SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security
Downloads:  Download this Test Case #154667

Back to the previous page... Back to the previous page

Test Case IDCandidate154667
Bad / Good / MixedBadBad test case
AuthorIARPA STONESOUP Test and Evaluation team
Associations
Test suite: 102  
Application: 16  
Added byCharles Oliveira
LanguageJava
Type of test caseSource Code
Input string
Expected Output
Instructions
See src/build.xml.
Submission date2015-10-06
DescriptionAlgorithmic variant: basic
Root cause: none
This test takes a string. It separates the string into a number to use for an array size to sort and a second string to share between threads. It then creates two threads and runs them both. The first thread calculates an increment amount that is used in the second thread. If the string contains a number or lower decimal value ascii character it will cause the increment amount to become negative which won't be fixed before the second thread uses it causing a StringIndexOutOfBoundsException.

Metadata
- Base program: JTree
- Source Taint: ENVIRONMENT_VARIABLE
- Data Type: SIMPLE
- Data Flow: BASIC
- Control Flow: SEQUENCE
File(s)
Flaw

There are no comments
Have any comments on this test case? Please, .

File Contains:
CWE-820: Missing Synchronization on line(s): 347, 348, 349, 350, 351