Skip to content

Issues: code-423n4/2023-09-maia-findings

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

258 Open 647 Closed
258 Open 647 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Funds stuck in router if no additional payload send during callOutAndBridge bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue duplicate-685 grade-a Q-01 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#898 opened Oct 6, 2023 by c4-submissions
6
Analysis A-01 analysis-advanced grade-b sufficient quality report This report is of sufficient quality
#895 opened Oct 6, 2023 by c4-submissions
3
QA Report bug Something isn't working grade-a Q-02 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#886 opened Oct 6, 2023 by c4-submissions
2
All tokens can be stolen from VirtualAccount due to missing access modifier 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working H-01 high quality report This report is of especially high quality primary issue Highest quality submission among a set of duplicates satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity")
#885 opened Oct 6, 2023 by c4-submissions
10
Gas Optimizations bug Something isn't working G (Gas Optimization) G-01 grade-a sufficient quality report This report is of sufficient quality
#884 opened Oct 6, 2023 by c4-submissions
2
The governance will fail to add an ecosystem token if someone creates a hToken that uses that ecosystem token 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working disagree with severity Sponsor confirms validity, but disagrees with warden’s risk assessment (sponsor explain in comments) M-01 primary issue Highest quality submission among a set of duplicates satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
#881 opened Oct 6, 2023 by c4-submissions
17
Gas Optimizations bug Something isn't working G (Gas Optimization) G-02 grade-a sufficient quality report This report is of sufficient quality
#878 opened Oct 6, 2023 by c4-submissions
5
if the Virtual Account's owner is a Contract Account (multisig wallet), attackers can gain control of the Virtual Accounts by gaining control of the same owner's address in a different chain 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working H-02 primary issue Highest quality submission among a set of duplicates satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality upgraded by judge Original issue severity upgraded from QA/Gas by judge
#877 opened Oct 6, 2023 by c4-submissions
20
Gas Optimizations bug Something isn't working G (Gas Optimization) G-03 grade-a sufficient quality report This report is of sufficient quality
#876 opened Oct 6, 2023 by c4-submissions
3
_bridgeOut in BranchPort.sol calculates the _amount and _deposit incorrectly bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-b low quality report This report is of especially low quality Q-03 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
#873 opened Oct 6, 2023 by c4-submissions
4
Analysis A-02 analysis-advanced grade-a sufficient quality report This report is of sufficient quality
#870 opened Oct 6, 2023 by c4-submissions
3
QA Report bug Something isn't working grade-b Q-04 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#868 opened Oct 6, 2023 by c4-submissions
2
QA Report bug Something isn't working grade-b Q-05 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#866 opened Oct 6, 2023 by c4-submissions
2
Analysis A-03 analysis-advanced edited-by-warden grade-a selected for report This submission will be included/highlighted in the audit report sufficient quality report This report is of sufficient quality
#864 opened Oct 6, 2023 by c4-submissions
4
Analysis A-04 analysis-advanced edited-by-warden grade-a sufficient quality report This report is of sufficient quality
#863 opened Oct 6, 2023 by c4-submissions
3
Gas Optimizations bug Something isn't working G (Gas Optimization) G-04 grade-a sufficient quality report This report is of sufficient quality
#861 opened Oct 6, 2023 by c4-submissions
2
Gas Optimizations bug Something isn't working G (Gas Optimization) G-05 grade-b sufficient quality report This report is of sufficient quality
#859 opened Oct 6, 2023 by c4-submissions
2
users may not be able to call retryDeposit(...) for failed deposits bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-a primary issue Highest quality submission among a set of duplicates Q-06 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
#858 opened Oct 6, 2023 by c4-submissions
17
QA Report bug Something isn't working grade-b low quality report This report is of especially low quality Q-07 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
#857 opened Oct 6, 2023 by c4-submissions
3
BranchBridgeAgent is missing source chain checking. bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-a primary issue Highest quality submission among a set of duplicates Q-08 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
#855 opened Oct 6, 2023 by c4-submissions
7
QA Report bug Something isn't working grade-a Q-09 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#854 opened Oct 6, 2023 by c4-submissions
5
Gas Optimizations bug Something isn't working G (Gas Optimization) G-06 grade-a sufficient quality report This report is of sufficient quality
#853 opened Oct 6, 2023 by c4-submissions
2
Fees not integrated with LayerZero functions bug Something isn't working downgraded by judge Judge downgraded the risk level of this issue grade-a low quality report This report is of especially low quality Q-10 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
#851 opened Oct 6, 2023 by c4-submissions
7
Analysis A-05 analysis-advanced grade-b sufficient quality report This report is of sufficient quality
#848 opened Oct 6, 2023 by c4-submissions
3
QA Report bug Something isn't working grade-a Q-11 QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax sufficient quality report This report is of sufficient quality
#846 opened Oct 6, 2023 by c4-submissions
6
ProTip! Adding no:label will show everything without a label.