CosmosSDK has Anticipated Patch for Critical Security Vulnerability Found
A recent post on the Cosmos Network Forum highlighted a critical security vulnerability. According to the post, the vulnerability was reported to the Tendermintn team.
It continues that a patch is available in v 0.34.6 of the CosmosSDK and that the patch is also “available now.” The platform intends to provide technical details concerning the vulnerability in 7-10 business days.
The timeframe is to provide a reasonable amount of time to harden their systems. The platform also notes that it is coordinating a hard fork for a Cosmos mainnet upgrade, and that it is also reaching out to validators to ensure that they will be able to respond during the network transition.
It also recommends that service providers upgrading full node update to the latest and most secure version of the CosmosSDK immediately.