Livepeer contest - cccz's results

Decentralized live streaming platform built on the blockchain.

General Information

Platform: Code4rena

Start Date: 13/01/2022

Pot Size: $75,000 USDC

Total HM: 9

Participants: 27

Period: 7 days

Judge: leastwood

Total Solo HM: 5

Id: 73

League: ETH

Livepeer

Findings Distribution

Researcher Performance

Rank: 7/27

Findings: 3

Award: $2,423.52

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest Page Github Contest Repository Github Findings Repository Livepeer

Findings Information

🌟 Selected for report: WatchPug

Also found by: cccz

Labels

bug

duplicate

2 (Med Risk)

Awards

15.3557 LPT - $569.39

1565.8688 USDC - $1,565.87

External Links

Link to GitHub issue

Handle

cccz

Vulnerability details

Impact

Same as https://github.com/code-423n4/2021-11-overlay-findings/issues/22, the burner could burn any amount of tokens of any user.

Proof of Concept

https://github.com/livepeer/arbitrum-lpt-bridge/blob/main/contracts/L2/token/LivepeerToken.sol#L36-L44

Tools Used

Manual analysis

Recommended Mitigation Steps

Update burn function for only owner can burn his tokens.

#0 - yondonfu
2022-01-23T14:49:40Z

Duplicate of https://github.com/code-423n4/2022-01-livepeer-findings/issues/194

Findings Information

🌟 Selected for report: Dravee

Also found by: cccz, defsec, robee

Labels

bug

duplicate

1 (Low Risk)

Awards

2.073 LPT - $76.87

211.3923 USDC - $211.39

External Links

Link to GitHub issue

Handle

cccz

Vulnerability details

Impact

In the DelegatorPool contract, the initialize function was missing access controls, allowing any user to initialize the contract. By front-running the contract deployers to initialize the contract, the incorrect parameters may be supplied, leaving the contract needing to be redeployed.

    function initialize(address _bondingManager) public initializer {
        bondingManager = _bondingManager;
        migrator = msg.sender;
        initialStake = pendingStake();
    }

Proof of Concept

https://github.com/livepeer/arbitrum-lpt-bridge/blob/main/contracts/L2/pool/DelegatorPool.sol#L47-L51

Tools Used

Manual analysis

Recommended Mitigation Steps

Setting the owner in the contract's constructor to the msg.sender and adding the onlyOwner modifier to all initializers

#0 - yondonfu
2022-01-21T16:26:03Z

Duplicate of https://github.com/code-423n4/2022-01-livepeer-findings/issues/112

Livepeer contest - cccz's results

Decentralized live streaming platform built on the blockchain.

General Information

Findings Distribution

Researcher Performance

External Links

[M-05] LivepeerToken.burn function could burn tokens of any user - $2,135.26

Findings Information

Labels

Awards

External Links

Handle

Vulnerability details

Impact

Proof of Concept

Tools Used

Recommended Mitigation Steps

#0 - yondonfu2022-01-23T14:49:40Z

QA Report - $288.26

QA Report - $288.26

[L-06] FRONT-RUNNABLE INITIALIZERS - $288.26

Findings Information

Labels

Awards

External Links

Handle

Vulnerability details

Impact

Proof of Concept

Tools Used

Recommended Mitigation Steps

#0 - yondonfu2022-01-21T16:26:03Z

#0 - yondonfu
2022-01-23T14:49:40Z

#0 - yondonfu
2022-01-21T16:26:03Z