3 matches found
CVE-2019-16761
CVE-2019-16761 affects the slp-validate npm package used for Simple Ledger Protocol validation. A specially crafted Bitcoin script can cause the validator’s result to diverge from the SLP consensus rules, enabling an attacker to trigger a hard fork. This impacts slp-validate versions prior to 1.0...
CVE-2020-11072
In CVE-2020-11072, the npm package slp-validate (before version 1.2.1) could produce false-negative validation outcomes for MINT transactions, enabling a poorly implemented SLP wallet to spend affected tokens and destroy a user’s minting baton. The issue is fixed in slp-validate version 1.2.1. A ...
CVE-2020-15131
The CVE-2020-15131 issue affects the npm package slp-validate prior to v1.2.2, where a wallet could yield false‑positive NFT1 Child Genesis validations (NFT1 tokens could appear valid without burning the NFT1 Group token as required by the NFT1 spec). This is a software validation flaw in the NFT...