Summary
I discovered a precision loss vulnerability in OUSD elastic supply accounting system during my security research.
Key Findings
- Small holders (100 OUSD) lose ~99 wei per rebase cycle
- Extreme case: 1 wei holders receive 0 yield completely
- 93% of rebase events (28/30 tested) cause precision loss
- Accumulated dust: 746,700 wei lost in invariant testing
Impact
This affects small holders disproportionately, causing fund loss over time.
PoC Available
I have a complete Foundry test suite demonstrating the issue with 5 passing tests. Please contact me at ljapptest@gmail.com for the full PoC code.
Severity
Medium - Fund loss for users, but requires specific conditions.
Please move this to a private security advisory if appropriate. I am available to provide full technical details and PoC code.
Summary
I discovered a precision loss vulnerability in OUSD elastic supply accounting system during my security research.
Key Findings
Impact
This affects small holders disproportionately, causing fund loss over time.
PoC Available
I have a complete Foundry test suite demonstrating the issue with 5 passing tests. Please contact me at ljapptest@gmail.com for the full PoC code.
Severity
Medium - Fund loss for users, but requires specific conditions.
Please move this to a private security advisory if appropriate. I am available to provide full technical details and PoC code.