Maxim Integrated
Maxim Integrated's IoT development kit.
Dependencies: MAX30101 MAX30003 MAX113XX_Pixi MAX30205 max32630fthr USBDevice
tools/Rats-2.4/rats-python.xml@1:efe9cad8942f, 2018-03-13 (annotated)
- Committer:
- Mahir Ozturk
- Date:
- Tue Mar 13 14:52:59 2018 +0300
- Revision:
- 1:efe9cad8942f
Commit project files
Change-Id: I2188228f2a27e9a13e2407846e48b38c2596caa0
Who changed what in which revision?
| User | Revision | Line number | New contents of line |
|---|---|---|---|
| Mahir Ozturk |
1:efe9cad8942f | 1 | <?xml version="1.0"?> |
| Mahir Ozturk |
1:efe9cad8942f | 2 | <!DOCTYPE RATS [ |
| Mahir Ozturk |
1:efe9cad8942f | 3 | <!ENTITY randdesc "Standard random number generators should not be used to |
| Mahir Ozturk |
1:efe9cad8942f | 4 | generate randomness used for security reasons. For security sensitive randomness a crytographic randomness generator that provides sufficient entropy should be used."> |
| Mahir Ozturk |
1:efe9cad8942f | 5 | <!ENTITY bufbig "Double check that your buffer is as big as you specify"> |
| Mahir Ozturk |
1:efe9cad8942f | 6 | <!ENTITY bufloop "Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space."> |
| Mahir Ozturk |
1:efe9cad8942f | 7 | <!ENTITY bufreasonable "Truncate all input strings to a reasonable length before |
| Mahir Ozturk |
1:efe9cad8942f | 8 | passing them to this function"> |
| Mahir Ozturk |
1:efe9cad8942f | 9 | <!ENTITY tmpfile "Many calls for generating temporary file names are insecure (susceptible to race conditions). Use a securely generated file name, for example, by pulling 64 bits of randomness from /dev/random, base 64 encoding it and using that as a file suffix."> |
| Mahir Ozturk |
1:efe9cad8942f | 10 | <!ENTITY dns "DNS results can easily be forged by an attacker (or arbitrarily set to large values, etc), and should not be trusted."> |
| Mahir Ozturk |
1:efe9cad8942f | 11 | |
| Mahir Ozturk |
1:efe9cad8942f | 12 | ]> |
| Mahir Ozturk |
1:efe9cad8942f | 13 | <VulnDB lang="python"> |
| Mahir Ozturk |
1:efe9cad8942f | 14 | |
| Mahir Ozturk |
1:efe9cad8942f | 15 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 16 | <Name>access</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 17 | <RaceCheck>1</RaceCheck> |
| Mahir Ozturk |
1:efe9cad8942f | 18 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 19 | |
| Mahir Ozturk |
1:efe9cad8942f | 20 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 21 | <Name>mkfifo</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 22 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 23 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 24 | |
| Mahir Ozturk |
1:efe9cad8942f | 25 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 26 | <Name>pathconf</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 27 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 28 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 29 | |
| Mahir Ozturk |
1:efe9cad8942f | 30 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 31 | <Name>listdir</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 32 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 33 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 34 | |
| Mahir Ozturk |
1:efe9cad8942f | 35 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 36 | <Name>open</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 37 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 38 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 39 | |
| Mahir Ozturk |
1:efe9cad8942f | 40 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 41 | <Name>lstat</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 42 | <RaceCheck>1</RaceCheck> |
| Mahir Ozturk |
1:efe9cad8942f | 43 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 44 | |
| Mahir Ozturk |
1:efe9cad8942f | 45 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 46 | <Name>stat</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 47 | <RaceCheck>1</RaceCheck> |
| Mahir Ozturk |
1:efe9cad8942f | 48 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 49 | |
| Mahir Ozturk |
1:efe9cad8942f | 50 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 51 | <Name>chmod</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 52 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 53 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 54 | |
| Mahir Ozturk |
1:efe9cad8942f | 55 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 56 | <Name>chown</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 57 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 58 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 59 | |
| Mahir Ozturk |
1:efe9cad8942f | 60 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 61 | <Name>rename</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 62 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 63 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 64 | |
| Mahir Ozturk |
1:efe9cad8942f | 65 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 66 | <Name>mkdir</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 67 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 68 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 69 | |
| Mahir Ozturk |
1:efe9cad8942f | 70 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 71 | <Name>rmdir</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 72 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 73 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 74 | |
| Mahir Ozturk |
1:efe9cad8942f | 75 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 76 | <Name>remove</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 77 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 78 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 79 | |
| Mahir Ozturk |
1:efe9cad8942f | 80 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 81 | <Name>unlink</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 82 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 83 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 84 | |
| Mahir Ozturk |
1:efe9cad8942f | 85 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 86 | <Name>link</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 87 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 88 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 89 | |
| Mahir Ozturk |
1:efe9cad8942f | 90 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 91 | <Name>execv</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 92 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 93 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 94 | |
| Mahir Ozturk |
1:efe9cad8942f | 95 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 96 | <Name>execve</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 97 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 98 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 99 | |
| Mahir Ozturk |
1:efe9cad8942f | 100 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 101 | <Name>execl</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 102 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 103 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 104 | |
