Back

Bitcoin Core Discloses High-Severity CVE-2024-52911 Affecting Versions 0.14.0 and Later Before v29.0

According to Bitcoin Core, the high-severity flaw affected versions v0.14.0 and later before v29.0, was fixed in v29.0, and involved an attack on nodes using costly invalid blocks.

BTC

Fact Check
The core elements of the claim are strongly supported across multiple independent sources. The Bitcoin Core Security Advisories page confirms the disclosure framework, and The Block directly references the official advisory URL (bitcoincore.org/en/2026/05/05/disclose-cve-2024-52911/). Protos and Phemex, citing the official advisory, confirm the version range as 0.14.1 to 28.4. The Block describes the range slightly differently as 0.14.0 through 28.x, which introduces a minor uncertainty about the exact lower bound (0.14.0 vs 0.14.1). The high-severity classification, miner-crash-node vector, and possible code execution before v29 are unanimously confirmed. The 10% false probability accounts only for the minor version-range discrepancy (0.14.0 vs 0.14.1) and the inability to directly fetch the official advisory page to verify every detail verbatim.
Summary

Bitcoin Core disclosed details of high-severity vulnerability CVE-2024-52911 on the 5th, saying it affected versions v0.14.0 and later before v29.0. The project said the issue was fixed in v29.0. According to the disclosure, the attack targets nodes and requires costly invalid blocks. This updates earlier version ranges that had described the flaw as affecting versions 0.14.1 through 28.4.

Terms & Concepts
  • Bitcoin Core: The main open-source software client used by many participants to run a Bitcoin node, validate transactions, and help enforce Bitcoin network rules.
  • CVE-2024-52911: A Common Vulnerabilities and Exposures identifier for a publicly tracked high-severity software security flaw affecting Bitcoin Core versions v0.14.0 and later before v29.0.
  • Node: A computer running blockchain software that verifies, stores, and relays transactions and blocks while helping enforce Bitcoin network rules.