Copy
Trading Bots
Events
More

Ethereum core comms layer flaw can crash nodes with single message

2026/07/11 08:11Browse 0

A critical vulnerability in Ethereum's core communication layer can crash nodes with a single message, prompting an urgent update requirement for node operators. The flaw, designated CVE-2026-34219, was discovered by the Ethereum Foundation's security team using AI agents and has been assigned a CVSS score of 8.2 (High).

Vulnerability in Gossipsub Layer

The bug resides in the gossipsub messaging layer of libp2p, which is used by Ethereum consensus clients to propagate blocks and attestation data. The issue stems from improper validation of backoff time calculations when processing PRUNE messages. An attacker can send a crafted PRUNE message with a near-maximum backoff value, causing an integer overflow that forces the node to crash. The attack requires no authentication or user interaction and can be easily reproduced, according to security firm SentinelOne.

The vulnerability affects all projects using vulnerable versions of the Rust-based libp2p-gossipsub library, not just Ethereum. Validators, indexers, and various auxiliary tools are all potential targets. The US National Vulnerability Database rated it 8.2 on the CVSS scale, noting that network-based attacks are possible without privileges or user interaction. Attackers can repeatedly reconnect to send the same message, sustaining a denial-of-service condition.

AI-Assisted Discovery

The finding marks a notable case of AI-driven security analysis. Ethereum Foundation's Nikos Baxevanis explained that multiple AI agents were deployed in parallel to identify the flaw. The system operated without central control, using a Git repository for collaboration, with agents dividing tasks such as attack surface analysis, code path tracing, exploit generation, and verification. Only vulnerabilities that could be consistently reproduced in real code were considered valid, filtering out false positives from test-only errors or impractical attacks. Baxevanis noted that determining whether a bug is a genuine vulnerability required more resources than finding the bug itself.

Repeated High-Risk Flaws

This is not an isolated incident. A similar issue, CVE-2026-33040, was previously reported with a higher CVSS score of 8.7, also involving PRUNE backoff handling. The recurrence of related problems in consecutive patches indicates a systemic need for reinforcement in the libp2p gossipsub architecture. The Ethereum Foundation emphasized that the focus has shifted from discovery to verification, with human judgment becoming increasingly critical. The fix in libp2p-gossipsub v0.49.4 adds range checks on PRUNE backoff values, blocking the overflow path. All operators using older versions are advised to upgrade immediately.

Disclaimer: This page may contain third-party information and does not necessarily reflect BYDFi's views or opinions. This content is for general reference only and does not constitute any representation, warranty, financial advice, or investment advice. BYDFi is not responsible for any errors, omissions, or any results arising from the use of such information. Virtual asset investments involve risks. Please carefully evaluate the risks of the product and your risk tolerance based on your financial situation. For more information, please refer to our Terms of Use and Risk Disclosure.