In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsUpgrade zebrad to version 4.5.0 or higher.
zebrad is a The Zcash Foundation's independent, consensus-compatible implementation of a Zcash node
Affected versions of this package are vulnerable to Access of Resource Using Incompatible Type ('Type Confusion') through the address normalization process. An attacker can cause the process to terminate unexpectedly by connecting via IPv4 to a dual-stack IPv6 listener and advertising an invalid mempool transaction, which triggers an assertion failure after a 30-second batch flush.
This vulnerability can be mitigated by configuring the listener to an IPv4-only address or by setting the Linux system parameter net.ipv6.bindv6only=1.