GHSA-rj53-j6jw-7f7g: Babylon vulnerable to chain halt when a message modifies the validator set at the epoch boundary
Sending a message that modifies the validator set at the epoch boundary halts the chain.
References
- boiling-lake-106.notion.site/2025-06-18-Babylon-Genesis-Chain-Halt-Post-Mortem-229f60cc1b5f80b7adf5e3ea0541ea87
- github.com/advisories/GHSA-rj53-j6jw-7f7g
- github.com/babylonlabs-io/babylon
- github.com/babylonlabs-io/babylon/pull/1244/files
- github.com/babylonlabs-io/babylon/releases/tag/v2.1.0
- github.com/babylonlabs-io/babylon/security/advisories/GHSA-rj53-j6jw-7f7g
Code Behaviors & Features
Detect and mitigate GHSA-rj53-j6jw-7f7g with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →