National Institute of Standards and Technology
Package illustrating a test case

Test case 83001

Description

CWE: 190 Integer Overflow
BadSource: connect_socket Read data using a connect socket (client side)
GoodSource: Set data to a small, non-zero number (two)
Sinks: add
GoodSink: Ensure there will not be an overflow before adding 1 to data
BadSink : Add 1 to data, which can cause an overflow
Flow Variant: 44 Data/control flow: data passed as an argument from one function to a function in the same source file called via a function pointer

Flaws

Test Suites

Documentation

Have any comments on this test case? Please, send us an email.