15 | Внешнее управление параметра настройки системы или параметра конфигурации | Host change using externally controlled elements (Polyspace Bug Finder)
Use of externally controlled environment variable (Polyspace Bug Finder)
|
20 | Неподходящий контроль ввода | Unsafe conversion from string to numerical value (Polyspace Bug Finder)
|
22 | Неподходящее ограничение пути к ограниченной директории ('обход пути') | Vulnerable path manipulation (Polyspace Bug Finder)
|
23 | Обход относительного пути | Vulnerable path manipulation (Polyspace Bug Finder)
|
36 | Обход абсолютного пути | Vulnerable path manipulation (Polyspace Bug Finder)
|
67 | Неправильное обращение Windows Device Names | Inappropriate I/O operation on device files (Polyspace Bug Finder)
|
77 | Неподходящая нейтрализация специальных элементов используется в команде | Execution of externally controlled command (Polyspace Bug Finder)
Unsafe call to a system function (Polyspace Bug Finder)
|
78 | Неподходящая нейтрализация специальных элементов используется в команде ОС | Execution of externally controlled command (Polyspace Bug Finder)
Unsafe call to a system function (Polyspace Bug Finder)
|
88 | Инжекция аргумента или модификация | Execution of externally controlled command (Polyspace Bug Finder)
Unsafe call to a system function (Polyspace Bug Finder)
|
114 | Управление процессом | Command executed from externally controlled path (Polyspace Bug Finder)
Execution of a binary from a relative path can be controlled by an external actor (Polyspace Bug Finder)
Execution of externally controlled command (Polyspace Bug Finder)
Library loaded from externally controlled path (Polyspace Bug Finder)
Load of library from a relative path can be controlled by an external actor (Polyspace Bug Finder)
|
119 | Неподходящее ограничение операций в границах буфера памяти | Array access out of bounds (Polyspace Bug Finder)
Pointer access out of bounds (Polyspace Bug Finder)
|
120 | Буферная копия, не проверяя размер входа ('Классическое переполнение буфера') | Invalid use of standard library memory routine (Polyspace Bug Finder)
Invalid use of standard library string routine (Polyspace Bug Finder)
Tainted NULL or non-null-terminated string (Polyspace Bug Finder)
|
121 | Стековое переполнение буфера | Array access with tainted index (Polyspace Bug Finder)
Destination buffer overflow in string manipulation (Polyspace Bug Finder)
|
122 | Основанное на куче переполнение буфера | Pointer dereference with tainted offset (Polyspace Bug Finder)
|
124 | Буфер подписывает ('Недостаточное наполнение буфера') | Array access with tainted index (Polyspace Bug Finder)
Buffer overflow from incorrect string format specifier (Polyspace Bug Finder)
Destination buffer underflow in string manipulation (Polyspace Bug Finder)
Pointer dereference with tainted offset (Polyspace Bug Finder)
|
125 | За пределы читайте | Array access with tainted index (Polyspace Bug Finder)
Buffer overflow from incorrect string format specifier (Polyspace Bug Finder)
Destination buffer overflow in string manipulation (Polyspace Bug Finder)
|
126 | Буфер зачитывался | Buffer overflow from incorrect string format specifier (Polyspace Bug Finder)
|
127 | Буфер под чтением | Buffer overflow from incorrect string format specifier (Polyspace Bug Finder)
|
128 | Всеобъемлющая ошибка | Integer constant overflow (Polyspace Bug Finder)
Integer conversion overflow (Polyspace Bug Finder)
Integer overflow (Polyspace Bug Finder)
Memory allocation with tainted size (Polyspace Bug Finder)
Tainted sign change conversion (Polyspace Bug Finder)
Tainted size of variable length array (Polyspace Bug Finder)
Unsigned integer constant overflow (Polyspace Bug Finder)
Unsigned integer conversion overflow (Polyspace Bug Finder)
Unsigned integer overflow (Polyspace Bug Finder)
|
129 | Неподходящая валидация индекса массива | Array access with tainted index (Polyspace Bug Finder)
Pointer dereference with tainted offset (Polyspace Bug Finder)
|
130 | Неправильное обращение несоответствия параметра длины | Mismatch between data length and size (Polyspace Bug Finder)
|
131 | Неправильное вычисление buffer size | Array access out of bounds (Polyspace Bug Finder)
Memory allocation with tainted size (Polyspace Bug Finder)
Pointer access out of bounds (Polyspace Bug Finder)
Tainted sign change conversion (Polyspace Bug Finder)
Tainted size of variable length array (Polyspace Bug Finder)
Unsigned integer conversion overflow (Polyspace Bug Finder)
Unsigned integer overflow (Polyspace Bug Finder)
|
134 | Неконтролируемая строка формата | Tainted string format (Polyspace Bug Finder)
|
135 | Неправильный расчет длины байтовой строки | Destination buffer overflow in string manipulation (Polyspace Bug Finder)
Misuse of narrow or wide character string (Polyspace Bug Finder)
Unreliable cast of pointer (Polyspace Bug Finder)
