Closed code423n4 closed 1 year ago
GalloDaSballo marked the issue as duplicate of #274
GalloDaSballo marked the issue as partial-50
50% because of the lack of clear explanation on how this goes from a potential issues into a real grief
GalloDaSballo marked the issue as not a duplicate
GalloDaSballo changed the severity to QA (Quality Assurance)
L --
TODO: See #276
GalloDaSballo marked the issue as grade-c
Closing for validation, will re-judge later
This previously downgraded issue has been upgraded by GalloDaSballo
This previously downgraded issue has been upgraded by GalloDaSballo
GalloDaSballo marked the issue as duplicate of #276
GalloDaSballo marked the issue as partial-50
In lack of the front-run exploit am downgrading by half
Lines of code
https://github.com/code-423n4/2023-01-drips/blob/9fd776b50f4be23ca038b1d0426e63a69c7a511d/src/Drips.sol#L450
Vulnerability details
Squeezing drips requires verifying the entire history of that drip. This means iterating over an unbounded loop of the size of the history
As a result of having to iterate over the entire history, if the history exceeds a certain size, the total gas cost of squeezing that drip will exceed the block gas limit, making it impossible to ever squeeze from that drip. This means that all tokens from that drip would be locked in the contract until the drips are complete.