Skip to content

Issues: code-423n4/2022-01-openleverage-findings

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

83 Open 187 Closed
83 Open 187 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Multiple potential reentrancies 0 (Non-critical) Code style, clarity, syntax, versioning, off-chain monitoring (events etc), exclude gas optimisation bug Something isn't working sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#270 opened Feb 3, 2022 by code423n4
1
Anyone can crash transferTo 1 (Low Risk) Assets are not at risk. State handling, function incorrect as to spec, issues with comments bug Something isn't working resolved Finding has been patched by sponsor (sponsor pls link to PR containing fix) sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#261 opened Feb 2, 2022 by code423n4
Optimize OpenLevV1.sol#addMarket bug Something isn't working G (Gas Optimization) sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#250 opened Feb 2, 2022 by code423n4
Timelock.sol modification removes logic checks 0 (Non-critical) Code style, clarity, syntax, versioning, off-chain monitoring (events etc), exclude gas optimisation bug Something isn't working
#247 opened Feb 2, 2022 by code423n4
4
Gas Optimization: Redundant check bug Something isn't working G (Gas Optimization) sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#236 opened Feb 2, 2022 by code423n4
anti-flashloan mechanism may lead to protocol default 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working
#233 opened Feb 2, 2022 by code423n4
9
transfer() may break in future ETH upgrade 1 (Low Risk) Assets are not at risk. State handling, function incorrect as to spec, issues with comments bug Something isn't working sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#228 opened Feb 2, 2022 by code423n4
3
Gas Optimization: No need to use SafeMath everywhere bug Something isn't working G (Gas Optimization) sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#225 opened Feb 2, 2022 by code423n4
Funds can be lost 1 (Low Risk) Assets are not at risk. State handling, function incorrect as to spec, issues with comments bug Something isn't working resolved Finding has been patched by sponsor (sponsor pls link to PR containing fix) sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#220 opened Feb 2, 2022 by code423n4
3
Last reward is discarded when reward added twice 0 (Non-critical) Code style, clarity, syntax, versioning, off-chain monitoring (events etc), exclude gas optimisation bug Something isn't working sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#218 opened Feb 2, 2022 by code423n4
User reward can get stuck 1 (Low Risk) Assets are not at risk. State handling, function incorrect as to spec, issues with comments bug Something isn't working sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#215 opened Feb 2, 2022 by code423n4
2
Gas savings and corrections bug Something isn't working G (Gas Optimization) sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#212 opened Feb 2, 2022 by code423n4
Unused library ReentrancyGuard bug Something isn't working G (Gas Optimization) resolved Finding has been patched by sponsor (sponsor pls link to PR containing fix) sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#209 opened Feb 2, 2022 by code423n4
UniV2ClassDex.sol#uniClassSell() Tokens with fee on transfer are not fully supported 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working resolved Finding has been patched by sponsor (sponsor pls link to PR containing fix) sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#208 opened Feb 2, 2022 by code423n4
2
Misc 0 (Non-critical) Code style, clarity, syntax, versioning, off-chain monitoring (events etc), exclude gas optimisation bug Something isn't working sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#198 opened Feb 2, 2022 by code423n4
Bad actor may steal deposit return when liquidating a trade 1 (Low Risk) Assets are not at risk. State handling, function incorrect as to spec, issues with comments bug Something isn't working
#195 opened Feb 2, 2022 by code423n4
5
The check for max rate 1000 ole should be inclusive 1 (Low Risk) Assets are not at risk. State handling, function incorrect as to spec, issues with comments bug Something isn't working sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#164 opened Feb 2, 2022 by code423n4
1
endTime can be before startTime 1 (Low Risk) Assets are not at risk. State handling, function incorrect as to spec, issues with comments bug Something isn't working resolved Finding has been patched by sponsor (sponsor pls link to PR containing fix) sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#160 opened Feb 1, 2022 by code423n4
2
Gas: // Shh - currently unused bug Something isn't working G (Gas Optimization) sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#153 opened Feb 1, 2022 by code423n4
Gas in LPool.sol:availableForBorrow(): Avoid expensive calculation with an inclusive inequality bug Something isn't working G (Gas Optimization) sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#148 opened Feb 1, 2022 by code423n4
ControllerStorage: related market data should be grouped in a struct 0 (Non-critical) Code style, clarity, syntax, versioning, off-chain monitoring (events etc), exclude gas optimisation bug Something isn't working
#146 opened Feb 1, 2022 by code423n4
1
Gas Optimization: Tight variable packing in LPoolStorage.sol bug Something isn't working G (Gas Optimization)
#140 opened Feb 1, 2022 by code423n4
2
Gas in Adminable.sol:acceptAdmin(): SLOADs minimization bug Something isn't working G (Gas Optimization) sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#137 opened Feb 1, 2022 by code423n4
1
Gas: Tautology on "variable >= 0" which is always true as variable is uint bug Something isn't working G (Gas Optimization) resolved Finding has been patched by sponsor (sponsor pls link to PR containing fix) sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#132 opened Feb 1, 2022 by code423n4
Gas: Shift Right instead of Dividing by 2 bug Something isn't working G (Gas Optimization) sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#131 opened Feb 1, 2022 by code423n4
ProTip! Find all open issues with in progress development work with linked:pr.