{"id":26504,"date":"2023-12-12T07:25:37","date_gmt":"2023-12-12T07:25:37","guid":{"rendered":"https:\/\/nftandcrypto-news.com\/crypto\/bitcoin-dev-denies-adding-inscriptions-to-national-vulnerability-database\/"},"modified":"2023-12-12T07:25:40","modified_gmt":"2023-12-12T07:25:40","slug":"bitcoin-dev-denies-adding-inscriptions-to-national-vulnerability-database","status":"publish","type":"post","link":"https:\/\/nftandcrypto-news.com\/crypto\/bitcoin-dev-denies-adding-inscriptions-to-national-vulnerability-database\/","title":{"rendered":"Bitcoin dev denies adding inscriptions to National Vulnerability Database"},"content":{"rendered":"
\n

Bitcoin core developer Luke Dashjr has denied playing any part in adding Bitcoin inscriptions as a cybersecurity risk on the United States National Vulnerability Database\u2019s (NVD) Common Vulnerabilities and Exposure (CVE) list.\u00a0<\/p>\n

Dashjr courted controversy in a Dec. 6 post to X (formerly Twitter) claiming that inscriptions \u2014 used by the Ordinals protocol and BRC-20 creators to embed data on satoshis \u2014 exploit a Bitcoin Core vulnerability to \u201cspam the blockchain.\u201d<\/p>\n

\n

PSA: \u201cInscriptions\u201d are exploiting a vulnerability in #Bitcoin<\/a> Core to spam the blockchain. Bitcoin Core has, since 2013, allowed users to set a limit on the size of extra data in transactions they relay or mine (`-datacarriersize`). By obfuscating their data as program code,\u2026<\/p>\n

\u2014 Luke Dashjr (@LukeDashjr) December 6, 2023<\/a><\/p><\/blockquote>\n

Some observers then pointed to Dashjr days later, when Bitcoin inscriptions appeared on the U.S. vulnerability database as part of the CVE list on Dec. 9, which described it as a security flaw that enabled the development of the Ordinals protocol in 2022. <\/p>\n

However, despite being an outspoken Bitcoin Ordinals critic, Dashjr told Cointelegraph that he had no role in adding inscriptions to the vulnerability database\u2019s CVE list. <\/p>\n

Interestingly, the CVE list is designed so any developer can lodge a vulnerability. It is typically listed as long as the CVE Assignment Team deems it important for public awareness.<\/p>\n

Inscriptions get a vulnerability score, and it\u2019s not too bad <\/h2>\n

On Dec. 11, the NVD updated the listing by assigning inscriptions a base severity score of \u201c5.3 Medium.\u201d <\/p>\n

According to data from software firm Atlassian, a medium score refers to a vulnerability where exploitation provides \u201cvery limited\u201d access to a network or denial of service attacks that are quite difficult to execute. <\/p>\n

The CVE List has assigned a 5.3 Medium score to the Inscriptions listing. Source: NVD<\/em><\/figcaption><\/figure>\n

Related: <\/em><\/strong>Bitcoin Ordinals could be stopped if blockchain bug is patched, claims dev<\/em><\/strong><\/p>\n

Dashjr said that a major factor in the CVE lists\u2019 5.3 score was due to the vulnerability having a low availability impact on the Bitcoin network, but he argued the score could be understating its potential long-term effects.<\/p>\n

\u201cI think this [score] may understate the impact, failing to consider the long-term effects of blockchain bloat. If they had classified the availability impact as \u2018High,\u2019 the CVSS base score would be 7.5,\u201d he said.<\/p>\n

The debate around the nature of Bitcoin inscriptions continues to rage across social media. While many Bitcoiners claim that inscriptions are \u201cspamming the network,\u201d advocates of Ordinals such as Taproot Wizards co-founder Udi Wertheimer say Ordinals are crucial to the next major wave of adoption and revenue generation for the Bitcoin network.<\/p>\n

\n

ordinals are a bug pic.twitter.com\/vU0CXgD9wY<\/a><\/p>\n

\u2014 Udi Wertheimer (@udiWertheimer) December 12, 2023<\/a><\/p><\/blockquote>\n

The Bitcoin network has seen increased congestion over the past few months due to a wider craze around Ordinals\u2019 nonfungible token inscriptions and BRC-20 token minting.<\/p>\n

According to mempool.space, there are more than 275,000 unconfirmed transactions, and average medium-priority transaction costs have increased to around $14 from roughly $1.50. If the so-called inscriptions bug is patched, it\u00a0could potentially restrict future Ordinals inscriptions on the network. <\/p>\n

Magazine: <\/em><\/strong>Lawmakers\u2019 fear and doubt drives proposed crypto regulations in US<\/em><\/strong><\/p>\n<\/div>\n