Conner Fromknecht, head of crypto engineering at Lightning Labs, reported early this week the discovery of a vulnerability in versions 0.10.x and lower of LND, Lightning Labs' Lightning Network implementation. He insisted that users who are using this implementation are strongly recommend to upgrade to version 0.11.0 without delay.
He continued to assert that, they are informing the Lightning community of vulnerabilities affecting versions 0.10.x and lower and that the full details of these vulnerabilities will be revealed on October 20, 2020. He maintained that the circumstances surrounding the discovery necessitated a disclosure timeline shorter than their usual timelines. He said they will publish more details on this in the coming weeks to elaborate more about it.
While they have no reason to believe that these vulnerabilities have been exploited, they still strongly urge the community to upgrade to LND version 0.11.0 or higher as soon as possible.