hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-06-17 02:41:08 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
49f8fd2164f42e566bd5664cc342c3a5a1700a84
codeql/cpp/ql/test/query-tests/Security/CWE
History
Robert Marsh 6f03c3e252 C++: Accept command injection test changes 
Making the DefaultTaintTracking configurations inactive removed many
unneeded nodes and edges from the PathGraph predicates.
2021-09-22 14:19:23 -07:00
..
CWE-014
C++: Make the tests more realistic by actually using the local variable for something. Otherwise it looks like a zero-initialization of a buffer, which the query now tries to exclude.
2021-02-26 09:19:05 +01:00
CWE-022
C++: Fix a few glitches and accept line number changes in expected files.
2021-09-02 17:34:47 +01:00
CWE-078
C++: Accept command injection test changes
2021-09-22 14:19:23 -07:00
CWE-079/semmle/CgiXss
C++: Accept test changes after merge from main (which changed the path explanations).
2021-03-11 21:16:57 +01:00
CWE-089/SqlTainted
C++: Make the new SQL abstract classes extend 'Function' instead. This is more in line with how we model RemoteFlowFunction.
2021-06-23 11:49:51 +02:00
CWE-114
C++: Fix a few glitches and accept line number changes in expected files.
2021-09-02 17:34:47 +01:00
CWE-119
Merge pull request #6679 from andersfugmann/relax_memberMayBeVarSize
2021-09-15 17:24:10 +01:00
CWE-120/semmle
C++: Accept test changes after merge from main (which changed the path explanations).
2021-03-11 21:16:57 +01:00
CWE-121/semmle/tests
CPP: Add the Semmle security tests.
2018-11-26 17:52:34 +00:00
CWE-129
C++: Fix a few glitches and accept line number changes in expected files.
2021-09-02 17:34:47 +01:00
CWE-131/semmle/NoSpaceForZeroTerminator
C++: Move the SizeCheck*.ql tests to the standard location.
2020-10-20 16:02:54 +01:00
CWE-134
Merge pull request #6593 from geoffw0/samate-move
2021-09-15 14:18:08 +02:00
CWE-190
Merge pull request #6593 from geoffw0/samate-move
2021-09-15 14:18:08 +02:00
CWE-191/UnsignedDifferenceExpressionComparedZero
C++: Add more dataflow cases to replace the loss.
2021-04-13 15:09:12 +01:00
CWE-197/SAMATE/IntegerOverflowTainted
C++: Fix a few glitches and accept line number changes in expected files.
2021-09-02 17:34:47 +01:00
CWE-242/semmle/tests
C++: Add getOutputParameterIndex override to UserDefinedFormattingFunction and accept test changes
2020-07-15 14:46:08 +02:00
CWE-253
CPP: Exclude switch statements.
2018-10-19 10:24:29 +01:00
CWE-290/semmle/AuthenticationBypass
C++: Accept test changes after merge from main (which changed the path explanations).
2021-03-11 21:16:57 +01:00
CWE-311/semmle/tests
C++: Exclude results formatted with a character other than %s.
2021-07-22 17:40:32 +01:00
CWE-327
C++: Repair funcion call in a function call.
2021-06-17 14:33:16 +01:00
CWE-367/semmle
C++: Accept any check followed by a 'sensitive' use such as 'chmod'.
2021-07-20 18:11:05 +01:00
CWE-416/semmle/tests
Revert "Merge pull request #6004 from MathiasVP/path-sensitive-stack-variable-reachability-analysis"
2021-07-20 18:06:49 +02:00
CWE-428
Fixing typos & incorporating feedback.
2018-10-16 10:00:51 -07:00
CWE-457/semmle
Revert "Merge pull request #6004 from MathiasVP/path-sensitive-stack-variable-reachability-analysis"
2021-07-20 18:06:49 +02:00
CWE-468/semmle
C++: Speed up SuspiciousAddWithSizeof select
2020-04-24 16:18:18 +02:00
CWE-497
C++: Actually fix expected files after layout changes.
2021-09-03 09:13:41 +01:00
CWE-570
Update cpp/ql/test/query-tests/Security/CWE/CWE-570/test.cpp
2021-08-11 16:18:18 +02:00
CWE-675/semmle/tests
Add files via upload
2021-09-02 10:22:49 +03:00
CWE-676
C++: Fix a few glitches and accept line number changes in expected files.
2021-09-02 17:34:47 +01:00
CWE-704
Updates based on feedback
2018-10-02 11:17:23 -07:00
CWE-732
C++: Fix new UnsafeDaclSecurityDescriptor FP
2019-04-02 11:31:12 +02:00
CWE-764/semmle/tests
C++: Add mutex test case.
2021-03-30 15:39:21 +01:00
CWE-772
C++: Actually fix expected files after layout changes.
2021-09-03 09:13:41 +01:00
CWE-807/semmle/TaintedCondition
C++: require that other operands be predictable
2020-11-09 13:00:55 -08:00
CWE-835/semmle/InfiniteLoopWithUnsatisfiableExitCondition
CPP: Add the Semmle security tests.
2018-11-26 17:52:34 +00:00
README.md
C++: Subsection header.
2021-09-13 14:10:17 +01:00

README.md

CWE specific security tests

Source from the Juliet Test Suite

Some of the the files in these tests contain source code copied or derived from the public domain "Juliet Test Suite for C/C++" (provided by NIST / SAMATE Team at https://samate.nist.gov/SARD/testsuite.php). Such tests are typically in subdirectories named "SAMATE".