gitlab.flawfinder.strlen-1.wcslen-1._tcslen-1._mbslen-1
137
Download Count*
License
Does not handle strings that are not \0-terminated.
Run Locally
Run in CI
Defintion
rules:
- id: flawfinder.strlen-1.wcslen-1._tcslen-1._mbslen-1
languages:
- c
message: |
Does not handle strings that are not \\0-terminated.
metadata:
cwe: "CWE-126: Does not handle strings that are not \\0-terminated; if given one
it may perform an over-read (it could cause a crash if unprotected)
(CWE-126)"
primary_identifier: flawfinder.strlen-1.wcslen-1._tcslen-1._mbslen-1
secondary_identifiers:
- name: Flawfinder - strlen
type: flawfinder_func_name
value: strlen
- name: Flawfinder - wcslen
type: flawfinder_func_name
value: wcslen
- name: Flawfinder - _tcslen
type: flawfinder_func_name
value: _tcslen
- name: Flawfinder - _mbslen
type: flawfinder_func_name
value: _mbslen
license: MIT
pattern-either:
- pattern: strlen(...)
- pattern: wcslen(...)
- pattern: _tcslen(...)
- pattern: _mbslen(...)
severity: INFO
Short Link: https://sg.run/WOky