Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
code423n4Code4renaCODE423N4:2022-05-STURDY-FINDINGS-ISSUES-140
HistoryMay 15, 2022 - 12:00 a.m.

Reward Manager of the Convex Base Reward Pool Can DoS processYield()

2022-05-1500:00:00
Code4rena
github.com
6
JSON

Lines of code

Vulnerability details

Impact

The ConvexCurveLPVault.sol contract allows users to earn a yield on curve token deposits. Rewards are paid out in native CRV and CVX tokens but the reward manager of the base pool may opt to add extra rewards. Because the reward manager has the ability to extend the list of extra rewards, they can extend it such that the processYield() function is unable to execute within a single block. As a result, the protocol effectively loses out on all yield accrued by user’s deposits. This yield is forever locked in the contract as the yield is never transferred out from the vault contract.

Recommended Mitigation Steps

Consider restricting the number of extra rewards by only iterating through the first X number of tokens in processYield().

The text was updated successfully, but these errors were encountered:

All reactions

JSON