PUT_VALUE handler overwrites stored records without version comparison

[Realman78]

• Version: 15.1.11

• Platform: 6.1.0-42-amd64 Debian 6.1.159-1 (2025-12-30) x86_64 GNU/Linux

• Subsystem: kad-dht

Severity: High - Low (Depending on the knowledge of this)

Description

PutValueHandler.handle() validates the incoming record's signature. After that, it unconditionally overwrites whatever is stored locally. The selector is never called during PUT. This means a valid but older signed record can overwrite a newer one on any DHT node. A malicious peer can exploit this by aggressively re-publishing stale records.

Expected behavior: before overwriting, check the existing record using the selector and reject the incoming record if it's older.

Is this intentional? If so, what's the recommended mitigation for applications that store mutable versioned records?
For example, I mitigated the issue like this: I forked the kad-dht PUT_VALUE handler to check if a record already exists locally before overwriting — if the incoming record has a lower version than the stored one, the PUT is rejected.

Why I put it as Severity High - Low: I did not know about this. After talking with some other people who use this library, I found out they do not know either. I even asked Sonnet 4.5 and after a 45 second research, it said "Yes, the PUT handler does use selectors". If this is common knowledge, I apologize.

Steps to reproduce the error: N/A

[gitsofaryan]

hey @Realman78 can i work with this issue?

[Realman78]

hey @Realman78 can i work with this issue?

I’m not sure I understand the question. Are you asking me if you can contribute to the code to resolve this? If yes, then I’m sorry to inform you but I have no authority here.
If you’re asking if you can use this library with this issue, then it depends on what’s your use case.

[lukaIvanic]

bump