Ethereum client Geth releases ‘Schwarzschild’ update to fix a vulnerability in previous version

Quick Take

  • Geth, the Go implementation of the Ethereum protocol, released version 1.14.13, codenamed “Schwarzschild.”
  • This update addresses an issue in the peer-to-peer (p2p) layer that could potentially lead to denial of service attacks, affecting both Geth and potentially Layer 2 clients.
  • The vulnerability, cataloged as CVE-2025-24883, makes Geth versions from 1.14.0 susceptible to DoS through malicious p2p messages.

The developers of Geth, the official Go implementation of the Ethereum protocol, released version 1.14.13, codenamed “Schwarzschild,” on Thursday.

This release explicitly addresses a vulnerability that affects the peer-to-peer (p2p) layer of Geth, which could lead to denial of service attacks on nodes running them and potentially impact Layer 2 clients.

Geth is the most widely used execution layer client for Ethereum.

The vulnerability, cataloged as CVE-2025-24883, states that the affected versions are "vulnerable to DoS via malicious p2p messages.”

Users running version 1.14 (or later) were urged to update to the latest version to mitigate the risk of node crashes or other disruptions.

“If you are running a version of geth that 1.14 or later, please update to the newest version. Nodes running v1.13.x are not affected,” noted Marius Van Der Wijden, Ethereum developer at the client team.

The fix in v1.14.13 was coordinated with multiple Layer 2 solutions to ensure a broad security update across the ecosystem.

This emergency release was crucial because the bug, first identified by security researchers at Polygon, could potentially allow attackers to crash nodes running vulnerable versions of Geth remotely. 

The team clarified that nodes operating on the v1.13.x series were not affected by this particular vulnerability.


Disclaimer: The Block is an independent media outlet that delivers news, research, and data. As of November 2023, Foresight Ventures is a majority investor of The Block. Foresight Ventures invests in other companies in the crypto space. Crypto exchange Bitget is an anchor LP for Foresight Ventures. The Block continues to operate independently to deliver objective, impactful, and timely information about the crypto industry. Here are our current financial disclosures.

© 2024 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.

About Author

Vishal Chawla is The Block’s Crypto Ecosystems Editor and has spent over seven years covering tech protocols, cybersecurity, artificial intelligence and cloud computing. Vishal can be reached on Twitter at @vishal4c and via email at [email protected]

Editor

To contact the editor of this story:
Danny Park at
[email protected]

WHO WE ARE

The Block is a news provider that strives to be the first and final word on digital assets news, research, and data.

+ Follow us on Google News
Connect with the block on