Closed claude-betz closed 2 months ago
Following our roadmap this is next up.
We currently don't track the sizes of objects within our model of C's semantics. This means means we don't detect the overflow in situations such as.
void foo() { int *p; p = malloc(sizeof(int) * 2); p[2] = 1; }
Following our roadmap this is next up.
We currently don't track the sizes of objects within our model of C's semantics. This means means we don't detect the overflow in situations such as.