Compound’s cETH Market Temporarily Frozen Due to Code Bug

  • Despite having its code audited by three separate firms, Compound’s Proposal 117 introduced a bug that caused cETH transactions to revert, temporarily freezing its market.
  • A proposal to fix the issue has already been created, but it needs to go through a seven-day governance process before taking effect.
code

Shutterstock

A recent update to decentralized finance (DeFi) lending protocol Compound contained a code error, which has temporarily halted the trade of Compound Ether (cETH), the platform said via Twitter on 30 August.

According to the announcement, governance proposal “117: Compound Oracle Upgrade v3” went live on Tuesday with the goal of updating the protocol to use price feeds from Uniswap V3. Although the code was audited by three separate smart contract auditing firms, it still contained a bug which caused transactions for suppliers and borrowers of cETH to revert, temporarily freezing the market.

The code error also caused the protocol’s frontend to stop working temporarily, but Compound assured its users that the funds were not “immediately at risk”. Although users are unable to borrow or withdraw collateral at the moment, they are still able to repay debt and add collateral to positions with other assets to avoid liquidation when a fix is implemented.

Only an hour after Proposal 117 was executed, the Compound team had already put forth a governance proposal that would see the protocol revert back to the previous price feed, though this process will take seven days to complete. Transactions with cETH — which is given to users when they deposit ETH to Compound — will remain frozen until the fix goes into effect. The price of COMP, the native token of the protocol, seems largely unaffected by the news, having fallen by only 3% in the last 24 hours.

Discussion
Related Coverage
Hacker Steals $9M from SafeMoon
  • SafeMoon said that only its SFM:BNB liquidity pool (LP) was affected, and that it had located the suspected exploit, and patched the vulnerability.
  • The bug was allegedly introduced with the latest SafeMoon upgrade, and allowed the attacker to burn the majority of SFM in the pool, artificially inflating its price.
March 29, 2023, 2:00 PM
hacker

Shutterstock

Binance Temporarily Paused Spot Trading Due to a Bug
  • Crypto exchange Binance disabled spot trading for about two hours after its matching engine encountered a bug on a trailing stop order.
  • All services have now been restored, but the platform said that trailing stop orders will be disabled “for the time being”, and existing ones will be cancelled.
Celsius Reduces Aave Debt Significantly, Reclaims $420M in Collateral
  • Blockchain data shows that Celsius has repaid $81.6 million of its debt to Aave today alone, freeing up 400,000 stETH tokens that it used as collateral.
  • Data from crypto tracking platform Zapper also shows the company’s outstanding debt has been reduced to $59 million, the majority of which is owed to Compound.