ycdxsb research / codeql12 分钟 读完 (大约 1801 个字)

CodeQL之CWE-252

CWE-252: Unchecked Return Value

The software does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.

顾名思义,Unchecked Return Value,就是在实际代码中缺少了对返回值的检查,在实际代码中,对错误返回值的检查尤为重要,因为需要进入到相应的错误处理环节中去,否则会影响程序的正常运行。比如我们常见的对malloc返回值的检查等等,和CWE-252相关的还有CWE-754CWE-273CWE-476

阅读更多
关注我

链接

归档

订阅更新

邮件订阅,更新早知道

分类

最新文章

标签

AI2
CTF41
CVE4
NLP1
PyQt512
ROP Emporium1
Toddler's Bottle21
Web1
automatic analyse5
codeql4
crypto7
fuzz2
life2
machine learning1
mobile security1
others1
paper11
pwn23
pwnable.kr21
re5
research4
security11
security situation awareness2
stack overflow2
tools1
writeup2
数据库11
×