 are vulnerable to a DoS issue where a specially crafted 

 message can crash a node. Operators should upgrade promptly to avoid service disruption. The issue is fixed in 

 to maintain a distributed view of the network graph. Nodes exchange 

 messages to advertise channels and routing policies. Before accepting 

 messages, a Lightning node must first know and validate the corresponding 

 messages are propagated throughout the network. In LND, this propagation is handled by a gossip rebroadcast pipeline that uses a de-duplication cache to avoid repeatedly forwarding identical announcements. When a new announcement arrives, its timestamp is compared against any previously stored announcements for the same channel, direction and node. Newer announcements replace older ones, while older announcements are discarded. The implementation of this logic prior to 

The bug stems from how announcements with a timestamp of 0 are handled. When a zero-timestamp 

 is received for the first time, no cache entry exists and 

 remains initialized to 0. As a result, the code incorrectly treats the announcement as a previously seen message and enters the duplicate-message path.

However, because no previous entry existed, the 

 map was never initialized. Attempting to write to this nil map triggers a runtime panic that terminates the LND daemon, resulting in a complete loss of node availability until it is restarted.

lightning

> *by* [**NishantBansal2003**](https://delvingbitcoin.org/u/nishantbansal2003)
>
> > The issue discussed below was originally disclosed at [nishantbansal2003.github.io](https://nishantbansal2003.github.io/posts/LND-Zero-Timestamp-Gossip-DoS). For the corresponding LND advisory, see: [LND Gossip Nil-Map Panic on Zero-Timestamp Messages | Lightning Labs Security Advisories](https://lightning.community/SI/2026/06/18/lnd-zero-timestamp-gossip-dos.html).
>
> LND versions before *v0.20.1* are vulnerable to a DoS issue where a specially crafted `channel_update` or `node_announcement` message can crash a node. Operators should upgrade promptly to avoid service disruption. The issue is fixed in [v0.20.1](https://github.com/lightningnetwork/lnd/releases/tag/v0.20.1-beta) and later.
>
> ## Vulnerability
>
> The Lightning Network uses [gossip messages](https://github.com/lightning/bolts/blob/94eb038c42e664dd7862faeec6508ccd25f63ff8/07-routing-gossip.md) to maintain a distributed view of the network graph. Nodes exchange `channel_announcement`, `node_announcement`, and `channel_update` messages to advertise channels and routing policies. Before accepting `node_announcement` and `channel_update` messages, a Lightning node must first know and validate the corresponding `channel_announcement`.
>
> After validation, `node_announcement` and `channel_update` messages are propagated throughout the network. In LND, this propagation is handled by a gossip rebroadcast pipeline that uses a de-duplication cache to avoid repeatedly forwarding identical announcements. When a new announcement arrives, its timestamp is compared against any previously stored announcements for the same channel, direction and node. Newer announcements replace older ones, while older announcements are discarded. The implementation of this logic prior to *v0.20.1* can be found in [deDupedAnnouncements->addMsg](https://github.com/lightningnetwork/lnd/blob/91423ee5198e116b210f7f1c2e8b506d5ab28266/discovery/gossiper.go#L1133-L1229).
>
> The bug stems from how announcements with a timestamp of 0 are handled. When a zero-timestamp `node_announcement` or `channel_update` is received for the first time, no cache entry exists and `oldTimestamp` remains initialized to 0. As a result, the code incorrectly treats the announcement as a previously seen message and enters the duplicate-message path.
>
> However, because no previous entry existed, the `senders` map was never initialized. Attempting to write to this nil map triggers a runtime panic that terminates the LND daemon, resulting in a complete loss of node availability until it is restarted.
>
> [**...read more at delvingbitcoin.org**](https://delvingbitcoin.org/t/lnd-zero-timestamp-gossip-dos-disclosure/2621)

VulnerabilityVulnerability