MoneroForum
BTC / Monero SwapYour ad here
Altcoins Started Jun 3, 2026 7:24 PM

The Zcash shielded supply relies on trust, not math

15 replies - 185 views - 0 thanks - 0 tippers - 2 watchers

Jun 3, 2026 7:24 PM Last edited Jun 3, 2026 7:29 PM
#1

https://forum.zcashcommunity.com/t/orchard-vulnerability-successfully-remediated/55976

Zcash's supply has now relied on trust in all private pools. This is Zcash's second hidden inflation vulnerability: the worst class of vulnerability possible. Monero has never had a hidden inflation vulnerability.

You now have to trust that no one printed more shielded Zcash in the Orchard pool while the vulnerability was live, the math in Zcash does not protect you. Orchard is now effectively a trusted pool, technically inferior to FCMP++.

The Zcash turnstile mechanism only mitigates damage. The turnstile would show that someone is unshielding a wholeeee lot of printed Zcash triggering the turnstile (the Orchard pool is almost 30% the total supply currently). There is no way of knowing if an attacker is currently sitting on infinite Zcash in the Orchard pool and already exploited the vulnerability.

It's reckless and irresponsible that the Zcash ecosystem downplays this vulnerability.

"ZCASH WAS NEVER DOWN. FUD"

This distracts from the MAJOR CRITICAL vulnerability that was just found (and YES, the Orchard pool was in fact down while they rolled out the patch).

0 thanks - 0 tippers - 2 watchers
Pegasus SwapYour ad here

Replies

Page 2 of 2 - 15 total
Jun 4, 2026 1:58 AM
#12

@xmr_is_goated I'm not pulling shit out of my ass I just don't want to be reactionary.
Thanks for the tweets though. I'm currently out at the moment but I'll take a look at this later.

1 thanks - xmr_is_goated - 1 tippers
Login to tip
Jun 4, 2026 2:01 AM Edited Jun 4, 2026 2:02 AM
#13

Your intellectual honesty is genuinely appreciated. It's good to steelman.

I'm telling you though: unless the attacker had made some dumb mistake, there is no way that metadata would leak the exploit. How am I supposed to prove a negative here? You're making an assertion that doesn't make sense.

0 thanks - 0 tippers
Login to tip
Jun 4, 2026 2:04 AM
#14

idk the exact details but metadata is always available, even in "perfect" conditions.
Wouldn't be surprised if zcash is downplaing this though. They are fraudulent.

0 thanks - 0 tippers
Login to tip
Jun 4, 2026 2:27 AM Edited Jun 4, 2026 2:28 AM
#15

idk the exact details but metadata is always available, even in "perfect" conditions.

In this case, it isn't. That's why they have no code to detect it and prevent it... EDIT: They only prevent it going forward for NEW transactions.

0 thanks - 0 tippers
Login to tip

Post A Reply

You must be logged in to reply. Login or register.