|
170 | Неподходящее пустое завершение | Missing null in string array (Polyspace Bug Finder)
Misuse of readlink() (Polyspace Bug Finder)
Tainted NULL or non-null-terminated string (Polyspace Bug Finder)
|
188 | Уверенность в размещении данных/памяти | Invalid assumptions about memory organization (Polyspace Bug Finder)
Memory comparison of padding data (Polyspace Bug Finder)
Memory comparison of strings (Polyspace Bug Finder)
Missing byte reordering when transferring data (Polyspace Bug Finder)
Pointer access out of bounds (Polyspace Bug Finder)
|
189 | Числовые ошибки | Absorption of float operand (Polyspace Bug Finder)
Float conversion overflow (Polyspace Bug Finder)
Float division by zero (Polyspace Bug Finder)
Float overflow (Polyspace Bug Finder)
Integer constant overflow (Polyspace Bug Finder)
Integer conversion overflow (Polyspace Bug Finder)
Integer division by zero (Polyspace Bug Finder)
Integer overflow (Polyspace Bug Finder)
Precision loss in integer to float conversion (Polyspace Bug Finder)
Shift of a negative value (Polyspace Bug Finder)
Shift operation overflow (Polyspace Bug Finder)
Tainted division operand (Polyspace Bug Finder)
Unsigned integer constant overflow (Polyspace Bug Finder)
Unsigned integer conversion overflow (Polyspace Bug Finder)
Unsigned integer overflow (Polyspace Bug Finder)
|
190 | Целочисленное переполнение или перенос | Integer conversion overflow (Polyspace Bug Finder)
Integer constant overflow (Polyspace Bug Finder)
Integer overflow (Polyspace Bug Finder)
Integer precision exceeded (Polyspace Bug Finder)
Possible invalid operation on boolean operand (Polyspace Bug Finder)
Shift operation overflow (Polyspace Bug Finder)
Tainted division operand (Polyspace Bug Finder)
Unsigned integer conversion overflow (Polyspace Bug Finder)
Unsigned integer overflow (Polyspace Bug Finder)
Unsigned integer constant overflow (Polyspace Bug Finder)
|
191 | Целочисленная потеря значимости (Переносятся или повторяются), | Integer constant overflow (Polyspace Bug Finder)
Integer conversion overflow (Polyspace Bug Finder)
Integer overflow (Polyspace Bug Finder)
Unsigned integer constant overflow (Polyspace Bug Finder)
Unsigned integer conversion overflow (Polyspace Bug Finder)
Unsigned integer overflow (Polyspace Bug Finder)
|
192 | Целочисленная ошибка приведения | Integer conversion overflow (Polyspace Bug Finder)
Integer overflow (Polyspace Bug Finder)
Sign change integer conversion overflow (Polyspace Bug Finder)
Tainted sign change conversion (Polyspace Bug Finder)
Unsigned integer conversion overflow (Polyspace Bug Finder)
Unsigned integer overflow (Polyspace Bug Finder)
|
194 | Неожиданное расширение знака | Sign change integer conversion overflow (Polyspace Bug Finder)
Tainted sign change conversion (Polyspace Bug Finder)
|
195 | Подписанный к ошибке преобразования без знака | Sign change integer conversion overflow (Polyspace Bug Finder)
Tainted sign change conversion (Polyspace Bug Finder)
|
196 | Без знака к ошибке преобразования со знаком | Sign change integer conversion overflow (Polyspace Bug Finder)
|
197 | Числовая ошибка усечения | Float conversion overflow (Polyspace Bug Finder)
Integer conversion overflow (Polyspace Bug Finder)
Unsigned integer conversion overflow (Polyspace Bug Finder)
|
198 | | Missing byte reordering when transferring data (Polyspace Bug Finder)
|
226 | Уязвимая информация не очищена перед релизом | Uncleared sensitive data in stack (Polyspace Bug Finder)
|
227 | Ненадледжащее исполнение контракта API | Invalid use of standard library floating point routine (Polyspace Bug Finder)
Invalid use of standard library integer routine (Polyspace Bug Finder)
Invalid use of standard library memory routine (Polyspace Bug Finder)
Invalid use of standard library routine (Polyspace Bug Finder)
Invalid use of standard library string routine (Polyspace Bug Finder)
Writing to const qualified object (Polyspace Bug Finder)
|
240 | Неправильное обращение противоречивых структурных элементов | Mismatch between data length and size (Polyspace Bug Finder)
|
242 | Использование по сути опасной функции | Use of dangerous standard function (Polyspace Bug Finder)
|
243 | Создание chroot тюрьмы, не изменяя рабочую директорию | File manipulation after chroot without chdir (Polyspace Bug Finder)
|
244 | Неподходящая очистка памяти кучи перед релизом | Sensitive heap memory not cleared before release (Polyspace Bug Finder)
|
250 | Выполнение с ненужными привилегиями | Bad order of dropping privileges (Polyspace Bug Finder)
Privilege drop not verified (Polyspace Bug Finder)
|
251 | Часто неправильно используемый: управление последовательностью | Destination buffer overflow in string manipulation (Polyspace Bug Finder)
|
252 | Возвращаемое значение непроверенное | Returned value of a sensitive function not checked (Polyspace Bug Finder)
|
253 | Неправильная проверка функционального возвращаемого значения | Errno not checked (Polyspace Bug Finder)
Errno not reset (Polyspace Bug Finder)
Returned value of a sensitive function not checked (Polyspace Bug Finder)
Unprotected dynamic memory allocation (Polyspace Bug Finder)
Unsafe conversion from string to numerical value (Polyspace Bug Finder)
|
273 | Неподходящая проверка на пропущенные привилегии | Privilege drop not verified (Polyspace Bug Finder)
|
287 | Неподходящая аутентификация | X.509 peer certificate not checked (Polyspace Bug Finder)
|
297 | Неподходящая валидация сертификата с несоответствием хоста | Server certificate common name not checked (Polyspace Bug Finder)
|
304 | Пропавшие без вести критического шага в аутентификации | TLS/SSL connection method not set (Polyspace Bug Finder)
|
310 | Криптографические проблемы | Constant block cipher initialization vector (Polyspace Bug Finder)
Constant cipher key (Polyspace Bug Finder)
Context initialized incorrectly for cryptographic operation (Polyspace Bug Finder)
Context initialized incorrectly for digest operation (Polyspace Bug Finder)
Incompatible padding for RSA algorithm operation (Polyspace Bug Finder)
Incorrect key for cryptographic algorithm (Polyspace Bug Finder)
Missing blinding for RSA algorithm (Polyspace Bug Finder)
Missing block cipher initialization vector (Polyspace Bug Finder)
Missing certification authority list (Polyspace Bug Finder)
Missing cipher algorithm (Polyspace Bug Finder)
Missing cipher key (Polyspace Bug Finder)
Missing data for encryption, decryption or signing operation (Polyspace Bug Finder)
Missing padding for RSA algorithm (Polyspace Bug Finder)
Missing parameters for key generation (Polyspace Bug Finder)
Missing peer key (Polyspace Bug Finder)
Missing private key (Polyspace Bug Finder)
Missing public key (Polyspace Bug Finder)
Missing X.509 certificate (Polyspace Bug Finder)
Nonsecure hash algorithm (Polyspace Bug Finder)
Nonsecure parameters for key generation (Polyspace Bug Finder)
Nonsecure RSA public exponent (Polyspace Bug Finder)
Nonsecure SSL/TLS protocol (Polyspace Bug Finder)
Predictable block cipher initialization vector (Polyspace Bug Finder)
Predictable cipher key (Polyspace Bug Finder)
Weak cipher algorithm (Polyspace Bug Finder)
Weak cipher mode (Polyspace Bug Finder)
Weak padding for RSA algorithm (Polyspace Bug Finder)
|
311 | Недостающее шифрование уязвимых данных | Missing cipher data to process (Polyspace Bug Finder)
Missing cipher final step (Polyspace Bug Finder)
|
312 | Устройство хранения данных открытого текста уязвимой информации | Sensitive heap memory not cleared before release (Polyspace Bug Finder)
Uncleared sensitive data in stack (Polyspace Bug Finder)
|
316 | Устройство хранения данных открытого текста уязвимой информации в памяти | Sensitive heap memory not cleared before release (Polyspace Bug Finder)
Uncleared sensitive data in stack (Polyspace Bug Finder)
|
320 | Ошибки управления ключами | Constant cipher key (Polyspace Bug Finder)
Missing cipher key (Polyspace Bug Finder)
Missing peer key (Polyspace Bug Finder)
Missing private key (Polyspace Bug Finder)
Missing public key (Polyspace Bug Finder)
|
321 | Использование трудно закодированного криптографического ключа | Constant cipher key (Polyspace Bug Finder)
|
322 | Ключевой Exchange без аутентификации объекта | TLS/SSL connection method not set (Polyspace Bug Finder)
|
325 | Пропавшие без вести потребовали криптографического шага | Context initialized incorrectly for cryptographic operation (Polyspace Bug Finder)
Incorrect key for cryptographic algorithm (Polyspace Bug Finder)
Missing block cipher initialization vector (Polyspace Bug Finder)
Missing cipher data to process (Polyspace Bug Finder)
Missing cipher final step (Polyspace Bug Finder)
Missing cipher algorithm (Polyspace Bug Finder)
Missing cipher key (Polyspace Bug Finder)
Missing data for encryption, decryption or signing operation (Polyspace Bug Finder)
Missing parameters for key generation (Polyspace Bug Finder)
No data added into context (Polyspace Bug Finder)
Weak cipher algorithm (Polyspace Bug Finder)
Weak cipher mode (Polyspace Bug Finder)
|
326 | Несоответствующая сила шифрования | Constant block cipher initialization vector (Polyspace Bug Finder)
Constant cipher key (Polyspace Bug Finder)
Missing blinding for RSA algorithm (Polyspace Bug Finder)
Missing block cipher initialization vector (Polyspace Bug Finder)
Missing padding for RSA algorithm (Polyspace Bug Finder)
Nonsecure parameters for key generation (Polyspace Bug Finder)
Nonsecure RSA public exponent (Polyspace Bug Finder)
Predictable cipher key (Polyspace Bug Finder)
Weak cipher algorithm (Polyspace Bug Finder)
Weak cipher mode (Polyspace Bug Finder)
Weak padding for RSA algorithm (Polyspace Bug Finder)
|
