Platform: Code4rena
Start Date: 27/05/2022
Pot Size: $75,000 USDC
Total HM: 20
Participants: 58
Period: 7 days
Judge: GalloDaSballo
Total Solo HM: 15
Id: 131
League: ETH
Rank: 17/58
Findings: 1
Award: $737.78
π Selected for report: 0
π Solo Findings: 0
π Selected for report: peritoflores
This is a classic Code4rena issue:
https://github.com/code-423n4/2021-04-meebits-findings/issues/2 https://github.com/code-423n4/2021-10-tally-findings/issues/20 https://github.com/code-423n4/2022-01-openleverage-findings/issues/75
The use of the deprecated transfer() function for an address will inevitably make the transaction fail when:
The claimer smart contract does not implement a payable function. The claimer smart contract does implement a payable fallback which uses more than 2300 gas unit. The claimer smart contract implements a payable fallback function that needs less than 2300 gas units but is called through proxy, raising the callβs gas usage above 2300. Additionally, using higher than 2300 gas might be mandatory for some multisig wallets.
https://github.com/code-423n4/2022-01-openleverage-findings/issues/75
/swappers/SwapperRouter.sol 140: payable(msg.sender).transfer(amountIn_); 280: payable(msg.sender).transfer(amount_);
I recommend using call() instead of transfer().
ps: this file is probably out of scope but I prefer to mention this issue nonetheless.
#0 - chase-manning
2022-06-06T10:46:52Z
Duplicate of #180
#1 - GalloDaSballo
2022-06-19T21:05:15Z
Dup of #180