Ethereum co-founder Vitalik Buterin, like several other leading developers of the platform do not see a serious threat to the security bug that was identified in the code of the upcoming upgrade of the system of Constantinople.
Earlier it was reported that discovered the vulnerability affects some smart contracts with the ability to self-destruct. In particular, the feature called Create2 assigned to EIP-1014, can replace self-destruct the smart contract, simultaneously changing the specified rules and can potentially result in the loss of funds.
This issue was raised at the last video conference of the developers of Ethereum, and believes most of them are a serious threat this as a potential attack vector does not carry. Also with this view agree and Buterin.
“Talking about the future and thinking about things like rent and removal of [data], we need to remember that you may be able to bring the contract to this state when he is without the option to self-destruct… It’s not something that we need to solve urgently in the next few weeks, hot on this and need to remember in the near future when sharding ETH 2.0 with the specs of the virtual machine”, — said Buterin.
The developer of Ethereum Foundation Jason Carver has previously stated that the destruction function will not be additional risk in the current Protocol version, but after upgrading to Constantinople code can be used to steal all the selected tokens smart contract.
Among the possible technical solutions to this problem, developers have proposed to prescribe the functions Create2 additional protection against re-play.
It is expected that the identified bug and work on its elimination will not affect the activation of hard forks Constantinople, to be held at the end of this February.
Subscribe to the news Forklog in Facebook!
Source
