Update cpp/ql/lib/semmle/code/cpp/security/InvalidPointerDereference/InvalidPointerToDereference.qll

MathiasVP · jketema · web-flow · commit 0d116a00fb0e · 2023-07-25T10:25:34.000+02:00
Co-authored-by: Jeroen Ketema &lt;93738568+jketema@users.noreply.github.com&gt;
diff --git a/cpp/ql/lib/semmle/code/cpp/security/InvalidPointerDereference/InvalidPointerToDereference.qll b/cpp/ql/lib/semmle/code/cpp/security/InvalidPointerDereference/InvalidPointerToDereference.qll
@@ -17,7 +17,7 @@
  * on line 4).
  *
  * Merely _constructing_ a pointer that's out-of-bounds is fine if the pointer is never dereferenced (in reality, the
- * standard only guarentees that it's safe to move the pointer one element past the last element. But we ignore that
+ * standard only guarantees that it is safe to move the pointer one element past the last element, but we ignore that
  * here). So this step is about identifying which of those out-of-bounds pointers found by `pointerAddInstructionHasBounds`
  * in `AllocationToInvalidPointer.qll` that are actually being dereferenced. We do this using a regular dataflow
  * configuration (see `InvalidPointerToDerefConfig`).

Original file line number	Diff line number	Diff line change
`@@ -17,7 +17,7 @@`
`17`	`17`	`* on line 4).`
`18`	`18`	`*`
`19`	`19`	`* Merely _constructing_ a pointer that's out-of-bounds is fine if the pointer is never dereferenced (in reality, the`
`20`		`- * standard only guarentees that it's safe to move the pointer one element past the last element. But we ignore that`
	`20`	`+ * standard only guarantees that it is safe to move the pointer one element past the last element, but we ignore that`
`21`	`21`	* here). So this step is about identifying which of those out-of-bounds pointers found by `pointerAddInstructionHasBounds`
`22`	`22`	* in `AllocationToInvalidPointer.qll` that are actually being dereferenced. We do this using a regular dataflow
`23`	`23`	* configuration (see `InvalidPointerToDerefConfig`).