Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
code423n4Code4renaCODE423N4:2023-09-ONDO-FINDINGS-ISSUES-497
HistorySep 07, 2023 - 12:00 a.m.

The rUSDY.transferFrom function can cause reentrancy if is a contract been approved

2023-09-0700:00:00
Code4rena
github.com
22
rusdy
transferfrom
vulnerability
reentrancy
contract approved
mitigation
cei
oz library
reentrancyguard
JSON

Lines of code

Vulnerability details

Impact

The rUSDY.transferFrom function can cause reentrancy if is a contract been approved, the function looks like:

  • <https://github.com/code-423n4/2023-09-ondo/blob/main/contracts/usdy/rUSDY.sol#L301-L312&gt;

    function transferFrom(
    address _sender,
    address _recipient,
    uint256 _amount
    ) public returns (bool) {
    uint256 currentAllowance = allowances[_sender][msg.sender];
    require(currentAllowance >= _amount, β€œTRANSFER_AMOUNT_EXCEEDS_ALLOWANCE”);

    _transfer(_sender, _recipient, _amount);
_approve(_sender, msg.sender, currentAllowance - _amount); // @audit doesnt follow the check- effect - interaction pattern
return true;

    }

This could be an issue if it’s a contract that has been approved to spend tokens, as it can reenter this function.

Tools Used

Manual review.

Recommended Mitigation Steps

Use the CEI or add the OZ library ReentrancyGuard.

Assessed type

Reentrancy

The text was updated successfully, but these errors were encountered:

All reactions

JSON