Query module ArithmeticUncontrolled

name
Uncontrolled data in arithmetic expression
description
Arithmetic operations on uncontrolled data that is not validated can cause overflows.
kind
problem
problem.severity
warning
precision
medium
id
cpp/uncontrolled-arithmetic
tags
security external/cwe/cwe-190 external/cwe/cwe-191

Imports

Overflow
Security

Definitions related to security queries. These can be extended for specific code bases.

TaintTracking
cpp

Provides classes and predicates for working with C/C++/ObjC/ObjC++ code.

Predicates

guardedByAssignDiv

A value that undergoes division is likely to be bounded within a safe range.

isRandValue
taintedVarAccess

Classes