Juliet C/C++ 1.3.1 with extra support Test suite #116
DownloadDescription
A collection of C and C++ test cases updated from Juliet C/C++ 1.3. This test suite updates 28 test cases:
- 18 test cases related to CWE-476: 104778, 104779, 104780, 104781, 104782, 104783, 104784, 104785, 104786, 104787, 104788, 104789, 104790, 104791, 104792, 104793, 104794, 104795
- 10 test cases related to CWE-457: 103357, 103379, 240459, 103556, 103578, 240519, 103754, 103909, 240579 and 104085
Thanks to Markus Schordan for reporting the issues.
Displaying test cases 46101 - 46125 of 64099 in total
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 789 Uncontrolled Memory Allocation BadSource: rand Set data to result of rand(), which may be zero GoodSource: Small number greater than zero Sinks: GoodSink: Allocate memory with new [] and check the size of the memory to be allocated BadSink : Allocate memory with new [], but incorrec...
-
CWE: 78 OS Command Injection BadSource: connect_socket Read data using a connect socket (client side) GoodSource: Fixed string Sinks: popen BadSink : Execute command in data using popen() Flow Variant: 81 Data flow: data passed in a parameter to an virtual method called via a reference
-
CWE: 78 OS Command Injection BadSource: connect_socket Read data using a connect socket (client side) GoodSource: Fixed string BadSink : Execute command in data using popen() Flow Variant: 82 Data flow: data passed in a parameter to an virtual method called via a pointer
-
CWE: 78 OS Command Injection BadSource: connect_socket Read data using a connect socket (client side) GoodSource: Fixed string Sinks: popen BadSink : Execute command in data using popen() Flow Variant: 83 Data flow: data passed to class constructor and destructor by declaring the class objec...
-
CWE: 78 OS Command Injection BadSource: connect_socket Read data using a connect socket (client side) GoodSource: Fixed string Sinks: popen BadSink : Execute command in data using popen() Flow Variant: 84 Data flow: data passed to class constructor and destructor by declaring the class objec...
-
CWE: 78 OS Command Injection BadSource: connect_socket Read data using a connect socket (client side) GoodSource: Fixed string Sinks: system BadSink : Execute command in data using system() Flow Variant: 81 Data flow: data passed in a parameter to an virtual method called via a reference
-
CWE: 78 OS Command Injection BadSource: connect_socket Read data using a connect socket (client side) GoodSource: Fixed string BadSink : Execute command in data using system() Flow Variant: 82 Data flow: data passed in a parameter to an virtual method called via a pointer
-
CWE: 78 OS Command Injection BadSource: connect_socket Read data using a connect socket (client side) GoodSource: Fixed string Sinks: system BadSink : Execute command in data using system() Flow Variant: 83 Data flow: data passed to class constructor and destructor by declaring the class obj...
-
CWE: 78 OS Command Injection BadSource: connect_socket Read data using a connect socket (client side) GoodSource: Fixed string Sinks: system BadSink : Execute command in data using system() Flow Variant: 84 Data flow: data passed to class constructor and destructor by declaring the class obj...
-
CWE: 78 OS Command Injection BadSource: console Read input from the console GoodSource: Fixed string Sinks: popen BadSink : Execute command in data using popen() Flow Variant: 81 Data flow: data passed in a parameter to an virtual method called via a reference
-
CWE: 78 OS Command Injection BadSource: console Read input from the console GoodSource: Fixed string BadSink : Execute command in data using popen() Flow Variant: 82 Data flow: data passed in a parameter to an virtual method called via a pointer
-
CWE: 78 OS Command Injection BadSource: console Read input from the console GoodSource: Fixed string Sinks: popen BadSink : Execute command in data using popen() Flow Variant: 83 Data flow: data passed to class constructor and destructor by declaring the class object on the stack