Back to the previous page
Test Case ID | ![]() |
Bad / Good / Mixed | Bad![]() |
Author | IARPA STONESOUP Test and Evaluation team |
Associations | Test suite: 102 Application: 5 |
Added by | Charles Oliveira |
Language | C |
Type of test case | Source Code |
Input string | |
Expected Output | |
Instructions | See src/INSTALL file for instructions on how to install. |
Submission date | 2015-10-06 |
Description | This test case reads the taint source. If the length of the taint source is 63 bytes or less, it allocates a buffer to copy the taint source into. It then copies the taint source into the buffer, regardless of whether it actually allocated any memory or not. If it did not allocate memory, the buffer pointer is still NULL, and this causes a NULL pointer dereference. Metadata - Base program: PostgreSQL - Source Taint: FILE_CONTENTS - Data Type: SIMPLE - Data Flow: ADDRESS_AS_CONSTANT - Control Flow: SEQUENCE |
File(s) |
|
Flaw |
There are no comments
Have any comments on this test case? Please,
.
- portalmem.c
- service_mon.sh
- C-C476G-PSQL-04-ST02-DT02-DF05-CF20-01.xml
- C-C476G-PSQL-04-ST02-DT02-DF05-CF20-01.yaml
- runFifos.py
File Contains:
CWE-476: NULL Pointer Dereference on line(s): 1006, 1007, 1008, 1009
CWE-476: NULL Pointer Dereference on line(s): 1006, 1007, 1008, 1009