Buy Crypto
Pay with
USD
USD
Buy & Sell
Hot
Supports Visa, MasterCard, SEPA & more
P2P
0 Fees
Flexible trading, zero fees
Gate Card
Use your crypto for payments worldwide
Markets
Trade
Basic
Advanced
Futures
Futures
Access hundreds of perpetual contracts
TradFi
Gold
One platform for global traditional assets
Options
Hot
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Demo Trading
Introduction to Futures Trading
Learn the basics of futures trading
Futures Events
Join events to earn rewards
Demo Trading
Use virtual funds to practice risk-free trading
Earn
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
Launchpad
Be early to the next big token project
Alpha Points
Trade on-chain assets and earn airdrops
Futures Points
Earn futures points and claim airdrop rewards
Investment
Square
Square
Post, share, and explore crypto trends
Live
moments live
Live crypto market analysis
Chat
Chat with crypto traders
News
What is happening in crypto
More
Promotions
AI
Diğerleri
TradFi
Rewards

Critical XRP Ledger Bug in Batch Amendment Could Have Drained User Wallets - U.Today

UToday
XRP newsSecurity Incidents
XRP1,58%
DOGE0,18%
SHIB-1,35%

A severe logic flaw within the XRP Ledger (XRPL) codebase was narrowly averted this month, a recent blog post states

Security researchers discovered a vulnerability that could have allowed attackers to drain user wallets without needing their private keys.

The bug, which was spotted in the proposed “Batch” amendment (XLS-56), was identified earlier this month by independent researcher Pranamya Keshkamat and an autonomous AI security tool named Apex

HOT Stories

Critical XRP Ledger Bug in Batch Amendment Could Have Drained User Wallets

Crypto Market Review: XRP Volatility Squeeze is a $2 Recipe, Will Dogecoin (DOGE) Zero Removal Happen in February? Shiba Inu (SHIB) Bullruns Aren’t Possible Yet

The amendment was still in its voting phase and had not been activated on the XRPL mainnet. Hence, no user funds were at risk or lost.

The vulnerability explained

The Batch amendment would allow multiple “inner” transactions to be grouped together.

These inner transactions are intentionally left unsigned in order to save processing power. Instead, authorization is delegated to the outer batch’s list of signers.

A critical loop error caused a major vulnerability in the process of calling signers.

If the system encountered a signer for an account that did not yet exist on the ledger, and the signing key matched that new account, the system immediately declared the validation a success. It then exited the loop early, avoiding validator checks

A specific sequence of batched transactions could have been used by the attacker to exploit the aforementioned vulnerability

Had the Batch amendment been activated on the mainnet before this discovery, the XRPL ecosystem would have potentially suffered a severe blow. An attacker could have stolen funds, modified the ledge state, and destabilized the ecosystem

Earlier this week, developers released the Rippled 3.1.1 reference server software. This emergency patch explicitly marks the Batch amendment as unsupported,

A comprehensive fix that removes the early-exit loop and adds tighter authorization guards has been developed. It is currently undergoing rigorous peer review

Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to Disclaimer.

Related Articles

XRP Price Prediction Improves Again in March, and so does FET, but All Forecasts Are Explosive for DeepSnitch AI as Its Launch Is Coming

XRP news

As March is approaching its second half, XRP price predictions have improved. A few Ripple ecosystem developments have helped in addition to a general recovery of crypto markets, despite geopolitical tensions in the Middle East. For another coin, DeepSnitch AI, the right word when it comes to

CaptainAltcoin33m ago

XRP on the Verge of Privacy Breakthrough: Top XRPL Contributor Details How This Feature Will Be Realized - U.Today

XRP newsProject Progress

The XRP ecosystem is set to transform with the implementation of zero-knowledge proof (ZKP) technology to enhance privacy. This will allow transactions to be verified without revealing sensitive details. Additionally, upcoming developments include AI integration, new stablecoins, smart contracts, and the XRP Alphanetwork for testing advanced algorithms.

UToday2h ago

Ripple Set to Buy Back $750M in Shares Despite XRP Price Decline

XRP newsCapital Flow

Ripple plans to buy back up to $750 million in shares from investors and employees by the end of next month, insiders have revealed. The buybacks would value the company at $50 billion, and come six months after a similar plan to buy back $1 billion in shares from employees failed. Ripple

CryptoNewsFlash3h ago

XRP ETFs See Just Nine Red Days Since Launch as Goldman Sachs Leads Holdings

XRP newsCapital FlowGlobal Markets

Spot XRP ETFs have recorded a net outflow of just 9 days since their launch at the start of November; cumulative net inflows hit $1.4 billion. At the end of 2025, Goldman Sachs held $154 million worth of the ETFs, topping the list of the 30 largest holders. Spot XRP exchange-traded funds hav

CryptoNewsFlash3h ago
Comment
0/400
No comments