Incorrect owner address in _withdrawFromVault
In LendingPool::_withdrawFromVault(), we will withdraw some funds from the crvUSD Vault. In the curveVault.withdraw() function, the third parameter is the owner. We will burn this owner's crvUSD Vault's share.
The problem is that we use msg.sender
as the owner. It means that when users withdraw funds, we will burn msg.sender's crvUSD vault's share. This is incorrect. Our protocol deposits the funds into the crvUSD Vault. So the owner of this withdraw should be our protocol.
Incorrect owner parameter in curveVault.withdraw
. This will cause that we cannot withdraw funds from the crvUSD Vault.
Manual
Set our protocol contract as the owner parameter in curveVault.withdraw()
.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.