Skip to content

Commit 421bd1b

Browse files
author
Sebastian Bauersfeld
committed
Propagate taint through AbstractStringBuilder.reverse() and its overrides.
1 parent 882caf4 commit 421bd1b

File tree

1 file changed

+2
-0
lines changed

1 file changed

+2
-0
lines changed

java/ql/lib/semmle/code/java/frameworks/Strings.qll

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -50,6 +50,8 @@ private class StringSummaryCsv extends SummaryModelCsv {
5050
"java.lang;AbstractStringBuilder;true;insert;;;Argument[-1];ReturnValue;value",
5151
"java.lang;AbstractStringBuilder;true;replace;;;Argument[-1];ReturnValue;value",
5252
"java.lang;AbstractStringBuilder;true;replace;;;Argument[2];Argument[-1];taint",
53+
"java.lang;AbstractStringBuilder;true;reverse;;;Argument[-1];ReturnValue;value",
54+
"java.lang;AbstractStringBuilder;true;reverse;;;Argument[-1];ReturnValue;taint",
5355
"java.lang;AbstractStringBuilder;true;toString;;;Argument[-1];ReturnValue;taint",
5456
"java.lang;StringBuffer;true;StringBuffer;(CharSequence);;Argument[0];Argument[-1];taint",
5557
"java.lang;StringBuffer;true;StringBuffer;(String);;Argument[0];Argument[-1];taint",

0 commit comments

Comments
 (0)