hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 19:26:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update IncorrectPrivilegeAssignment.ql

Browse Source
This commit is contained in:
ihsinme
2021-11-14 12:17:01 +03:00
committed by GitHub
parent e383e44d36
commit f102fa1d33
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
cpp/ql/src/experimental/Security/CWE/CWE-266/IncorrectPrivilegeAssignment.ql
View File

@@ -65,12 +65,12 @@ where
or
exists(Expr exptmp, int i |
numberArgumentModFunctions(fc.getTarget(), i) and
globalValueNumber(exptmp) = globalValueNumber(fc.getArgument(i)) and
exptmp.getAChild*() instanceof BinaryArithmeticOperation and
not exptmp.getAChild*() instanceof FunctionCall and
not exists(SizeofOperator so | exptmp.getAChild*() = so) and
not exists(ArrayExpr aetmp | aetmp.getArrayOffset() = exptmp.getAChild*()) and
exptmp.getAChild*() instanceof BinaryArithmeticOperation and
not exptmp.getAChild*() instanceof BinaryBitwiseOperation and
globalValueNumber(exptmp) = globalValueNumber(fc.getArgument(i)) and
not exptmp.isConstant() and
msg = "Using arithmetic to compute the mask may not be safe."
)