| Mahir Ozturk |
1:efe9cad8942f | 105 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 106 | <Name>execlp</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 107 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 108 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 109 | |
| Mahir Ozturk |
1:efe9cad8942f | 110 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 111 | <Name>execle</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 112 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 113 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 114 | |
| Mahir Ozturk |
1:efe9cad8942f | 115 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 116 | <Name>execvp</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 117 | <RaceUse>1</RaceUse> |
| Mahir Ozturk |
1:efe9cad8942f | 118 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 119 | |
| Mahir Ozturk |
1:efe9cad8942f | 120 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 121 | <Name>random</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 122 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 123 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 124 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 125 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 126 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 127 | |
| Mahir Ozturk |
1:efe9cad8942f | 128 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 129 | <Name>randint</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 130 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 131 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 132 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 133 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 134 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 135 | |
| Mahir Ozturk |
1:efe9cad8942f | 136 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 137 | <Name>randrange</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 138 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 139 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 140 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 141 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 142 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 143 | |
| Mahir Ozturk |
1:efe9cad8942f | 144 | |
| Mahir Ozturk |
1:efe9cad8942f | 145 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 146 | <Name>setstate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 147 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 148 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 149 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 150 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 151 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 152 | |
| Mahir Ozturk |
1:efe9cad8942f | 153 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 154 | <Name>whseed</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 155 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 156 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 157 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 158 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 159 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 160 | |
| Mahir Ozturk |
1:efe9cad8942f | 161 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 162 | <Name>getstate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 163 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 164 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 165 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 166 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 167 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 168 | |
| Mahir Ozturk |
1:efe9cad8942f | 169 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 170 | <Name>jumpahead</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 171 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 172 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 173 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 174 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 175 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 176 | |
| Mahir Ozturk |
1:efe9cad8942f | 177 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 178 | <Name>shuffle</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 179 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 180 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 181 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 182 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 183 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 184 | |
| Mahir Ozturk |
1:efe9cad8942f | 185 | |
| Mahir Ozturk |
1:efe9cad8942f | 186 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 187 | <Name>choice</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 188 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 189 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 190 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 191 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 192 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 193 | |
| Mahir Ozturk |
1:efe9cad8942f | 194 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 195 | <Name>uniform</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 196 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 197 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 198 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 199 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 200 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 201 | |
| Mahir Ozturk |
1:efe9cad8942f | 202 | |
| Mahir Ozturk |
1:efe9cad8942f | 203 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 204 | <Name>betavariate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 205 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 206 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 207 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 208 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 209 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 210 | |
| Mahir Ozturk |
1:efe9cad8942f | 211 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 212 | <Name>seed</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 213 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 214 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 215 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 216 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 217 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 218 | |
| Mahir Ozturk |
1:efe9cad8942f | 219 | |
| Mahir Ozturk |
1:efe9cad8942f | 220 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 221 | <Name>cunifvariate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 222 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 223 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 224 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 225 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 226 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 227 | |
