CNNVD-202602-2193 Information
CNNVD ID
CNNVD-202602-2193
Related CVE
- CNNVD Published: 2026-02-13
Description (Chinese)
TON是TON开源的一个区块链软件。 TON v2024.10之前版本存在安全漏洞,该漏洞源于对vmstate和continuation jump指令处理不当,可能导致攻击者通过特制智能合约造成堆栈溢出。
Description (English)
Ton is a block chain software from Ton Open Source. There was a security loophole in the pre-TON v2024.10 version, which stemmed from the mishandling of vmstate and continuation jump commands, which could lead to the spilling of piles by the attackers through a special smart contract.
Vulnerability Type
其他
Affected Vendor
TON
Published
2026-02-13
Last Modified
2026-02-24
References
https://gist.github.com/Lucian-code233/25b0a13be569db9160340d9ecd2fdf0d https://github.com/ton-blockchain/ton/commit/b5734d2e30b9c93cfdacb4ea37c9ebdf11ca5d49#diff-17eca9db515992a081522236bf9bad767fac171044f7c00c20bf740f4206b3de https://github.com/ton-blockchain/ton/releases/tag/v2024.10#:~:text=krigga%20%28emulator%29%2C-%2CArayz%2C-%40%20TonBit%20%28LS%20security https://mp.weixin.qq.com/s/wy2ea6udkNZzIsp1K2LEOQ
Patch
https://github.com/ton-blockchain/ton/releases
Share on: