C++: Apply suggestions in documentation

redsun82 · skedwards88 · web-flow · commit 7b4300e4cff3 · 2022-01-13T11:59:48.000Z
Co-authored-by: Sarah Edwards &lt;skedwards88@github.com&gt;
diff --git a/cpp/ql/src/Security/CWE/CWE-120/OverrunWrite.qhelp b/cpp/ql/src/Security/CWE/CWE-120/OverrunWrite.qhelp
@@ -14,7 +14,7 @@
 
 <p>To fix this issue these changes should be made:</p>
 <ul>
-  <li>Control the size of the buffer by declaring it with a compile time constant</li>
+  <li>Control the size of the buffer by declaring it with a compile time constant.</li>
   <li>Preferably, replace the call to <code>sprintf</code> with <code>snprintf</code>, using the defined constant size of the buffer or `sizeof(buffer)` as maximum length to write. This will prevent the buffer overflow.</li>
   <li>Optionally, if `userId` is expected to be less than `10000`, then return or throw an error if `userId` is out of bounds.</li>
   <li>Otherwise, consider increasing the buffer size to at least 25 characters, so that the message is displayed correctly regardless of the value of `userId`.</li>
diff --git a/cpp/ql/src/Security/CWE/CWE-120/VeryLikelyOverrunWrite.qhelp b/cpp/ql/src/Security/CWE/CWE-120/VeryLikelyOverrunWrite.qhelp
@@ -3,7 +3,7 @@
   "qhelp.dtd">
 <qhelp>
 <overview>
-<p>The program performs a buffer copy or write operation with no upper limit on the size of the copy, and by analysing the bounds of the expressions involved it appears that certain inputs will cause a buffer overflow to occur in this case.  In addition to causing program instability, techniques exist which may allow an attacker to use this vulnerability to execute arbitrary code.</p>
+<p>The program performs a buffer copy or write operation with no upper limit on the size of the copy. By analyzing the bounds of the expressions involved, it appears that certain inputs will cause a buffer overflow to occur in this case.  In addition to causing program instability, techniques exist which may allow an attacker to use this vulnerability to execute arbitrary code.</p>
 
 </overview>
 <include src="OverrunWriteRecommendation.inc.qhelp" />
@@ -14,7 +14,7 @@
 
 <p>To fix this issue these changes should be made:</p>
 <ul>
-  <li>Control the size of the buffer by declaring it with a compile time constant</li>
+  <li>Control the size of the buffer by declaring it with a compile time constant.</li>
   <li>Preferably, replace the call to <code>sprintf</code> with <code>snprintf</code>, using the defined constant size of the buffer or `sizeof(buffer)` as maximum length to write. This will prevent the buffer overflow.</li>
   <li>Increasing the buffer size to account for the full range of `userId` and the terminating null character.</li>
 </ul>
