 06:47:28 UTC 2015
> On 02 Dec 2015, at 00:44, Simon Liu <simon at bitcartel.com> wrote:
> Hi Matt/Pavel,
> Why is it scary/undesirable? Thanks.
Select your preferable compression library and google for it with +CVE.
E.g. in zlib:
…allows remote attackers to cause a denial of service (crash) via a crafted compressed stream…
…allows remote attackers to cause a denial of service (application crash)…
Do you want to expose such lib to the potential attacker?
More information about the bitcoin-dev