The Electric Coin Company has developed consensus code that preserves the Zcash monetary base in the event of a counterfeiting compromise within Zcash’s shielded supply. We intend to deploy this as a backwards compatible consensus rule in the Zcashd v2.0.5 release, scheduled for the beginning of May. We believe this new rule does not materially affect users and is low-risk to deploy.
We are aware of only one previous vulnerability, CVE 2019-7167, which before the Sapling network upgrade activation, could have allowed a counterfeiting compromise. Although a compromise was possible, we do not believe that counterfeiting has occurred. The full disclosure summary includes a list of those reasons.