| Mahir Ozturk |
1:efe9cad8942f | 228 | |
| Mahir Ozturk |
1:efe9cad8942f | 229 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 230 | <Name>expovariate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 231 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 232 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 233 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 234 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 235 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 236 | |
| Mahir Ozturk |
1:efe9cad8942f | 237 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 238 | <Name>gamma</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 239 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 240 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 241 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 242 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 243 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 244 | |
| Mahir Ozturk |
1:efe9cad8942f | 245 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 246 | <Name>gauss</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 247 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 248 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 249 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 250 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 251 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 252 | |
| Mahir Ozturk |
1:efe9cad8942f | 253 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 254 | <Name>lognormvariate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 255 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 256 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 257 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 258 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 259 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 260 | |
| Mahir Ozturk |
1:efe9cad8942f | 261 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 262 | <Name>normalvariate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 263 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 264 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 265 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 266 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 267 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 268 | |
| Mahir Ozturk |
1:efe9cad8942f | 269 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 270 | <Name>vonmisesvariate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 271 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 272 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 273 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 274 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 275 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 276 | |
| Mahir Ozturk |
1:efe9cad8942f | 277 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 278 | <Name>paretovariate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 279 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 280 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 281 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 282 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 283 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 284 | |
| Mahir Ozturk |
1:efe9cad8942f | 285 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 286 | <Name>weibullvariate</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 287 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 288 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 289 | <Description>&randdesc;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 290 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 291 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 292 | |
| Mahir Ozturk |
1:efe9cad8942f | 293 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 294 | <Name>system</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 295 | <InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 296 | <Arg>1</Arg> |
| Mahir Ozturk |
1:efe9cad8942f | 297 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 298 | </InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 299 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 300 | |
| Mahir Ozturk |
1:efe9cad8942f | 301 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 302 | <Name>popen</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 303 | <InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 304 | <Arg>1</Arg> |
| Mahir Ozturk |
1:efe9cad8942f | 305 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 306 | </InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 307 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 308 | |
| Mahir Ozturk |
1:efe9cad8942f | 309 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 310 | <Name>exec</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 311 | <InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 312 | <Arg>1</Arg> |
| Mahir Ozturk |
1:efe9cad8942f | 313 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 314 | </InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 315 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 316 | |
| Mahir Ozturk |
1:efe9cad8942f | 317 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 318 | <Name>execfile</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 319 | <InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 320 | <Arg>1</Arg> |
| Mahir Ozturk |
1:efe9cad8942f | 321 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 322 | </InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 323 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 324 | |
| Mahir Ozturk |
1:efe9cad8942f | 325 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 326 | <Name>eval</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 327 | <InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 328 | <Arg>1</Arg> |
| Mahir Ozturk |
1:efe9cad8942f | 329 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 330 | </InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 331 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 332 | |
| Mahir Ozturk |
1:efe9cad8942f | 333 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 334 | <Name>input</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 335 | <Input/> |
| Mahir Ozturk |
1:efe9cad8942f | 336 | <InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 337 | <Arg>1</Arg> |
| Mahir Ozturk |
1:efe9cad8942f | 338 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 339 | </InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 340 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 341 | |
| Mahir Ozturk |
1:efe9cad8942f | 342 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 343 | <Name>compile</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 344 | <InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 345 | <Arg>1</Arg> |
| Mahir Ozturk |
