11 Commits

Author	SHA1	Message	Date
Rasmus Lerchedahl Petersen	9cb83fcdc9	python: add summaries for ... copy, pop, get, getitem, setdefault Also add read steps to taint tracking. Reading from a tainted collection can be done in two situations: 1. There is an acces path In this case a read step (possibly from a flow summary) gives rise to a taint step. 2. There is no access path In this case an explicit taint step (possibly via a flow summary) should exist.	2023-05-26 14:04:15 +02:00
Rasmus Lerchedahl Petersen	8d4f9447b1	python: remove explicit steps ... copy, pop, get, popitem	2023-05-26 13:22:54 +02:00
Rasmus Wriedt Larsen	d73289ac4e	Python: Accept .expected changes	2023-04-27 11:54:39 +02:00
Rasmus Wriedt Larsen	544de5232c	Python: Use ' instead of ` in select text	2022-11-29 14:47:45 +01:00
Rasmus Wriedt Larsen	4e67ec19d0	Python: Adjust alert text of py/pam-auth-bypass	2022-11-28 16:14:38 +01:00
Rasmus Wriedt Larsen	f8442ccb0e	Python: Adjust PAM Auth bypass test slightly	2022-11-28 16:08:44 +01:00
Rasmus Wriedt Larsen	fef06679e5	Python: Remove options file for PAM Auth Bypass ... Should not be needed	2022-11-28 16:03:32 +01:00
Rasmus Wriedt Larsen	479a9e4156	Python: Update .expected	2022-11-28 16:01:42 +01:00
Porcupiney Hairs	db231a111c	Python : Improve the PAM authentication bypass query ... The current PAM auth bypass query which was contributed by me a few months back, alert on a vulenrable function but does not check if the function is actually function. This leads to a lot of fasle positives. With this PR, I add a taint-tracking configuration to check if the username parameter can actually be supplied by an attacker. This should bring the FP's significantly down.	2022-11-19 01:29:25 +05:30
Rasmus Wriedt Larsen	b54de13d97	Python: Apply suggestions from code review ... Co-authored-by: Taus <tausbn@github.com>	2022-05-18 10:30:29 +02:00
Rasmus Wriedt Larsen	0956d506de	Python: Actually promote py/pam-auth-bypass ... 🤦	2022-05-11 13:44:47 +02:00