[all-commits] [llvm/llvm-project] f90e06: [analyzer] Fix taint sink rules for exec-like func...
Balazs Benics via All-commits
all-commits at lists.llvm.org
Thu Sep 21 22:14:46 PDT 2023
Branch: refs/heads/main
Home: https://github.com/llvm/llvm-project
Commit: f90e063308226fae26589fdc97b6eca78edbc463
https://github.com/llvm/llvm-project/commit/f90e063308226fae26589fdc97b6eca78edbc463
Author: Balazs Benics <benicsbalazs at gmail.com>
Date: 2023-09-22 (Fri, 22 Sep 2023)
Changed paths:
M clang/lib/StaticAnalyzer/Checkers/GenericTaintChecker.cpp
M clang/test/Analysis/taint-generic.c
Log Message:
-----------
[analyzer] Fix taint sink rules for exec-like functions (#66358)
Variadic arguments were not considered as taint sink arguments. I also
decided to extend the list of exec-like functions.
(Juliet CWE78_OS_Command_Injection__char_connect_socket_execl)
More information about the All-commits
mailing list