Ethereum Crate Signature Malleability Vulnerability in EIP-2930, EIP-1559, and EIP-7702 Transactions

A signature malleability vulnerability has been identified in the Ethereum crate for Rust, affecting versions prior to 0.18.0. This vulnerability arises because signature malleability, as defined by EIP-2, was only checked for legacy transactions. Transactions under EIP-2930, EIP-1559, and EIP-7702 were not subjected to the same scrutiny, leading to a deviation from the specification. While this malleability is not inherently a security risk, it poses a higher concern if the Ethereum crate is utilized on a multi-implementation blockchain, such as Ethereum mainnet.

Impact

The vulnerability allows for signature malleability in transactions governed by EIP-2930, EIP-1559, and EIP-7702, which could lead to unintended consequences in transaction processing or validation.

Reproduction

The vulnerability can be reproduced by creating transactions under EIP-2930, EIP-1559, or EIP-7702 using a version of the Ethereum crate prior to 0.18.0. The transactions can be crafted to include signatures that exploit the malleability, such as by using a low 's' value or an invalid 'y' parity, which would normally be rejected but can be manipulated to create a valid transaction.

Remediation

Users are advised to upgrade to the Ethereum crate version 0.18.0 or later, where this vulnerability has been patched. Instructions for upgrading can be found in the official Ethereum crate repository.