File tree 1 file changed +11
-2
lines changed
1 file changed +11
-2
lines changed Original file line number Diff line number Diff line change 7676 * ` peer_disconnected ` will now never be called without ` peer_connected ` (#2035 )
7777
7878## Security
79- 0.0.114 fixes a denial-of-service vulnerability which is reachable from
80- untrusted input in deployments accepting inbound connections or channels.
79+ 0.0.114 fixes several denial-of-service vulnerabilities which are reachable from
80+ untrusted input from channel counterparties or in deployments accepting inbound
81+ connections or channels. It also fixes a denial-of-service vulnerability in rare
82+ cases in the route finding logic.
8183 * The number of pending un-funded channels as well as peers without funded
8284 channels is now limited to avoid denial of service (#1988 ).
85+ * A second ` channel_ready ` message received immediately after the first could
86+ lead to a spurious panic (#2071 ). This issue was introduced with 0conf
87+ support in LDK 0.0.107.
88+ * A division-by-zero issue was fixed in the ` ProbabilisticScorer ` if the amount
89+ being sent (including previous-hop fees) is equal to a channel's capacity
90+ while walking the graph (#2072 ). The division-by-zero was introduced with
91+ historical data trakcing in LDK 0.0.112.
8392
8493# 0.0.113 - Dec 16, 2022 - "Big Movement Intercepted"
8594
You can’t perform that action at this time.
0 commit comments