CVE-2023-33297 Information

Description

Bitcoin Core before 24.1 when debug mode is not used allows attackers to cause a denial of service (CPU consumption) because draining the inventory-to-send queue is inefficient as exploited in the wild in May 2023.

Reference

https://github.com/bitcoin/bitcoin/pull/27610 https://github.com/bitcoin/bitcoin/issues/27623 https://github.com/bitcoin/bitcoin/blob/master/doc/release-notes/release-notes-24.1.md https://github.com/bitcoin/bitcoin/issues/27586 https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures