gitlab.flawfinder.LoadLibrary-1

137

Download Count*

License

Use LoadLibraryEx with one of the search flags, or call SetSearchPathMode to use a safe search path, or pass a full path to the library.

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: flawfinder.LoadLibrary-1
    languages:
      - c
    message: >
      Use LoadLibraryEx with one of the search flags, or call SetSearchPathMode
      to use a safe search

      path, or pass a full path to the library.
    metadata:
      cwe: "CWE-20: Ensure that the full path to the library is specified, or current
        directory may be used (CWE-829, CWE-20)"
      primary_identifier: flawfinder.LoadLibrary-1
      secondary_identifiers:
        - name: Flawfinder - LoadLibrary
          type: flawfinder_func_name
          value: LoadLibrary
      license: MIT
    pattern: LoadLibrary(...)
    severity: WARNING

Short Link: https://sg.run/y6n8