Update DangerousUseMbtowc.ql

2026-04-25 08:45:14 +02:00 · 2022-06-02 14:34:38 +03:00
parent 77e4d05ea3
commit 9d12f1be53
1 changed files with 4 additions and 1 deletions
--- a/cpp/ql/src/experimental/Security/CWE/CWE-125/DangerousUseMbtowc.ql
+++ b/cpp/ql/src/experimental/Security/CWE/CWE-125/DangerousUseMbtowc.ql
@@ -19,7 +19,10 @@ predicate exprMayBeString(Expr exp) {
    exists(StringLiteral sl | globalValueNumber(exp) = globalValueNumber(sl))
    or
    exists(FunctionCall fctmp |
-      globalValueNumber(fctmp.getAnArgument()) = globalValueNumber(exp) and
+      (
+        fctmp.getAnArgument().(VariableAccess).getTarget() = exp.(VariableAccess).getTarget() or
+        globalValueNumber(fctmp.getAnArgument()) = globalValueNumber(exp)
+      ) and
      fctmp.getTarget().hasGlobalOrStdName(["strlen", "strcat", "strncat", "strcpy", "sptintf"])
    )
    or