Beedle - Oracle free perpetual lending

BeedleFi

DeFiFoundry

20,000 USDC

View results

Previous Next

Submission Details

Severity: high

No check is done to make sure ```amount``` to be removed is not greater than poolbalance.

zanybonzy

Summary

amount to be removed is only checked to not be equal to zero and not checked to see if greater than pool balance.

Vulnerability Details

The poolBalance (currentBalance, newBalance) is a uint256 parameter. In having an amount greater than the pool balance, the subtraction operation in the _updatePoolBalance function will result in an underflow. As a result, the updated poolBalance will wrap around to a large value instead of going negative (which is bad enough in and of itself). The contract in this case will wrongly assume that the poolBalance is sufficient to cover the amount and proceed with the token transfer.

Impact

Break in contract logic, underflow, potential loss of funds.

Tools Used

Manual Code Review

Recommendations

A check must be implemented to make sure the amount to be removed isn't greater than the current poolBalance.

Prize pool breakdown

Total prize

20,000 USDC

nSLOC

706

28 USDC / LOC

High Medium

18,000 USDC

Low

2,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.