Merge pull request #14744 from jketema/fgets

C++: Fix `hasRemoteFlowSource` for `fgets`
2026-04-30 03:05:15 +02:00 · 2023-11-10 14:03:40 +01:00
parent 340b20f93d ba51b65d84
commit c71bdce2d0
3 changed files with 20 additions and 4 deletions
--- a/cpp/ql/lib/semmle/code/cpp/models/implementations/Gets.qll
+++ b/cpp/ql/lib/semmle/code/cpp/models/implementations/Gets.qll
@@ -49,10 +49,11 @@ private class FgetsFunction extends DataFlowFunction, TaintFunction, ArrayFuncti
  }

  override predicate hasRemoteFlowSource(FunctionOutput output, string description) {
-    output.isParameterDeref(0) and
-    description = "string read by " + this.getName()
-    or
-    output.isReturnValue() and
+    (
+      output.isParameterDeref(0) or
+      output.isReturnValue() or
+      output.isReturnValueDeref()
+    ) and
    description = "string read by " + this.getName()
  }