Bitcoin Core before 24.1, when debug mode is not used, allows attackers to cause a denial of service (CPU consumption) because draining the inventory-to-send queue is inefficient, as exploited in the wild in May 2023. https://github.com/bitcoin/bitcoin/pull/27610 https://github.com/bitcoin/bitcoin/issues/27623 https://github.com/bitcoin/bitcoin/blob/master/doc/release-notes/release-notes-24.1.md https://github.com/bitcoin/bitcoin/issues/27586 https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures
Created bitcoin-core tracking bugs for this issue: Affects: epel-all [bug 2209427] Affects: fedora-all [bug 2209428]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.