5 matches found
CVE-2023-40015
Vyper is a Pythonic Smart Contract Language. For the following probably non-exhaustive list of expressions, the compiler evaluates the arguments from right to left instead of left to right. unsafeadd, unsafesub, unsafemul, unsafediv, powmod256, |, &, ^ bitwise operators, bitwiseor deprecated,...
CVE-2023-40015
creationtimestamp| type| source ---|---|--- 2023-09-04 22:21:25+00:00| seen| https://t.me/cibsecurity/69807...
2vyper (=0.3.0), ape-vyper (>=0.7.1 <=0.8.3) +23 more potentially affected by CVE-2023-40015 via vyper (>=0.1.0b12 <=0.3.10)
vyper PYPI version =0.1.0b12, =0.7.1, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =0.1.0, =0.1.10.0, =1.0.1, =0.1.0, =1.4.0, =0.2.1, =0.1.3, =0.1.10 and more Source cves: CVE-2023-40015 Source advisory: OSV:PYSEC-2023-167...
CVE-2023-40015 Vyper: reversed order of side effects for some operations
Vyper is a Pythonic Smart Contract Language. For the following probably non-exhaustive list of expressions, the compiler evaluates the arguments from right to left instead of left to right. unsafeadd, unsafesub, unsafemul, unsafediv, powmod256, |, &, ^ bitwise operators, bitwiseor deprecated,...
CVE-2023-40015
Vyper CVE-2023-40015 describes a compiler behavior issue where the argument evaluation order for a set of expressions is from right to left instead of left to right. The affected language constructs include unsafe_add, unsafe_sub, unsafe_mul, unsafe_div, pow_mod256, bitwise operators (|, &, ^, an...