Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Sign up
Appearance settings

FIO32-C: enhance the query to support secure fopen usage pattern #12

Open
Labels
Difficulty-MediumA false positive or false negative report which is expected to take 1-5 days effort to address Impact-Low Standard-CERT-C enhancementNew feature or request
@mbaluda

Description

Affected rules

  • FIO32-C

Description

Currently the implementation simply checks that the filename used in a call to fopen is not tainted.
However, the rule requires that certain OS-supported dynamic checks are present in the code.
We'd like to enhance this query to support some usage pattern that would allow it to be excluded from being checked.

Metadata

Metadata

Assignees

No one assigned

    Labels

    Difficulty-MediumA false positive or false negative report which is expected to take 1-5 days effort to address Impact-Low Standard-CERT-C enhancementNew feature or request

    Type

    No type

    Projects

    Status

    Reported

    Milestone

    No milestone

      Relationships

      None yet

      Development

      No branches or pull requests

      Issue actions

        AltStyle によって変換されたページ (->オリジナル) /