327 | Использование поврежденного или опасного криптографического алгоритма | Missing padding for RSA algorithm (Polyspace Bug Finder)
Nonsecure hash algorithm (Polyspace Bug Finder)
Nonsecure parameters for key generation (Polyspace Bug Finder)
Nonsecure RSA public exponent (Polyspace Bug Finder)
Nonsecure SSL/TLS protocol (Polyspace Bug Finder)
Unsafe standard encryption function (Polyspace Bug Finder)
Weak cipher algorithm (Polyspace Bug Finder)
Weak cipher mode (Polyspace Bug Finder)
Weak padding for RSA algorithm (Polyspace Bug Finder)
|
328 | Обратимый односторонний хэш | Nonsecure hash algorithm (Polyspace Bug Finder)
|
329 | Не используя случайный IV с режимом CBC | Constant block cipher initialization vector (Polyspace Bug Finder)
Missing block cipher initialization vector (Polyspace Bug Finder)
Predictable block cipher initialization vector (Polyspace Bug Finder)
|
330 | Использование недостаточно случайных значений | Deterministic random output from constant seed (Polyspace Bug Finder)
Predictable block cipher initialization vector (Polyspace Bug Finder)
Predictable cipher key (Polyspace Bug Finder)
Predictable random output from predictable seed (Polyspace Bug Finder)
Vulnerable pseudo-random number generator (Polyspace Bug Finder)
|
336 | Тот же seed в PRNG | Deterministic random output from constant seed (Polyspace Bug Finder)
|
337 | Предсказуемый seed в PRNG | Predictable random output from predictable seed (Polyspace Bug Finder)
|
338 | Использование криптографически слабого генератора псевдослучайного числа (PRNG) | Predictable block cipher initialization vector (Polyspace Bug Finder)
Predictable cipher key (Polyspace Bug Finder)
Vulnerable pseudo-random number generator (Polyspace Bug Finder)
|
353 | Пропавшие без вести поддержки проверки целостности | Context initialized incorrectly for digest operation (Polyspace Bug Finder)
Nonsecure hash algorithm (Polyspace Bug Finder)
|
354 | Неподходящая валидация значения проверки целостности | Context initialized incorrectly for digest operation (Polyspace Bug Finder)
|
362 | Параллельное выполнение с помощью совместно используемого ресурса с неподходящей синхронизацией ('Состояние состязания') | File descriptor exposure to child process (Polyspace Bug Finder)
Opening previously opened resource (Polyspace Bug Finder)
|
364 | Состояние состязания обработчика сигнала | Function called from signal handler not asynchronous-safe (strict) (Polyspace Bug Finder)
Function called from signal handler not asynchronous-safe (Polyspace Bug Finder)
Shared data access within signal handler (Polyspace Bug Finder)
|
366 | Состояние состязания в потоке | Data race including atomic operations (Polyspace Bug Finder)
Data race through standard library function call (Polyspace Bug Finder)
Data race (Polyspace Bug Finder)
|
367 | Состояние состязания времени использования времени проверки (TOCTOU) | File access between time of check and use (TOCTOU) (Polyspace Bug Finder)
|
369 | Разделитесь на нуль | Float division by zero (Polyspace Bug Finder)
Integer division by zero (Polyspace Bug Finder)
Invalid use of standard library floating point routine (Polyspace Bug Finder)
Invalid use of standard library integer routine (Polyspace Bug Finder)
Tainted division operand (Polyspace Bug Finder)
Tainted modulo operand (Polyspace Bug Finder)
|
372 | Неполное различие внутреннего состояния | Context initialized incorrectly for cryptographic operation (Polyspace Bug Finder)
Context initialized incorrectly for digest operation (Polyspace Bug Finder)
Incompatible padding for RSA algorithm operation (Polyspace Bug Finder)
Inconsistent cipher operations (Polyspace Bug Finder)
Missing cipher data to process (Polyspace Bug Finder)
Missing cipher final step (Polyspace Bug Finder)
Missing data for encryption, decryption or signing operation (Polyspace Bug Finder)
Missing parameters for key generation (Polyspace Bug Finder)
|
375 | Возврат изменяемого объекта недоверяемой вызывающей стороне | Return of non const handle to encapsulated data member (Polyspace Bug Finder)
|
377 | Небезопасный временный файл | Use of non-secure temporary file (Polyspace Bug Finder)
|
387 | Ошибки сигнала | Function called from signal handler not asynchronous-safe (strict) (Polyspace Bug Finder)
Function called from signal handler not asynchronous-safe (Polyspace Bug Finder)
Return from computational exception signal handler (Polyspace Bug Finder)
Signal call from within signal handler (Polyspace Bug Finder)
|
391 | Состояние ошибки непроверенное | Errno not checked (Polyspace Bug Finder)
|
398 | Индикатор плохого качества кода | Write without a further read (Polyspace Bug Finder)
|
401 | Неподходящий релиз памяти прежде, чем удалить последнюю ссылку | Memory leak (Polyspace Bug Finder)
Thread-specific memory leak (Polyspace Bug Finder)
|
404 | Неподходящее завершение работы ресурса или релиз | Invalid deletion of pointer (Polyspace Bug Finder)
