sarangparikh22
commented
2 years ago The problem seems very unlikely to happen, would be great to see a POC.
Open code423n4 opened 2 years ago
sarangparikh22
commented
2 years ago The problem seems very unlikely to happen, would be great to see a POC.
Handle
broccoli
Vulnerability details
Impact
There could be an integer underflow error when the reward of an incentive is claimed, forcing users to wait for a sufficient period or reduce their liquidity to claim the rewards.
Proof of Concept
The unclaimed reward that a user could claim is proportional to the
secondsInside, which is, in fact, proportional to the position's liquidity. It is possible that the liquidity is too large and causessecondsInsideto be larger thansecondsUnclaimed. As a result, the rewards that the user wants to claim exceed theincentive.rewardsUnclaimedand causes an integer underflow error, which prevents him from getting the rewards.Referenced code: ConcentratedLiquidityPoolManager.sol#L94-L95
Recommended Mitigation Steps
Check whether the
rewardsexceeds theincentive.rewardsUnclaimed. If so, then send onlyincentive.rewardsUnclaimedamount of rewards to the user.