ocaml.lang.security.marshal.ocamllint-marshal

profile photo of semgrepsemgrep
Author
unknown
Download Count*
LGPL Commons Clause
License

Marshaling is currently not type-safe and can lead to insecure behaviour when untrusted data is marshalled. Marshalling can lead to out-of-bound reads as well.

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit RuleView Source
Open in Playground 
rules:
  - id: ocamllint-marshal
    pattern-either:
      - pattern: input_value
      - pattern: Marshal.from_channel
      - pattern: Marshal.from_bytes
      - pattern: Marshal.from_string
    message: Marshaling is currently not type-safe and can lead to insecure
      behaviour when untrusted data is marshalled. Marshalling can lead to
      out-of-bound reads as well.
    languages:
      - ocaml
    severity: WARNING
    metadata:
      category: security
      technology:
        - ocaml
      cwe: "CWE-502: Deserialization of Untrusted Data"
      references:
        - https://eternal.red/2021/secure-ocaml-sandbox/
      confidence: LOW
      likelihood: MEDIUM
      impact: HIGH
      subcategory:
        - vuln
      license: Commons Clause License Condition v1.0[LGPL-2.1-only]
      vulnerability_class:
        - "Insecure Deserialization "

Examples

marshal.ml

(* ruleid:ocamllint-marshal *)
let d = input_value stdin in
  Printf.printf "%d\n" (Buffer.length d)