Java: update header-splitting sink kind to response-splitting

2026-03-03 22:33:42 +01:00 · 2023-05-09 12:17:08 -04:00
parent 51df84ed1c
commit 041caa7405
4 changed files with 6 additions and 6 deletions
--- a/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
+++ b/java/ql/lib/semmle/code/java/dataflow/ExternalFlow.qll
@@ -277,7 +277,7 @@ module ModelValidation {
          "open-url", "jndi-injection", "ldap-injection", "sql-injection", "jdbc-url",
          "log-injection", "mvel-injection", "xpath-injection", "groovy-injection", "xss",
          "ognl-injection", "intent-redirection", "pending-intents", "url-redirection",
-          "create-file", "read-file", "write-file", "hostname-verification", "header-splitting",
+          "create-file", "read-file", "write-file", "hostname-verification", "response-splitting",
          "information-leak", "xslt-injection", "jexl-injection", "bean-validation",
          "template-injection", "fragment-injection", "command-injection"
        ] and
--- a/java/ql/lib/semmle/code/java/security/ResponseSplitting.qll
+++ b/java/ql/lib/semmle/code/java/security/ResponseSplitting.qll
@@ -11,7 +11,7 @@ private import semmle.code.java.dataflow.ExternalFlow
 abstract class HeaderSplittingSink extends DataFlow::Node { }

 private class DefaultHeaderSplittingSink extends HeaderSplittingSink {
-  DefaultHeaderSplittingSink() { sinkNode(this, "header-splitting") }
+  DefaultHeaderSplittingSink() { sinkNode(this, "response-splitting") }
 }

 /** A source that introduces data considered safe to use by a header splitting source. */