Merge pull request #1400 from jbj/suspicious-pointer-scaling_medium

C++: Suspicious pointer scaling: @precision medium
2026-04-28 18:25:24 +02:00 · 2019-06-07 16:13:48 +01:00
parent 092163aad5 cf96035d8c
commit ab507aa3d1
2 changed files with 2 additions and 1 deletions
--- a/change-notes/1.22/analysis-cpp.md
+++ b/change-notes/1.22/analysis-cpp.md
@@ -11,6 +11,7 @@

 | **Query**                  | **Expected impact**    | **Change**                                                       |
 |----------------------------|------------------------|------------------------------------------------------------------|
+| Suspicious pointer scaling (`cpp/suspicious-pointer-scaling`) | Lower precision | The precision of this query has been reduced to "medium". This coding pattern is used intentionally and safely in a number of real-world projects. Results are no longer displayed on LGTM unless you choose to display them. |

 ## Changes to QL libraries

--- a/cpp/ql/src/Security/CWE/CWE-468/IncorrectPointerScaling.ql
+++ b/cpp/ql/src/Security/CWE/CWE-468/IncorrectPointerScaling.ql
@@ -4,7 +4,7 @@
 *              can cause buffer overflow conditions.
 * @kind problem
 * @problem.severity warning
- * @precision high
+ * @precision medium
 * @id cpp/suspicious-pointer-scaling
 * @tags security
 *       external/cwe/cwe-468