Missing calls from python kb cve 2024-32022

OrenGitHub / dhscanner

free as in speech container scanner

https://orengithub.github.io/

1 stars 0 forks source link

Missing calls from python kb cve 2024-32022 #39

Closed OrenGitHub closed 1 month ago

OrenGitHub commented 1 month ago

 52         # Run the command based on the operating system
 53         if os.name == 'posix':
 54             os.system(run_cmd) # <--- this call doesn't exist in kb
 55         else:
 56             subprocess.run(run_cmd) # <--- this call doesn't exist either

OrenGitHub commented 1 month ago

kb_call( startloc_54_12_endloc_54_30 ). % <--- the first call now exists ( second one still missing )

OrenGitHub commented 1 month ago

Second call exists ( though its fqn is not correct ):

kb_has_fqn( startloc_56_12_endloc_56_35, 'subprocess.run'). % <--- should be 'python.subprocess.run'

OrenGitHub commented 1 month ago

kb_has_fqn( startloc_56_12_endloc_56_35, 'python.subprocess.run').