Ethereum

Ethereum Community to host a meetup in Bangkok

Ethereum Bangkok Community Meetup ETHBKK 2018 to be held on June 3 with featured guests to discuss different perspectives of the renowned blockchain
31 May 2018   1027

Chulalongkorn University, OmiseGO, Status and Hoard are participating at ETHBKK 2018 meetup held by Bangkok community. The event will take place on June 3 and explore various points of view on Ethereum. This will be the first meetup in Bangkok for the community.

The speakers list include Chulalongkorn University lecturer Dr. Kunwadee Sripanidkilchai, OmiseGO software developer Kridsada Thanabulpong, Status.im co-founder Jarrad Hope and Hoard.exchange CEO Martin Amor. Currently, OmiseGO members lead the Bangkok community. The agenda for the meetup is as follows:

12:30 - 13:00 Registration
13:00 - 13:30 Introduction
13:30 - 14:30 Session #1
14:30 - 14:45 Break
14:45 - 16:00 Session #2
16:00 - 16:10 Closing

More details on the meetup can be found here.

EthereumBlockchain

Another Vulnerability to be Found in Constantinople

Create2 function can replace a self-destructed smart contract, simultaneously changing the rules specified, which could potentially lead to loss of funds
13 February 2019   128

The developers of the Ethereum Foundation reported a new bug in the upcoming Constantinople network update. According to Trustnodes, the detected vulnerability affects some smart contracts with the possibility of self-destruction.

Thus, a function called Create2 can replace a self-destructed smart contract, simultaneously changing the rules specified in it, which could potentially lead to loss of funds.

Selfdestruct doesn’t look particularly dangerous there (pre-Constantinople), because the contract can only go away. Now it can go away and come back with code that transfers all your approved tokens.
 

Jason Carver

Developer at the Ethereum Foundation

He recommended that users carefully study the smart contract code for the presence of a self-destruct function in it without a proper period of inactivity and in that case not interact with it.

Among the possible technical solutions to this problem, developers propose to prescribe in the function Create2 additional protection against replay.

It is expected that the removal of the bug will not affect the date of activation of the hard fork, which should take place between February 26 and 28.

In the middle of last month, an upgrade on the Ethereum network was postponed due to the critical vulnerability in EIP-1283, which potentially allowed attackers to steal users' funds.