issues
search
code-423n4
/
2024-05-arbitrum-foundation-findings
3
stars
2
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Staked amounts on layer zero edges could be stuck or even lost for honest challengers
#22
howlbot-integration[bot]
closed
4 months ago
5
incorrect assertion can be confirmed by abusing confirmEdgeByOneStepProof function
#21
howlbot-integration[bot]
closed
4 months ago
2
An error in the accounting of stake refunds could result in insolvency
#20
howlbot-integration[bot]
closed
4 months ago
2
Participants who didn't deposit into edge challenge manager can still get a refund
#19
howlbot-integration[bot]
closed
4 months ago
2
`removeWhitelistAfterFork` and `removeWhitelistAfterValidatorAfk` can be called when contract is paused, disabling whitelist mechanism
#18
howlbot-integration[bot]
opened
4 months ago
3
Withdrawals can be delayed in some conditions
#17
howlbot-integration[bot]
closed
4 months ago
4
Griefing Attack Possible Where Validator Will Lose Their Stake
#16
howlbot-integration[bot]
closed
4 months ago
2
Undesirable behaviour in the event of a fork immediately after BOLD upgrade
#15
c4-bot-3
closed
4 months ago
3
QA Report
#14
c4-bot-8
opened
4 months ago
3
Incorrect check in `requireInactiveStaker` allows validators to withdraw their stakes for pending assertions
#13
c4-bot-6
closed
4 months ago
3
Wrong usage of origin checking in sequence inbox
#12
c4-bot-8
closed
4 months ago
3
An invalid validator can prevent upgrade by creating an assertion on old Nitro rollup
#11
c4-bot-8
opened
4 months ago
3
`checkClaimIdLink` does not check `ClaimId`
#10
c4-bot-5
closed
4 months ago
1
Adversary can force honest party to lose stake to challenge their incorrect edges
#9
c4-bot-6
closed
4 months ago
4
Adversary can make honest parties unable to retrieve their assertion stakes if the required amount is decreased
#8
c4-bot-1
opened
4 months ago
8
The time spent paused is incremented in the rollup's timing for assertion validation.
#7
c4-bot-9
opened
4 months ago
15
A flaw in the time confirmation mechanism enables the confirmation of erroneous edges.
#6
c4-bot-2
closed
4 months ago
1
`BOLDUpgradeAction.sol` will fail to upgrade contracts due to error in the `perform` function
#5
c4-bot-8
opened
4 months ago
5
Staker's funds might be stuck in the rollup contract if `forceCreateAssertion` is used
#4
c4-bot-3
opened
4 months ago
16
Validator AFK timer is ticking even when the rollup contract is paused
#3
c4-bot-2
opened
4 months ago
10
Edge from dishonest challenge edge tree can inherit timer from honest tree allowing confirmation of incorrect assertion
#2
c4-bot-1
opened
4 months ago
5
Agreements & Disclosures
#1
code4rena-id[bot]
opened
5 months ago
0
Previous