Python: Expand bind-to-all-interfaces tests slightly

RasmusWL · RasmusWL · commit 4026d5409585 · 2021-02-23T15:53:47.000+01:00
diff --git a/python/ql/test/query-tests/Security/CVE-2018-1281/BindToAllInterfaces.expected b/python/ql/test/query-tests/Security/CVE-2018-1281/BindToAllInterfaces.expected
@@ -1,3 +1,4 @@
 | BindToAllInterfaces_test.py:5:1:5:26 | Attribute() | '0.0.0.0' binds a socket to all interfaces. |
 | BindToAllInterfaces_test.py:9:1:9:18 | Attribute() | '' binds a socket to all interfaces. |
 | BindToAllInterfaces_test.py:17:1:17:26 | Attribute() | '0.0.0.0' binds a socket to all interfaces. |
+| BindToAllInterfaces_test.py:21:1:21:11 | Attribute() | '0.0.0.0' binds a socket to all interfaces. |
diff --git a/python/ql/test/query-tests/Security/CVE-2018-1281/BindToAllInterfaces_test.py b/python/ql/test/query-tests/Security/CVE-2018-1281/BindToAllInterfaces_test.py
@@ -15,3 +15,12 @@
 # binds to all interfaces, insecure
 ALL_LOCALS = "0.0.0.0"
 s.bind((ALL_LOCALS, 9090))
+
+# binds to all interfaces, insecure
+tup = (ALL_LOCALS, 8080)
+s.bind(tup)
+
+
+# IPv6
+s = socket.socket(socket.AF_INET6, socket.SOCK_STREAM)
+s.bind(("::", 8080)) # NOT OK
