Skip to content

ERC2771 library bug #1008

New issue
New issue
Open
Open
ERC2771 library bug#1008
@parseb

Description

@parseb
parseb
opened on Dec 8, 2023

Describe the bug
This library seems to be vulnerable to the bug in ERC2771 making the rounds.
ELI5:
https://twitter.com/0xCygaar/status/1732982626183729618

https://blog.thirdweb.com/security-vulnerability/
https://blog.openzeppelin.com/arbitrary-address-spoofing-vulnerability-erc2771context-multicall-public-disclosure

Steps To Reproduce
Did not reproduce.

Expected behavior
A clear and concise description of what you expected to happen.

Console Logs and/or Screenshots
If applicable, add outputs of the console and/or screenshots to help explain your problem.

** Link to your project's repository **
In case your repository is open-source and there is already a commit with the code you are having an issue with, it may be helpful to see it to understand what went wrong.

Additional context
Add any other context about the problem here.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions