increaseAllowance and decreaseAllowance is from ERC20 is deprecated #340
Labels
2 (Med Risk)
Assets not at direct risk, but function/availability of the protocol could be impacted or leak value
bug
Something isn't working
duplicate-320
low quality report
This report is of especially low quality
unsatisfactory
does not satisfy C4 submission criteria; not eligible for awards
Lines of code
https://github.com/code-423n4/2023-09-centrifuge/blob/main/src/token/ERC20.sol#L139#L159
Vulnerability details
Impact
non-standard ERC20 function
Proof of Concept
OpenZeppelin/openzeppelin-contracts#4585
Tools Used
manure
Recommended Mitigation Steps
should use SafeERC20 instead
https://github.com/OpenZeppelin/openzeppelin-contracts/blob/60e3ffe6a3cc38ab94cae995bc1de081eed79335/contracts/token/ERC20/utils/SafeERC20.sol#L48-L69
Assessed type
ERC20
The text was updated successfully, but these errors were encountered: