Buy Crypto
Pay with
USD
USD
Buy & Sell
Hot
Supports Visa, Mastercard, SEPA & more
P2P
0 Fees
Flexible trading, zero fees
Gate Card
Use your crypto for payments worldwide
Markets
Trade
Basic
Advanced
Futures
Futures
Access hundreds of perpetual contracts
TradFi
Gold
One platform for global traditional assets
Options
Hot
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Demo Trading
Introduction to Futures Trading
Learn the basics of futures trading
Futures Events
Join events to earn rewards
Demo Trading
Use virtual funds to practice risk-free trading
Earn
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
Pre-IPOs
Unlock full access to global stock IPOs
Alpha Points
Trade on-chain assets and earn airdrops
Futures Points
Earn futures points and claim airdrop rewards
Investment
Square
Square
Post, share, and explore crypto trends
Live
moments live
Live crypto market analysis
Chat
Chat with crypto traders
News
What is happening in crypto
flower_head
More
Promotions
AI
Diğerleri
TradFi
WCTC S8
Rewards

Critical XRP Ledger Bug in Batch Amendment Could Have Drained User Wallets - U.Today

UToday
XRP newsSecurity Incidents
XRP-0,2%
DOGE1,12%
SHIB0,47%

A severe logic flaw within the XRP Ledger (XRPL) codebase was narrowly averted this month, a recent blog post states

Security researchers discovered a vulnerability that could have allowed attackers to drain user wallets without needing their private keys.

The bug, which was spotted in the proposed “Batch” amendment (XLS-56), was identified earlier this month by independent researcher Pranamya Keshkamat and an autonomous AI security tool named Apex

HOT Stories

Critical XRP Ledger Bug in Batch Amendment Could Have Drained User Wallets

Crypto Market Review: XRP Volatility Squeeze is a $2 Recipe, Will Dogecoin (DOGE) Zero Removal Happen in February? Shiba Inu (SHIB) Bullruns Aren’t Possible Yet

The amendment was still in its voting phase and had not been activated on the XRPL mainnet. Hence, no user funds were at risk or lost.

The vulnerability explained

The Batch amendment would allow multiple “inner” transactions to be grouped together.

These inner transactions are intentionally left unsigned in order to save processing power. Instead, authorization is delegated to the outer batch’s list of signers.

A critical loop error caused a major vulnerability in the process of calling signers.

If the system encountered a signer for an account that did not yet exist on the ledger, and the signing key matched that new account, the system immediately declared the validation a success. It then exited the loop early, avoiding validator checks

A specific sequence of batched transactions could have been used by the attacker to exploit the aforementioned vulnerability

Had the Batch amendment been activated on the mainnet before this discovery, the XRPL ecosystem would have potentially suffered a severe blow. An attacker could have stolen funds, modified the ledge state, and destabilized the ecosystem

Earlier this week, developers released the Rippled 3.1.1 reference server software. This emergency patch explicitly marks the Batch amendment as unsupported,

A comprehensive fix that removes the early-exit loop and adds tighter authorization guards has been developed. It is currently undergoing rigorous peer review

Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to Disclaimer.

Related Articles

XRP Spot ETF Records $2.41M Net Inflows in Single Day; Bitwise XRP ETF Leads

XRP newsCapital FlowStocks

Gate News message, April 23 — According to SoSoValue, XRP spot ETFs recorded net inflows of $2.41 million yesterday (April 22 ET). Bitwise XRP ETF (XRP) accounted for the entire daily inflow, bringing its historical cumulative net inflows to $419 million. As of press time, total assets under

GateNews23m ago

LOBSTR Wallet Integrates XRP Ledger Support, Unlocking Access for 1.3M+ Users

XRP newsPartnerships & Ecosystem

Abstract: The article surveys XRPL ecosystem expansion, highlighting wallet integrations (LOBSTR with XRPL Commons; Exodus custody tools) and rising institutional interest from Mastercard, BlackRock, and Franklin Templeton as XRPL real-world asset activity grows toward a multi-billion-dollar valuation, underpinned by fast settlement and low fees. Summary: LOBSTR adds XRP Ledger support via XRPL Commons; Exodus expands XRP/RLUSD custody tools. Mastercard, BlackRock, and Franklin Templeton monitor XRPL as RWA activity climbs toward $2.5B, enabling fast, low-cost settlements.

GateNews5h ago

XRP Price Near $1.45 as ETF Inflows Build Pressure

XRP newsMarket AnalysisPrice PredictionCapital FlowStocks

Key Insights Institutional XRP ETF inflows reached $41.6 million over four days, lifting assets under management above $1.08 billion and strengthening market confidence. XRP faces strong resistance near $1.45, where CoinGlass data highlights a short max

CryptoNewsLand7h ago

XRP Expands to Solana as wXRP Drives DeFi Access

XRP newssolana newsPrice VolatilityCapital FlowToken EventsPartnerships & Ecosystem

Key Insights Wrapped XRP on Solana surpasses 834,000 tokens, enabling new DeFi access while strengthening cross-chain liquidity and expanding XRP utility beyond its native ledger. Ethereum and Solana dominate DeFi activity, while XRP Ledger trails significantly, driving the need for

CryptoNewsLand7h ago

XRP Breakout Holds as XRPL Lending Vote Gains Momentum

XRP newsMarket AnalysisPrice VolatilityDerivatives DataProject Progress

XRP shows weekly strength, trading above EMAs after breaking from a descending wedge; XRPL advances XLS-65/66 lending upgrades with pooled vaults and fixed-term loans; derivatives rise in volume, open interest, and options activity. Abstract: This report notes XRP's persistent weekly momentum and price strength above key moving averages following a breakout from a descending wedge. It covers XRPL validators voting on XLS-65 and XLS-66, enabling native lending, pooled liquidity vaults, and fixed-term loans to expand on-chain financial activity. It also reports rising derivatives participation, with higher trading volume, open interest, and a surge in options activity, suggesting increasing trader positioning for a continued breakout.

CryptoNewsLand8h ago

XRP Breakout Holds as XRPL Lending Vote Gains Momentum

XRP newsMarket AnalysisPrice PredictionDerivatives DataProject ProgressToken Events

XRP shows weekly strength, trading above EMAs after breaking from a descending wedge; XRPL advances XLS-65/66 lending upgrades with pooled vaults and fixed-term loans; derivatives rise in volume, open interest, and options activity. Abstract: This report notes XRP's persistent weekly momentum and price strength above key moving averages following a breakout from a descending wedge. It covers XRPL validators voting on XLS-65 and XLS-66, enabling native lending, pooled liquidity vaults, and fixed-term loans to expand on-chain financial activity. It also reports rising derivatives participation, with higher trading volume, open interest, and a surge in options activity, suggesting increasing trader positioning for a continued breakout.

CryptoNewsLand8h ago
Comment
0/400
No comments