SWC-102

Title

Outdated Compiler Version

Relationships

CWE-937: Using Components with Known Vulnerabilities

Description

Using an outdated compiler version can be problematic especially if there are publicly disclosed bugs and issues that affect the current compiler version.

Remediation

It is recommended to use a recent version of the Solidity compiler.

References

• Solidity Release Notes
• Etherscan Solidity Bug Info

Contract Samples

version_0_4_13.sol

pragma solidity 0.4.13;

contract OutdatedCompilerVersion {
    uint public x = 1;
}

version_0_4_13.yaml

description: Test for outdated Solidity compiler
issues:
- id: SWC-102
  count: 1
  locations:
  - bytecode_offsets: {}
    line_numbers:
      version_0_4_13.sol: [1]