1:efe9cad8942f | 346 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 347 | </InputProblem> |
| Mahir Ozturk |
1:efe9cad8942f | 348 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 349 | |
| Mahir Ozturk |
1:efe9cad8942f | 350 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 351 | <Name>tmpfile</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 352 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 353 | <Description>&tmpfile;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 354 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 355 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 356 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 357 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 358 | <Name>tmpnam</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 359 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 360 | <Description>&tmpfile;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 361 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 362 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 363 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 364 | |
| Mahir Ozturk |
1:efe9cad8942f | 365 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 366 | <Name>getlogin</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 367 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 368 | <Description> The results of this call are easy to forge. </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 369 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 370 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 371 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 372 | |
| Mahir Ozturk |
1:efe9cad8942f | 373 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 374 | <Name>ttyname</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 375 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 376 | <Description> |
| Mahir Ozturk |
1:efe9cad8942f | 377 | The results are easy for an attacker to forge, and not reliable. |
| Mahir Ozturk |
1:efe9cad8942f | 378 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 379 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 380 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 381 | |
| Mahir Ozturk |
1:efe9cad8942f | 382 | <!-- Functions that are known input sources, but not otherwise problems --> |
| Mahir Ozturk |
1:efe9cad8942f | 383 | |
| Mahir Ozturk |
1:efe9cad8942f | 384 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 385 | <Name>raw_input</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 386 | <Input/> |
| Mahir Ozturk |
1:efe9cad8942f | 387 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 388 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 389 | <Name>read</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 390 | <Input/> |
| Mahir Ozturk |
1:efe9cad8942f | 391 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 392 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 393 | <Name>recvfrom</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 394 | <Input/> |
| Mahir Ozturk |
1:efe9cad8942f | 395 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 396 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 397 | <Name>recv</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 398 | <Input/> |
| Mahir Ozturk |
1:efe9cad8942f | 399 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 400 | |
| Mahir Ozturk |
1:efe9cad8942f | 401 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 402 | <Name>signal</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 403 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 404 | <Description> |
| Mahir Ozturk |
1:efe9cad8942f | 405 | When setting signal handlers, do not use the same function to handle multiple signals. There exists the possibility a race condition will result if 2 or more different signals are sent to the process at nearly the same time. Also, when writing signal handlers, it is best to do as little as possible in them. The best strategy is to use the signal handler to set a flag, that another part of the program tests and performs the appropriate action(s) when it is set. |
| Mahir Ozturk |
1:efe9cad8942f | 406 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 407 | <URL>http://razor.bindview.com/publish/papers/signals.txt</URL> |
| Mahir Ozturk |
1:efe9cad8942f | 408 | <Severity>Medium</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 409 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 410 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 411 | |
| Mahir Ozturk |
1:efe9cad8942f | 412 | <!-- Added by Viega: obvious from the book. Also show up on |
| Mahir Ozturk |
1:efe9cad8942f | 413 | Shostack's page. --> |
| Mahir Ozturk |
1:efe9cad8942f | 414 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 415 | <Name>gethostbyname</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 416 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 417 | <Description>&dns;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 418 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 419 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 420 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 421 | |
| Mahir Ozturk |
1:efe9cad8942f | 422 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 423 | <Name>gethostbyname_ex</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 424 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 425 | <Description>&dns;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 426 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 427 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 428 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 429 | |
| Mahir Ozturk |
1:efe9cad8942f | 430 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 431 | <Name>gethostbyaddr</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 432 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 433 | <Description>&dns;</Description> |
| Mahir Ozturk |
1:efe9cad8942f | 434 | <Severity>High</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 435 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 436 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 437 | |
| Mahir Ozturk |
1:efe9cad8942f | 438 | <!-- Added by Viega. From Peter Guttman's thesis. --> |
| Mahir Ozturk |
1:efe9cad8942f | 439 | <Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 440 | <Name>fork</Name> |
| Mahir Ozturk |
1:efe9cad8942f | 441 | <Info> |
| Mahir Ozturk |
1:efe9cad8942f | 442 | <Description> |
| Mahir Ozturk |
1:efe9cad8942f | 443 | Remember that sensitive data get copied on fork. For example, a random |
| Mahir Ozturk |
1:efe9cad8942f | 444 | number generator's internal state will get duplicated, and the child |
| Mahir Ozturk |
1:efe9cad8942f | 445 | may start outputting identical number streams. |
| Mahir Ozturk |
1:efe9cad8942f | 446 | </Description> |
| Mahir Ozturk |
1:efe9cad8942f | 447 | <Severity>Low</Severity> |
| Mahir Ozturk |
1:efe9cad8942f | 448 | </Info> |
| Mahir Ozturk |
1:efe9cad8942f | 449 | </Vulnerability> |
| Mahir Ozturk |
1:efe9cad8942f | 450 | </VulnDB> |