Anasayfa » Uncategorized » Solana Quietly Fixes Bug That Could Have Let Attackers Mint and Steal Certain Tokens

Solana Quietly Fixes Bug That Could Have Let Attackers Mint and Steal Certain Tokens

The Solana Foundation has disclosed a previously unknown vulnerability in its privacy-focused token system that could have allowed attackers to forge fake zero-knowledge proofs, enabling unauthorized minting or withdrawals of tokens.

The vulnerability was first reported on April 16 through Anza’s GitHub security advisory, accompanied by a working proof-of-concept. Engineers from Solana development teams Anza, Firedancer, and Jito verified the bug and began working on a fix immediately, per a post-mortem published Saturday,

The issue stemmed from the ZK ElGamal Proof program, which verifies zero-knowledge proofs (ZKPs) used in Solana’s Token-22 confidential transfers. These extension tokens enable private balances and transfers by encrypting amounts and using cryptographic proofs to validate them.

ZKPs are a cryptographic method that lets someone prove they know or have access to something, such as a password or age, without revealing the thing itself.

In crypto applications, these can be used to prove a transaction is valid without showing specific amounts or addresses (which can otherwise be used by malicious actors to plan exploits).

The bug occurred because some algebraic components were missing from the hashing process during the Fiat-Shamir transformation — a standard method to make zero-knowledge proofs non-interactive. (Non-interactive means turning a back-and-forth process into a one-time proof anyone can verify.)

A sophisticated attacker could forge invalid proofs that the on-chain verifier would still accept.

This would have allowed unauthorized actions such as minting unlimited tokens or withdrawing tokens from other accounts.

As such, the vulnerability did not affect standard SPL tokens or the main Token-2022 program logic.

Patches were distributed privately to validator operators beginning April 17. A second patch was pushed later that evening to address a related issue elsewhere in the codebase.

Both were reviewed by third-party security firms Asymmetric Research, Neodyme, and OtterSec. By April 18, a supermajority of validators had adopted the fix.

There is no indication that the bug was exploited, and all funds remain secure, according to the post-mortem.

İlginizi Çekebilir:GENIUS Act Lacks ‘Necessary Guardrails’ For Investor Protection, NYAG Letitia James Tells Congress
Mayıs 5, 2025Etiketler: ,
share Paylaş facebook pinterest whatsapp x print

Benzer İçerikler

U.S. Derivatives Watchdog Weighs 24/7 Action With Crypto Oversight on Horizon Nisan 22, 2025
Short COIN/Long BTC Trade Will Be a Winner as Soaring Coinbase Nears Overvaluation: 10x Research Haziran 27, 2025
Crypto Prices Show Signs of Recovery With Bitcoin Above $84k Amid Trump’s Summit Plans Mart 1, 2025
Bitcoin Fades From Highs After Absence From Trump Inauguration Speech Ocak 20, 2025
Kahvaltılık Nelerdir?
Kahvaltılık Nelerdir? Nisan 25, 2025
Sıfır Egea Benzinli Kaç Para?
Sıfır Egea Benzinli Kaç Para? Mayıs 30, 2025
İvedik Oto Tamir | © 2025 |