Open tardigrade-9 opened 6 months ago
Verify that freeaddrinfo is correctly identified and matches the signature expected by the UseAfterFree query. Ensure that the function call this.getTarget().hasGlobalName("freeaddrinfo") correctly identifies the freeaddrinfo function.
Hi @tardigrade-9 👋
Sorry for the late reply, your question seems to have fallen through the cracks last month.
Do you have a minimal code example where you would expect your query to find a result, but it doesn't?
Have you checked (e.g. by using the quick eval feature in the VSCode extension) that FreeAddrInfo
can find the call to freeaddrinfo
in your test database?
I borrowed the query from UseAfterFree.ql present in CodeQL repo and modified to include a custom free function, but the query is not flagging UAF.
I'm trying to analyse https://nvd.nist.gov/vuln/detail/CVE-2021-38383