Invalid free of pointer (Polyspace Bug Finder)
Memory leak (Polyspace Bug Finder)
Mismatched alloc/dealloc functions on Windows (Polyspace Bug Finder)
Thread-specific memory leak (Polyspace Bug Finder)
|
413 | Неподходящая блокировка ресурса | Data race (Polyspace Bug Finder)
Data race including atomic operations (Polyspace Bug Finder)
Data race through standard library function call (Polyspace Bug Finder)
Function called from signal handler not asynchronous-safe (Polyspace Bug Finder)
Function called from signal handler not asynchronous-safe (strict) (Polyspace Bug Finder)
Opening previously opened resource (Polyspace Bug Finder)
Shared data access within signal handler (Polyspace Bug Finder)
|
415 | Двойной свободный | Deallocation of previously deallocated pointer (Polyspace Bug Finder)
Missing reset of a freed pointer (Polyspace Bug Finder)
|
416 | Используйте после свободный | Missing reset of a freed pointer (Polyspace Bug Finder)
Use of previously freed pointer (Polyspace Bug Finder)
|
426 | Недоверяемый путь поиска файлов | Command executed from externally controlled path (Polyspace Bug Finder)
Library loaded from externally controlled path (Polyspace Bug Finder)
|
427 | Неконтролируемый элемент пути поиска файлов | Execution of a binary from a relative path can be controlled by an external actor (Polyspace Bug Finder)
Library loaded from externally controlled path (Polyspace Bug Finder)
Load of library from a relative path can be controlled by an external actor (Polyspace Bug Finder)
Use of externally controlled environment variable (Polyspace Bug Finder)
|
456 | Недостающая инициализация переменной | Errno not reset (Polyspace Bug Finder)
Member not initialized in constructor (Polyspace Bug Finder)
Non-initialized pointer (Polyspace Bug Finder)
Non-initialized variable (Polyspace Bug Finder)
|
457 | Использование неинициализированной переменной | Member not initialized in constructor (Polyspace Bug Finder)
Non-initialized pointer (Polyspace Bug Finder)
Non-initialized variable (Polyspace Bug Finder)
|
465 | Проблемы указателя | Unsafe conversion between pointer and integer (Polyspace Bug Finder)
|
466 | Возвратитесь из значения указателя за пределами ожидаемой области значений | Array access out of bounds (Polyspace Bug Finder)
Pointer access out of bounds (Polyspace Bug Finder)
Unsafe conversion between pointer and integer (Polyspace Bug Finder)
|
467 | Использование sizeof () на типе указателя | Possible misuse of sizeof (Polyspace Bug Finder)
Wrong type used in sizeof (Polyspace Bug Finder)
|
468 | Неправильное масштабирование указателя | Incorrect pointer scaling (Polyspace Bug Finder)
|
469 | Использование вычитания указателя, чтобы определить размер | Subtraction or comparison between pointers to different arrays (Polyspace Bug Finder)
|
471 | Модификация принятых - неизменяемые данные | Writing to const qualified object (Polyspace Bug Finder)
|
474 | Использование функции с противоречивыми реализациями | Signal call from within signal handler (Polyspace Bug Finder)
Use of obsolete standard function (Polyspace Bug Finder)
|
475 | Неопределенное поведение для входа к API | Copy of overlapping memory (Polyspace Bug Finder)
|
476 | Нулевой указатель разыменовывает | Null pointer (Polyspace Bug Finder)
Tainted NULL or non-null-terminated string (Polyspace Bug Finder)
|
477 | Использование устаревших функций | Use of obsolete standard function (Polyspace Bug Finder)
|
478 | Недостающий случай по умолчанию в операторе switch | Missing case for switch condition (Polyspace Bug Finder)
|
479 | Использование обработчика сигнала неповторно используемой функции | Function called from signal handler not asynchronous-safe (strict) (Polyspace Bug Finder)
Function called from signal handler not asynchronous-safe (Polyspace Bug Finder)
|
480 | Использование неправильного оператора | Invalid use of = (assignment) operator (Polyspace Bug Finder)
Invalid use of == (equality) operator (Polyspace Bug Finder)
|
481 | Присвоение вместо сравнения | Invalid use of = (assignment) operator (Polyspace Bug Finder)
|
482 | Сравнение вместо присвоения | Invalid use of == (equality) operator (Polyspace Bug Finder)
|
483 | Неправильное определение границ блока | Incorrectly indented statement (Polyspace Bug Finder)
Semicolon on same line as if, for or while statement (Polyspace Bug Finder)
|
484 | Не использованный оператор завершения в переключателе | Missing break of switch case (Polyspace Bug Finder)
|
522 | Недостаточно защищенные учетные данные | Constant cipher key (Polyspace Bug Finder)
Nonsecure hash algorithm (Polyspace Bug Finder)
Nonsecure parameters for key generation (Polyspace Bug Finder)
Nonsecure RSA public exponent (Polyspace Bug Finder)
Nonsecure SSL/TLS protocol (Polyspace Bug Finder)
Unsafe standard encryption function (Polyspace Bug Finder)
|
