diff options
author | chriseth <chris@ethereum.org> | 2018-09-06 23:30:51 +0800 |
---|---|---|
committer | chriseth <chris@ethereum.org> | 2018-09-10 18:58:40 +0800 |
commit | 9f6a12eeb5b44d7e9de82864d89c98a2349fb929 (patch) | |
tree | f99f90303203d3edcfde35378302ac4e95f25bcb /docs/bugs.json | |
parent | b84a1b390b2a5cc495b32e8757cac7efde294cc9 (diff) | |
download | dexon-solidity-9f6a12eeb5b44d7e9de82864d89c98a2349fb929.tar.gz dexon-solidity-9f6a12eeb5b44d7e9de82864d89c98a2349fb929.tar.zst dexon-solidity-9f6a12eeb5b44d7e9de82864d89c98a2349fb929.zip |
Update bug description, add regex and tests.
Diffstat (limited to 'docs/bugs.json')
-rw-r--r-- | docs/bugs.json | 11 |
1 files changed, 6 insertions, 5 deletions
diff --git a/docs/bugs.json b/docs/bugs.json index b629d485..980b3897 100644 --- a/docs/bugs.json +++ b/docs/bugs.json @@ -1,10 +1,11 @@ [ { - "name": "ExpCleanupZero", - "summary": "Using exponentiating with types shorter than 256 bits and zero as base can result in unexpected values.", - "description": "As defined by the EVM, 0 ** 0 is one. Solidity does not always remove dirty higher order bits of types that are smaller than 256 bits before applying an operation because it does not matter if the cleanup is performed before or after the operation. This is true for EXP except for the case where the base is zero, which was overlooked.", - "fixed": "0.5.0", - "severity": "high" + "name": "ExpExponentCleanup", + "summary": "Using the ** operator with an exponent of type shorter than 256 bits can result in unexpected values.", + "description": "Higher order bits in the exponent are not properly cleaned before the EXP opcode is applied if the type of the exponent expression is smaller than 256 bits and not smaller than the type of the base. In that case, the result might be larger than expected if the exponent is assumed to lie within the value range of the type. Literal numbers as exponents are unaffected as are exponents or bases of type uint256.", + "fixed": "0.4.25", + "severity": "medium/high", + "check": {"regex-source": "[^/]\\*\\* *[^/0-9 ]"} }, { "name": "EventStructWrongData", |