Closed sherlock-admin2 closed 4 months ago
2 comment(s) were left on this issue during the judging contest.
WangAudit commented:
tokens can be added only by admin; therefore; I believe they will pick an appropriate number
karanctf commented:
erc20 tokens list is limited
bareli
medium
DOS can happen.
Summary
Gas Limitations: Loops over arrays without bounds could cause out-of-gas issues.
Vulnerability Detail
function checkForDuplicates(address[] calldata erc20tokens) internal pure { if (erc20tokens.length == 0) return;
Impact
Loops over arrays without bounds could cause out-of-gas issues.
Vulnerability Detail
Code Snippet
https://github.com/sherlock-audit/2024-03-nouns-dao-2/blob/main/nouns-monorepo/packages/nouns-contracts/contracts/governance/NounsDAOAdmin.sol#L570
Tool used
Manual Review
Recommendation
use a limit on erc20tokens.length .