“The Fall” Of Constantinople. Ethereum Hard Fork Is Delayed Due To Vulnerability
Constantinople, the hard fork of ETH, was delayed due to the recently discovered security vulnerability. The critical loophole was found by ChainSecurity, the smart contract auditor company, as reported in their blog on January 15.
According to the report, the upgrade introduces a cheaper gas price (transaction fees) for a number of operations in the Ethereum network. Such measures can lead to an unexpected side effect — a reentrancy attack can take place via specific commands in ETH smart contracts. The vulnerability allows an attacker to steal cryptocurrency by requesting funds from a smart contract repeatedly while sending back false data about its actual ETH balance at the same time.
Constantinople was firstly tested on the public network Ropsten in mid-October 2018. It was assumed to be swiftly activated on the main blockchain by November. However, technical obstacles forced to postpone the launch — the implementation was planned to happen today, on January 16.
Image courtesy of CCN
Back to the list