Security Audit Report
2. In scope
- SREUR.sol github commit hash 662ec938265d2756943f306266e378f4de46ae88.
In total, 2 issues were reported including:
- 2 low severity issues.
No critical security issues were found.
3.1. Known vulnerabilities of ERC-20 token
It is possible to double withdrawal attack. More details here.
Add the following code to the
transfer(_to address, ...) function:
require( _to != address(this) );
3.2. Decrease Allowance
decreaseAllowance throw in case if the value to be substracted is higher than the amount that is allowed, if the address owner wants to change the value allowed by reducing it and the spender withdraw a part of it before, the function might throw and give more chances for the spender to take the rest of the allowed value.
The value should be set to zero if the value to be subtracted is higher than the allowance.
The audited smart contract can be deployed. Only low severity issues were found during the audit.