CVE-2025-70955

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-70955
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-70955.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-70955
Published
2026-02-13T22:16:10.170Z
Modified
2026-04-10T05:36:59.460488Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

A Stack Overflow vulnerability was discovered in the TON Virtual Machine (TVM) before v2024.10. The vulnerability stems from the improper handling of vmstate and continuation jump instructions, which allow for continuous dynamic tail calls. An attacker can exploit this by crafting a smart contract with deeply nested jump logic. Even within permissible gas limits, this nested execution exhausts the host process's stack space, causing the validator node to crash. This results in a Denial of Service (DoS) for the TON blockchain network.

References

Affected packages

Git / github.com/ton-blockchain/ton

Affected ranges

Type
GIT
Repo
https://github.com/ton-blockchain/ton
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
eed3153acef412d90295ce4400a841e06a1fcb25
Fixed
b5734d2e30b9c93cfdacb4ea37c9ebdf11ca5d49
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "v2024.10"
        }
    ]
}

Affected versions

func-0.*
func-0.0.99
func-0.1.0
func-0.2.0
func-0.3.0
func-0.4.0
func-0.4.1
func-0.4.2
func-0.4.3
func-0.4.4
Other
newton-end
newton-start
perfomance-test
v2022.*
v2022.05
v2022.06
v2022.08
v2022.09
v2022.10
v2022.12
v2023.*
v2023.01
v2023.03
v2023.04
v2023.05
v2023.06
v2023.10
v2023.11
v2023.12
v2024.*
v2024.01
v2024.02
v2024.03
v2024.04
v2024.06
v2024.08
v2024.09

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-70955.json"