Ivshti
commented
2 years ago As you said, because of the nonces, as well as not using the sig bytes as identifying data, this is a non-issue. Marking as resolved
Open code423n4 opened 2 years ago
Ivshti
commented
2 years ago As you said, because of the nonces, as well as not using the sig bytes as identifying data, this is a non-issue. Marking as resolved
GalloDaSballo
commented
2 years ago The finding is valid There is no impact Will downgrade to Non Critical
Handle
cmichel
Vulnerability details
The
SignatureValidator.recoverAddrImplfunction does not check for malleable signatures. Without this check, anyone can derive a second, different but valid signature (for the same message).Impact
As nonces are used and the signature bytes are never used themselves, not checking for malleability does not lead to issues.
Recommended Mitigation Steps
You might or might not want to implement these additional checks, depending on gas costs.