532 | Информационное воздействие через файлы журнала | Sensitive data printed out (Polyspace Bug Finder)
|
534 | Информационное воздействие через файлы журнала отладки | Sensitive data printed out (Polyspace Bug Finder)
|
535 | Информационное воздействие через сообщение об ошибке интерпретатора | Sensitive data printed out (Polyspace Bug Finder)
|
547 | Использование трудно закодированных, констант, важных для безопасности, | Hard coded buffer size (Polyspace Bug Finder)
Hard coded loop boundary (Polyspace Bug Finder)
|
558 | Использование getlogin () в многопоточном приложении | Unsafe standard function (Polyspace Bug Finder)
|
560 | Использование umask () с аргументом chmod-стиля | Umask used with chmod-style arguments (Polyspace Bug Finder)
|
561 | Мертвый код | Dead code (Polyspace Bug Finder)
Static uncalled function (Polyspace Bug Finder)
Unreachable code (Polyspace Bug Finder)
|
562 | Возвратитесь из адреса переменной стека | Pointer or reference to stack variable leaving scope (Polyspace Bug Finder)
Use of automatic variable as putenv-family function argument (Polyspace Bug Finder)
|
573 | Неподходящее следующее спецификации вызывающей стороны | Context initialized incorrectly for cryptographic operation (Polyspace Bug Finder)
Context initialized incorrectly for digest operation (Polyspace Bug Finder)
Incompatible padding for RSA algorithm operation (Polyspace Bug Finder)
Incorrect key for cryptographic algorithm (Polyspace Bug Finder)
Missing blinding for RSA algorithm (Polyspace Bug Finder)
Missing cipher data to process (Polyspace Bug Finder)
Missing cipher final step (Polyspace Bug Finder)
Missing cipher algorithm (Polyspace Bug Finder)
Missing cipher key (Polyspace Bug Finder)
Missing data for encryption, decryption or signing operation (Polyspace Bug Finder)
Missing final step after hashing update operation (Polyspace Bug Finder)
Missing hash algorithm (Polyspace Bug Finder)
Missing parameters for key generation (Polyspace Bug Finder)
Missing peer key (Polyspace Bug Finder)
Missing private key for X.509 certificate (Polyspace Bug Finder)
Missing private key (Polyspace Bug Finder)
Missing public key (Polyspace Bug Finder)
Modification of internal buffer returned from nonreentrant standard function (Polyspace Bug Finder)
TLS/SSL connection method not set (Polyspace Bug Finder)
TLS/SSL connection method set incorrectly (Polyspace Bug Finder)
|
587 | Присвоение фиксированного адреса к указателю | Function pointer assigned with absolute address (Polyspace Bug Finder)
Unsafe conversion between pointer and integer (Polyspace Bug Finder)
|
590 | Свободный от памяти не на куче | Invalid free of pointer (Polyspace Bug Finder)
|
606 | Неконтролируемое входное условие цикла for | Loop bounded with tainted value (Polyspace Bug Finder)
|
628 | Вызов функции с неправильно заданными аргументами | Bad file access mode or status (Polyspace Bug Finder)
Copy of overlapping memory (Polyspace Bug Finder)
Invalid va_list argument (Polyspace Bug Finder)
Modification of internal buffer returned from nonreentrant standard function (Polyspace Bug Finder)
Standard function call with incorrect arguments (Polyspace Bug Finder)
|
658 | Смотрите отображение между CWE-658 или 659 и результатами Polyspace. |
659 | Смотрите отображение между CWE-658 или 659 и результатами Polyspace. |
663 | Использование неповторно используемой функции в параллельном контексте | Function called from signal handler not asynchronous-safe (strict) (Polyspace Bug Finder)
Function called from signal handler not asynchronous-safe (Polyspace Bug Finder)
Unsafe standard encryption function (Polyspace Bug Finder)
Unsafe standard function (Polyspace Bug Finder)
|
664 | Неподходящее управление ресурса в течение его времени жизни | Context initialized incorrectly for cryptographic operation (Polyspace Bug Finder)
Context initialized incorrectly for digest operation (Polyspace Bug Finder)
Incompatible padding for RSA algorithm operation (Polyspace Bug Finder)
Inconsistent cipher operations (Polyspace Bug Finder)
Incorrect key for cryptographic algorithm (Polyspace Bug Finder)
Missing cipher data to process (Polyspace Bug Finder)
Missing cipher final step (Polyspace Bug Finder)
Missing cipher key (Polyspace Bug Finder)
Missing peer key (Polyspace Bug Finder)
Missing private key (Polyspace Bug Finder)
Missing public key (Polyspace Bug Finder)
|
665 | Неподходящая инициализация | Call to memset with unintended value (Polyspace Bug Finder)
Improper array initialization (Polyspace Bug Finder)
Overlapping assignment (Polyspace Bug Finder)
Use of memset with size argument zero (Polyspace Bug Finder)
|
666 | Операция на ресурсе в неправильной фазе времени жизни | Incorrect order of network connection operations (Polyspace Bug Finder)
|
667 | Неподходящая блокировка | Blocking operation while holding lock (Polyspace Bug Finder)
Destruction of locked mutex (Polyspace Bug Finder)
Missing unlock (Polyspace Bug Finder)
|
672 | Операция на ресурсе после истечения или релиза | Closing a previously closed resource (Polyspace Bug Finder)
Use of previously closed resource (Polyspace Bug Finder)
|
675 | Дублирующиеся операции на ресурсе | Opening previously opened resource (Polyspace Bug Finder)
|
676 | Использование потенциально опасной функции | Unsafe conversion from string to numerical value (Polyspace Bug Finder)
Use of dangerous standard function (Polyspace Bug Finder)
|
681 | Неправильное преобразование между числовыми типами | Float conversion overflow (Polyspace Bug Finder)
Precision loss in integer to float conversion (Polyspace Bug Finder)
|
682 | Неправильное вычисление | Absorption of float operand (Polyspace Bug Finder)
Bitwise operation on negative value (Polyspace Bug Finder)
Float overflow (Polyspace Bug Finder)
Invalid use of standard library floating point routine (Polyspace Bug Finder)
Invalid use of standard library integer routine (Polyspace Bug Finder)
Tainted modulo operand (Polyspace Bug Finder)
Use of plain char type for numerical value (Polyspace Bug Finder)
|
683 | Вызов функции с неправильным порядком аргументов | Call to memset with unintended value (Polyspace Bug Finder)
Format string specifiers and arguments mismatch (Polyspace Bug Finder)
|
685 | Вызов функции с неправильным количеством аргументов | Declaration mismatch (Polyspace Bug Finder)
Format string specifiers and arguments mismatch (Polyspace Bug Finder)
Standard function call with incorrect arguments (Polyspace Bug Finder)
Too many va_arg calls for current argument list (Polyspace Bug Finder)
|
686 | Вызов функции с неправильным типом аргумента | Bad file access mode or status (Polyspace Bug Finder)
Declaration mismatch (Polyspace Bug Finder)
Format string specifiers and arguments mismatch (Polyspace Bug Finder)
Incorrect data type passed to va_arg (Polyspace Bug Finder)
Standard function call with incorrect arguments (Polyspace Bug Finder)
Use of automatic variable as putenv-family function argument (Polyspace Bug Finder)
Writing to const qualified object (Polyspace Bug Finder)
|
687 | Вызов функции с неправильно заданным значением аргумента | Copy of overlapping memory (Polyspace Bug Finder)
Standard function call with incorrect arguments (Polyspace Bug Finder)
Variable length array with nonpositive size (Polyspace Bug Finder)
|
690 | Возвращаемое значение непроверенное к нулевому указателю разыменовывает | Invalid use of standard library memory routine (Polyspace Bug Finder)
Invalid use of standard library routine (Polyspace Bug Finder)
Invalid use of standard library string routine (Polyspace Bug Finder)
Null pointer (Polyspace Bug Finder)
Returned value of a sensitive function not checked (Polyspace Bug Finder)
Standard function call with incorrect arguments (Polyspace Bug Finder)
Tainted NULL or non-null-terminated string (Polyspace Bug Finder)
Unprotected dynamic memory allocation (Polyspace Bug Finder)
|
691 | Недостаточное управление потоком управления | Use of setjmp/longjmp (Polyspace Bug Finder)
|
693 | Отказ механизма защиты | Nonsecure SSL/TLS protocol (Polyspace Bug Finder)
|
696 | Неправильный порядок поведения | Bad order of dropping privileges (Polyspace Bug Finder)
|
703 | Неподходящая проверка или обработка исключительных условий | Errno not reset (Polyspace Bug Finder)
Misuse of errno (Polyspace Bug Finder)
|
704 | Неправильное преобразование типов или бросок | Character value absorbed into EOF (Polyspace Bug Finder)
Misuse of sign-extended character value (Polyspace Bug Finder)
Precision loss in integer to float conversion (Polyspace Bug Finder)
Qualifier removed in conversion (Polyspace Bug Finder)
Unreliable cast of pointer (Polyspace Bug Finder)
Wrong allocated object size for cast (Polyspace Bug Finder)
|
705 | Неправильное определение объема потока управления | Abnormal termination of exit handler (Polyspace Bug Finder)
|
710 | Кодирование стандартного нарушения | Bitwise and arithmetic operation on the same data (Polyspace Bug Finder)
|
732 | Неправильное присвоение разрешения для критического ресурса | Vulnerable permission assignments (Polyspace Bug Finder)
|
754 | Неподходящая проверка на необычные или исключительные условия | Returned value of a sensitive function not checked (Polyspace Bug Finder)
|
755 | Неправильное обращение исключительных условий | Exception handler hidden by previous handler (Polyspace Bug Finder)
|
758 | Уверенность в неопределенном, незаданном, или заданном реализацией поведении | Bitwise operation on negative value (Polyspace Bug Finder)
Unsafe conversion between pointer and integer (Polyspace Bug Finder)
Use of plain char type for numerical value (Polyspace Bug Finder)
|
759 | Использование одностороннего хэша без соли | Missing salt for hashing operation (Polyspace Bug Finder)
|
762 | Несовпадающие стандартные программы управления памятью | Invalid free of pointer (Polyspace Bug Finder)
Mismatched alloc/dealloc functions on Windows (Polyspace Bug Finder)
|
764 | Несколько блокировок критического ресурса | Double lock (Polyspace Bug Finder)
|
765 | Несколько разблокировали критического ресурса | Double unlock (Polyspace Bug Finder)
|
767 | Доступ к критической частной переменной через открытый метод | Return of non const handle to encapsulated data member (Polyspace Bug Finder)
|
770 | Выделение ресурсов без пределов или регулировки | Tainted size of variable length array (Polyspace Bug Finder)
|
772 | Недостающий релиз ресурса после эффективного времени жизни | Resource leak (Polyspace Bug Finder)
|
780 | Использование rsa алгоритма без oaep | Missing padding for RSA algorithm (Polyspace Bug Finder)
Weak padding for RSA algorithm (Polyspace Bug Finder)
|
783 | Ошибка логики приоритета оператора | Possibly unintended evaluation of expression because of operator precedence rules (Polyspace Bug Finder)
|
785 | Использование манипуляции с путями функционирует без буфера максимального размера | Use of path manipulation function without maximum sized buffer checking (Polyspace Bug Finder)
|
786 | Доступ ячейки памяти прежде запускается буфера | Destination buffer underflow in string manipulation (Polyspace Bug Finder)
|
787 | За пределы запишите | Destination buffer overflow in string manipulation (Polyspace Bug Finder)
Destination buffer underflow in string manipulation (Polyspace Bug Finder)
|
789 | Неконтролируемое выделение памяти | Memory allocation with tainted size (Polyspace Bug Finder)
Tainted size of variable length array (Polyspace Bug Finder)
Unprotected dynamic memory allocation (Polyspace Bug Finder)
|
805 | Буферный доступ с неправильным значением длины | Hard-coded object size used to manipulate memory (Polyspace Bug Finder)
|
822 | Недоверяемый указатель разыменовывает | Tainted NULL or non-null-terminated string (Polyspace Bug Finder)
|
823 | Использование указателя из области значений возмещено | Pointer access out of bounds (Polyspace Bug Finder)
Pointer dereference with tainted offset (Polyspace Bug Finder)
|
824 | Доступ неинициализированного указателя | Non-initialized pointer (Polyspace Bug Finder)
|
825 | Указатель с истекшим сроком разыменовывает | Accessing object with temporary lifetime (Polyspace Bug Finder)
Deallocation of previously deallocated pointer (Polyspace Bug Finder)
Environment pointer invalidated by previous operation (Polyspace Bug Finder)
Missing reset of a freed pointer (Polyspace Bug Finder)
Pointer or reference to stack variable leaving scope (Polyspace Bug Finder)
Use of automatic variable as putenv-family function argument (Polyspace Bug Finder)
Use of previously freed pointer (Polyspace Bug Finder)
|
826 | Преждевременный релиз ресурса в течение ожидаемого времени жизни | Closing a previously closed resource (Polyspace Bug Finder)
Destruction of locked mutex (Polyspace Bug Finder)
Use of previously closed resource (Polyspace Bug Finder)
|
828 | Обработчик сигнала с функциональностью, которая не асинхронно-безопасна | Function called from signal handler not asynchronous-safe (strict) (Polyspace Bug Finder)
Function called from signal handler not asynchronous-safe (Polyspace Bug Finder)
|
832 | Разблокируйте ресурса, который не заблокирован | Missing lock (Polyspace Bug Finder)
|
833 | Мертвая блокировка | Deadlock (Polyspace Bug Finder)
|
843 | Доступ ресурса с помощью несовместимого типа ('Вводят беспорядок'), | Unreliable cast of pointer (Polyspace Bug Finder)
|
872 | CERT C++ безопасный раздел кодирования 04 - Целые числа (INT) | Invalid use of standard library integer routine (Polyspace Bug Finder)
|
873 | CERT C++ Безопасный Раздел Кодирования 05 - арифметика С плавающей точкой (FLP) | Absorption of float operand (Polyspace Bug Finder)
Float overflow (Polyspace Bug Finder)
Floating point comparison with equality operators (Polyspace Bug Finder)
Invalid use of standard library floating point routine (Polyspace Bug Finder)
|
908 | Использование неинициализированного ресурса | Member not initialized in constructor (Polyspace Bug Finder)
Non-initialized pointer (Polyspace Bug Finder)
Non-initialized variable (Polyspace Bug Finder)
|
910 | Использование дескриптора файла с истекшим сроком | Closing a previously closed resource (Polyspace Bug Finder)
Standard function call with incorrect arguments (Polyspace Bug Finder)
Use of previously closed resource (Polyspace Bug Finder)
|
922 | Небезопасное устройство хранения данных уязвимой информации | File manipulation after chroot without chdir (Polyspace Bug Finder)
Umask used with chmod-style arguments (Polyspace Bug Finder)
Use of non-secure temporary file (Polyspace Bug Finder)
Vulnerable permission assignments (Polyspace Bug Finder)
|