Approve 0 first #269
Labels
1 (Low Risk)
Assets are not at risk. State handling, function incorrect as to spec, issues with comments
bug
Something isn't working
Handle
pauliax
Vulnerability details
Impact
Rebalance managers approve max if allowance < quantity. SingleTokenJoin, SingleTokenJoinV2, SingleNativeTokenExit, and SingleNativeTokenExitV2. approve max if allowance < balance.
The problem is that some tokens, e.g. USDT require resetting approval to 0 before approving any value again.
Recommended Mitigation Steps
Consider using this approach:
The text was updated successfully, but these errors were encountered: