Approval Reset Issue with Certain Tokens #1636
Labels
2 (Med Risk)
Assets not at direct risk, but function/availability of the protocol could be impacted or leak value
bug
Something isn't working
duplicate-1662
low quality report
This report is of especially low quality
unsatisfactory
does not satisfy C4 submission criteria; not eligible for awards
Comments
code423n4
added
2 (Med Risk)
|
bytes032 marked the issue as duplicate of #928 |
c4-pre-sort
added
duplicate-928
sufficient quality report
|
bytes032 marked the issue as sufficient quality report |
|
bytes032 marked the issue as not a duplicate |
|
bytes032 marked the issue as duplicate of #1455 |
|
bytes032 marked the issue as not a duplicate |
|
bytes032 marked the issue as duplicate of #1455 |
|
bytes032 marked the issue as duplicate of #1782 |
|
bytes032 marked the issue as not a duplicate |
|
bytes032 marked the issue as duplicate of #1662 |
c4-pre-sort
removed
the
sufficient quality report
c4-pre-sort
added
the
low quality report
|
bytes032 marked the issue as low quality report |
|
GalloDaSballo marked the issue as unsatisfactory: |
c4-judge
added
the
unsatisfactory
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Lines of code
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/amo/UniV2LiquidityAmo.sol#L134
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/amo/UniV2LiquidityAmo.sol#L200-L207
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/amo/UniV2LiquidityAmo.sol#L268
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/amo/UniV2LiquidityAmo.sol#L328
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/amo/UniV3LiquidityAmo.sol#L148-L150
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/amo/UniV3LiquidityAmo.sol#L169-L176
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/amo/UniV3LiquidityAmo.sol#L302
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/core/RdpxV2Core.sol#L411
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/perp-vault/PerpetualAtlanticVault.sol#L207-L210
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/perp-vault/PerpetualAtlanticVault.sol#L245-L249
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/perp-vault/PerpetualAtlanticVaultLP.sol#L106-L107
https://github.com/code-423n4/2023-08-dopex/blob/main/contracts/reLP/ReLPContract.sol#L150-L163
Vulnerability details
Impact
Some tokens (e.g. USDT, KNC) do not allow approving an amount M > 0 when an existing amount N > 0 is already approved. This is to protect from an ERC20 attack vector described here: https://docs.google.com/document/d/1YLPtQxZu1UAvO9cZ1O2RPXBbT0mooh4DYKjA_jp-RLM/edit#heading=h.b32yfk54vyg9
Proof of Concept
The contract's approve function fails when trying to set a new allowance if an existing allowance is already set for tokens like USDT and KNC.
Tools Used
Manual
Recommended Mitigation Steps
Reset allowance to zero before setting a new one.
Assessed type
ERC20
The text was updated successfully, but these errors were encountered: