Closed code423n4 closed 1 year ago
asselstine marked the issue as sponsor confirmed
Picodes marked the issue as unsatisfactory: Insufficient proof
This function is only called here, where the input is the result of this function, which implies the max limit. Invalidating as I don't consider that this report pushes the investigation far enough
Lines of code
https://github.com/GenerationSoftware/pt-v5-prize-pool/blob/4bc8a12b857856828c018510b5500d722b79ca3a/src/abstract/TieredLiquidityDistributor.sol#L328-L375
Vulnerability details
Impact
The function
_nextDraw
is used to end a draw and set the next number of tiers, However it does have a possible issue. It checks if the next number of tiers is lower than the minimum. But it does not check for the upper limit.Proof of Concept
Here we see that the lower bound is checked, but the upper bound for max number of tiers is not checked.
Tools Used
Manual Review
Recommended Mitigation Steps
Add a check for the MAXIMUM_NUMBER_OF_TIERS like it is done in the constructor.
Assessed type
Error