Libra's Move IR Compiler Vulnerability

Summary

break characters different from \n at the end of inline comments, malicious module publishers can deceive users that trust their apparent source code. This is especially important in the blockchain setting, where trust is replaced by auditability. A related vulnerability was previously found by our... team in the Solidity compiler audit on Nov 1st, 2018. The events timeline is as follows: August 6th: We disclosed the vulnerability to the Libra team, who acknowledged our notification. August 8th: The Libra team introduced a change to the line of code where we had pinpointed the vulnerability...

Project

Libra

BNB Chain

Rekt reported

Last audited on 25/02/2023

by Cyberscope

Auditor

O

OpenZeppelin

Multi-Chain

38.6bn TVS

215 audits on Trustblock

Multi-Tags

Contract (1)