Beedle - Oracle free perpetual lending

BeedleFi

DeFiFoundry

20,000 USDC

View results

Previous Next

Submission Details

Severity: medium

The auction duration doesn't get reset upon buying an auctioned loan

KrisApostolov

Summary

Buying a loan will not change it's auctionLength, leaving it as the old amount it was previously.

Vulnerability Details

When buying a loan placed at a dutch auction with buyLoan() the auctionLength parameter of the loan at hand doesn't get updated to the new pool's auctionLength.

loans[loanId].lender = msg.sender;

loans[loanId].interestRate = pools[poolId].interestRate;

loans[loanId].startTimestamp = block.timestamp;

loans[loanId].auctionStartTimestamp = type(uint256).max;

loans[loanId].debt = totalDebt;

// @audit the auctionLength doesn't get mutated

This presents an issue as loans are supposed to be changed to the new pool's conditions upon getting bought out by that particular pool.

Impact

The new loan will not comply with its new pool's conditions. If the old auctionLength was longer than what the pool is using it can actually even damage the loan's new lender if they decide to auction it as well.

Tools Used

Manual Review

Recommendations

Consider updating the auctionLength of the loan the same way the interestRate gets changed.

Prize pool breakdown

Total prize

20,000 USDC

nSLOC

706

28 USDC / LOC

High Medium

18,000 USDC

Low

2,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.