Skip to content

Issues: code-423n4/2023-02-ethos-findings

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

190 Open 670 Closed
190 Open 670 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

ReaperVaultV2 inflation attack bug Something isn't working disagree with severity Sponsor confirms validity, but disagrees with warden’s risk assessment (sponsor explain in comments) downgraded by judge Judge downgraded the risk level of this issue grade-b primary issue Highest quality submission among a set of duplicates Q-02 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax satisfactory satisfies C4 submission criteria; eligible for awards
#848 opened Mar 7, 2023 by code423n4
7
QA Report bug Something isn't working grade-b Q-01 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#840 opened Mar 7, 2023 by code423n4
2
QA Report bug Something isn't working grade-a Q-05 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#839 opened Mar 7, 2023 by code423n4
2
Gas Optimizations bug Something isn't working G (Gas Optimization) G-01 grade-a
#838 opened Mar 7, 2023 by code423n4
1
The minimum redemption fee is added to the baseRate rather than acting as a cap or otherwise accounted for. bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-b Q-06 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor disputed Sponsor cannot duplicate the issue, or otherwise disagrees this is an issue
#836 opened Mar 7, 2023 by code423n4
9
Gas Optimizations bug Something isn't working G (Gas Optimization) G-02 grade-a selected for report This submission will be included/highlighted in the audit report
#835 opened Mar 7, 2023 by code423n4
2
Gas Optimizations bug Something isn't working G (Gas Optimization) G-03 grade-b
#834 opened Mar 7, 2023 by code423n4
1
Manipulation of Share Price Of the Underlying Assets bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue duplicate-848 grade-b Q-07 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
#831 opened Mar 7, 2023 by code423n4
4
QA Report bug Something isn't working grade-b Q-08 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor disputed Sponsor cannot duplicate the issue, or otherwise disagrees this is an issue
#830 opened Mar 7, 2023 by code423n4
4
Incorrect degradation coefficient due to wrong block period assumption bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-b primary issue Highest quality submission among a set of duplicates Q-03 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax satisfactory satisfies C4 submission criteria; eligible for awards sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#829 opened Mar 7, 2023 by code423n4
12
QA Report bug Something isn't working edited-by-warden grade-b Q-09 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#828 opened Mar 7, 2023 by code423n4
2
distributionPeriod can be changed without anybody noticing and removing rewardPerSecond until changed back bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-b Q-10 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#827 opened Mar 7, 2023 by code423n4
3
QA Report bug Something isn't working edited-by-warden grade-b Q-11 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#824 opened Mar 7, 2023 by code423n4
2
Gas Optimizations bug Something isn't working G (Gas Optimization) G-04 grade-b
#823 opened Mar 7, 2023 by code423n4
1
QA Report bug Something isn't working grade-a Q-12 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#820 opened Mar 7, 2023 by code423n4
2
QA Report bug Something isn't working grade-b Q-04 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#817 opened Mar 7, 2023 by code423n4
3
QA Report bug Something isn't working grade-b Q-13 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons
#794 opened Mar 7, 2023 by code423n4
2
Mismatch of Documented Units bug Something isn't working disagree with severity Sponsor confirms validity, but disagrees with warden’s risk assessment (sponsor explain in comments) downgraded by judge Judge downgraded the risk level of this issue duplicate-829 grade-a QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax satisfactory satisfies C4 submission criteria; eligible for awards
#783 opened Mar 7, 2023 by code423n4
9
First Deposit Bug bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue duplicate-848 grade-b Q-15 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax satisfactory satisfies C4 submission criteria; eligible for awards
#779 opened Mar 7, 2023 by code423n4
5
First depositor can manipulate the share price minted to users bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue duplicate-848 grade-b Q-16 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax satisfactory satisfies C4 submission criteria; eligible for awards
#778 opened Mar 7, 2023 by code423n4
5
Potential Denial-of-Service in Strategy bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-a QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor disputed Sponsor cannot duplicate the issue, or otherwise disagrees this is an issue
#774 opened Mar 7, 2023 by code423n4
5
QA Report bug Something isn't working grade-a Q-17 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#773 opened Mar 7, 2023 by code423n4
5
[H1] Low data feed frequency from Tellor makes you protocol vulnerable to flash loan attacks 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue M-01 primary issue Highest quality submission among a set of duplicates satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor disputed Sponsor cannot duplicate the issue, or otherwise disagrees this is an issue
#772 opened Mar 7, 2023 by code423n4
10
Add grace period to avoid massive liquidations bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue edited-by-warden grade-b Q-18 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#771 opened Mar 7, 2023 by code423n4
3
QA Report bug Something isn't working grade-b Q-19 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#765 opened Mar 7, 2023 by code423n4
2
ProTip! Add no:assignee to see everything that’s not assigned.