Skip to content

Commit 294e9a7

Browse files
lostsnowlostsnow
committed
fixes taint range calculate for StringWriter.write() char array
1 parent acd02a7 commit 294e9a7

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

dongtai-core/src/main/java/io/dongtai/iast/core/handler/hookpoint/models/taint/range/TaintCommandRunner.java

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -269,7 +269,7 @@ public static TaintCommandRunner getCommandRunner(String signature) {
269269

270270
// APPEND StringWriter
271271
METHOD = "java.io.StringWriter.write(char[],int,int)";
272-
put(METHOD, create(METHOD, TaintCommand.APPEND, Arrays.asList("P2", "P3"))); // P1=>O
272+
put(METHOD, create(METHOD, TaintCommand.APPEND, Arrays.asList("P2", "P3", "0"))); // P1=>O
273273
METHOD = "java.io.StringWriter.write(java.lang.String)";
274274
put(METHOD, create(METHOD, TaintCommand.APPEND));
275275
METHOD = "java.io.StringWriter.write(java.lang.String,int,int)";

0 commit comments

Comments
 (0)