Zcash Sprout bug don fix for zcashd v6.12.0; 25,424 ZEC safe
Zcash don fix one critical zcashd proof-check bypass wey connect to the old Sprout shielded pool. The Zcash Sprout bug wey dey since July 2020 till dem release v6.12.0 fit skip verification for some Sprout transaction cases and e fit expose about 25,000+ ZEC (25,424 ZEC) to possible draining.
Security researcher Alex “Scalar” Sol disclose the issue on March 23. Big mining pools (Luxor, F2Pool, ViaBTC, AntPool) don deploy the fix by March 26, while the Zebra full node implementation no affect. Zcash say their "turnstile" mechanism likely for prevent wider supply inflation, and any try to exploit probably for trigger chain fork.
No exploitation don detect, and user funds don confirm safe. For traders, the main point be say the Zcash Sprout patch via v6.12.0 reduce technical tail-risk around this deprecated privacy component, so short-term market impact suppose limited.
Neutral
Dis news fit bi neutral for ZEC because dem patch di bug quick (zcashd v6.12.0) and nobody report say dem exploit am for real or money loss. Di disclosure dey still show say verification-layer and old shielded-pool get risk, wey fit small raise how people dey fear tail-risk for privacy-coin infrastructure. But Zcash mitigations (turnstile constraints, likely chain-fork behaviour, and Zebra nodes wey no affect) dey reduce di chance say gbege go wide, so e limit any immediate bad repricing. Any effect on price therefore more about people sentiment around privacy infrastructure than about immediate supply or balance-sheet impact.