you should always approve zero amount because some contracts need it to interact with it (ust) #256
Labels
2 (Med Risk)
Assets not at direct risk, but function/availability of the protocol could be impacted or leak value
bug
Something isn't working
duplicate
This issue or pull request already exists
invalid
This doesn't seem right
Comments
code423n4
added
2 (Med Risk)
|
Duplicate of #6 |
|
Disputed per #6 Please provide a coded POC showing a revert to make sure your submissions don't get invalidated |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Lines of code
https://github.com/code-423n4/2022-05-vetoken/blob/2d7cd1f6780a9bcc8387dea8fecfbd758462c152/contracts/VeAssetDepositor.sol#L162
Vulnerability details
:make sure approval is zero first because there are contract that need to approve 0 becaues otherwise alot of contract will fail if approve is not zero first not a user then you can have a problem with (ust contract which needs to approved 0
:mitigation:approve 0 first
The text was updated successfully, but these errors were encountered: