-
# Description
There appears to be a potential memory leak issue within the Status class of the leveldb project. This issue was discovered during fuzz testing and further analysis of the source code. …
-
https://wsxk.github.io/%E9%9D%99%E6%80%81%E5%88%86%E6%9E%90_datalog/
1. Motivation
2. Introduction to Datalog
3. Pointer Analysis via Datalog
4. Taint Analysis via Datalog
1. Motivation
…
-
### Description
Hi,
When I test some cases that return type is array and as transfer, such as String.split. I doubt how to correct config the rule.
My test sample:
```
class ArgToResultStri…
-
This package passes uintptr to C functions, which is not safe. It can cause memory corruption in rare cases. I did not try to reproduce this bug with this package, because it is subtle. However, we ha…
evanj updated
2 weeks ago
-
Relative pointers, although common, are a problematic construct in C/C++, as they blur the line between pointer assignment and pointer arithmetic. Points-to analyses need to handle these very differen…
-
```
(These messages are also written to the application log file)
Cannot invoke "ghidra.program.model.data.DataType.getLength()" because "dt" is null
java.lang.NullPointerException: Cannot invoke…
-
llvm-slicer seg faults during pointer analysis of grep 2.2. See attached tar-ball for reproducting bc. Source file has been pre-processed by CIL and instrumented with no-op marker calls.
[grep.bc.…
-
There are a few interesting linters, STAs that we could add to the CI flow to improve checks:
Flawfinder
https://dwheeler.com/flawfinder/
splint
https://splint.org/
scan-build - exists as a…
-
zig build-exe --main-pkg-path .. --single-threaded -I/usr/include -L/usr/local/lib64 -L/usr/lib64 -lsqlite3 -lc `pkg-config --libs gtk+-3.0` composite_register.zig
Semantic Analysis [783/1023] /home/…
-
Hi,
For the following bitcode file, I ran SUPA on-demand points-to analysis and found there is no callsite result.
[imagick_r.0.4.opt.bc.zip](https://github.com/SVF-tools/SVF/files/5430322/imagi…