anyone can burn tokens and cause a liquidation and a Dos attack

[c4-bot-5]

Lines of code

https://github.com/code-423n4/2024-01-salty/blob/53516c2cdfdfacb662cdea6417c52f23c94d5b5b/src/stable/USDS.sol#L53

Vulnerability details

Impact

can cause user or pool unexpected liquidation when increasing position size. Unfair liquidation for users.

Tools Used

manual

Recommended Mitigation Steps

Add a function modifier to the burnTokensInContract function

Assessed type

Access Control