Test case 238839

Old Test Case ID: 238839
Type: source code
State: mixed
Author: NSA/Center for Assured Software
Status: accepted
Language: C
Submission Date: 06 Oct 2017

Description

CWE: 194 Unexpected Sign Extension
BadSource: listen_socket Read data using a listen socket (server side)
GoodSource: Positive integer
Sink: malloc
BadSink : Allocate memory using malloc() with the size of data
Flow Variant: 02 Control flow: if(1) and if(0)

Flaws

CWE-194 Unexpected Sign Extension

Test Suites

Juliet C/C++ 1.3.1 with extra support
Juliet C/C++ 1.3
Juliet C/C++ 1.3 with extra support

Documentation

Release Log for Juliet 1.3
Juliet 1.3 Test Suite: Changes From 1.2

Have any comments on this test case? Please, send us an email.