Litecoin has patched a vulnerability tied to MimbleWimble Extension Block transactions after a chain reorganization erased a set of invalid peg-outs from the main chain. According to the Litecoin Project’s April 25 statement on X and the Litecoin Core v0.21.5.4 release notes published later that day, unpatched mining nodes accepted an invalid MWEB transaction, while updated nodes rejected it and eventually produced the winning chain.
The incident resulted in a 13-block reorg spanning heights 3,095,931 through 3,095,943, according to chain analysis published by ltc.supply. That analysis said the canonical replacement chain ran from 06:50 to 09:35 UTC on April 25, and that all valid transactions from the period remained intact after the rewrite. The Litecoin Project said the network is now operating normally, but several questions about the exploit path, attempted extraction size, and any cross-chain impact remain unresolved.
Litecoin update:
• A zero-day bug caused a DoS attack that disrupted major mining pools.
• Non-updated mining nodes allowed an invalid MWEB transaction allowing them to peg out coins to third party DEX’s
• A 13-block reorg reversed those invalid transactions — they will not…— Litecoin (@litecoin) April 25, 2026
Litecoin Reorg Reversed Invalid MWEB Peg-Outs
In its public disclosure, the Litecoin Project said “a zero-day bug caused a DoS attack that disrupted major mining pools” and that “non-updated mining nodes allowed an invalid MWEB transaction allowing them to peg out coins to third party DEX’s.” The same statement added: “A 13-block reorg reversed those invalid transactions — they will not be included in the main chain. All valid transactions during that period remain unaffected.” Those points were later reinforced in the v0.21.5.4 release notes, which described the upgrade as required for node operators, miners, and wallet users.
The release notes offered the clearest technical description of the bug class. They said the patch includes an “MWEB consensus fix addressing an input validation issue that could allow the MWEB kernel sum to become unbalanced” and that the update “corrects MWEB input/output accounting going forward.” In practical terms, according to the project’s own wording and ltc.supply’s reconstruction, the flaw allowed unpatched nodes to treat an invalid MWEB peg-out as acceptable, creating a temporary chain split until the patched side accumulated more work.
On-chain timing underscored how abnormal the event was. According to ltc.supply, the rewritten segment took two hours and 45 minutes to produce, far slower than Litecoin’s standard 2.5-minute target, with one gap stretching 52 minutes and 15 seconds between blocks 3,095,931 and 3,095,932. The same report said F2Pool mined every block in the winning chain during that window, and block 3,095,944 later carried 1,198 transactions in what it described as a mempool flush after the reorg resolved.
Patch Lands as Questions Over Exploit Persist
Even after the patch, the public record leaves major gaps. Neither the Litecoin Project’s X post nor its release notes disclosed how much LTC the attacker attempted to extract, which decentralized exchanges were targeted, or whether any third-party venue credited deposits before the invalid chain was replaced. Ltc.supply noted that “the specific receiving DEXs and the gross LTC amount the attacker attempted to extract have not been confirmed by the Litecoin Project as of writing,” and also said no formal CVE or GitHub security advisory had yet been published.
The patch itself suggests a broader containment effort. As summarized in the release notes and commit references cited by ltc.supply, the emergency release added miner-side checks, tighter MWEB validation, and a consensus-level freeze for one specific MWEB output ID. The report cautioned against over-interpreting that freeze, writing: “Whether this output corresponds directly to the April 25 exploit, to a precautionary freeze, or to something else is not stated in the release notes. The shape of the change … is consistent with a freeze of value associated with the incident, but the Litecoin Project does not say so.”
Competing theories have circulated on X, but they remain unconfirmed. Alex Shevchenko, co-founder of Aurora Labs, questioned the “zero-day” framing and argued in a post that “the fact that protocol automatically handled the reorg once DoS stopped … means that some portion of the hashrate was actually running an updated code. Thus, this bug was known and it’s not a zero-day.” He also suggested the denial-of-service and the MWEB flaw were separate elements of the event. Still, ltc.supply said those claims, along with other public theories around bridge losses, attacker attribution, and a possible 51% attack signature, have not been corroborated by primary sources. For now, the confirmed facts are narrower: the invalid MWEB peg-outs were removed from the canonical chain, the software has been patched, and the unresolved details are still awaiting fuller disclosure.
For market participants and infrastructure operators, the immediate takeaway is that Litecoin’s canonical chain rejected the invalid peg-outs and that the emergency release is now the baseline client version for anyone interacting with the network. The larger significance may depend on what the Litecoin Project, mining pools, and any potentially affected cross-chain services disclose next about the exploit’s scope and whether any off-chain or bridged systems acted on transactions later erased by the reorg.
AI Transparency Note: This article was prepared with the assistance of an AI system based on the sources listed and was reviewed, edited, and approved by a human editor before publication. All quotes, data points, and factual claims are intended to be grounded in the cited source material; however, errors cannot be ruled out entirely.
About Me
Hodl Herald is the fastest and most honest reporter in the entire crypto universe. With glowing Bitcoin and Ethereum eyes, he scans the news, on-chain data, and expert commentary around the clock—always cool-headed, always fact-based, and completely immune to hype. No moonboy promises, no fake analysts, no paid shills. Just verified analysis from real industry leaders and respected research firms.
Of course, even the best AI journalist is not perfect. That is why every single article is thoroughly reviewed, fact-checked, corrected, and approved by our human editor-in-chief before publication.
That is how we combine the incredible speed and precision of AI with real human accountability and journalistic rigor. Hodl Herald stands for a new era of crypto journalism: fast, transparent, independent, and trustworthy.
Hodl on—the future has a robot.
