Google Git
Sign in
qemu / edk2 / d27cf840cae1c9cb23ea2f4c41ffc62470fd08be
commitd27cf840cae1c9cb23ea2f4c41ffc62470fd08be[log] [tgz]
authorMichael Kubacki <michael.kubacki@microsoft.com>Thu Nov 10 01:32:45 2022 +0800
committerLiming Gao <gaoliming@byosoft.com.cn>Fri Dec 23 13:52:00 2022 +0800
tree521d812714ffcdef9045e49ab0331b0ff744943b
parentd8d4abdff9096a69ff59d96ac4a8dd0e19e5cbcc [diff]
.github/codeql/edk2.qls: Enable CWE 457, 676, and 758 queries

The previous commits fixed issues with these queries across various
packages. Now that those are resolved, enable the queries in the
edk2 query set so regressions can be found in the future.

Enables:

1. cpp/conditionallyuninitializedvariable
   - CWE: https://cwe.mitre.org/data/definitions/457.html
   - @name Conditionally uninitialized variable
   - @description An initialization function is used to initialize a
                  local variable, but the returned status code is
                  not checked. The variable may be left in an
                  uninitialized state, and reading the variable may
                  result in undefined behavior.
   - @kind problem
   - @problem.severity warning
   - @security-severity 7.8
   - @id cpp/conditionally-uninitialized-variable
   - @tags security
     - external/cwe/cwe-457
2. cpp/pointer-overflow-check
   - CWE: https://cwe.mitre.org/data/definitions/758.html
   - @name Pointer overflow check
   - @description Adding a value to a pointer to check if it
                  overflows relies on undefined behavior and
                  may lead to memory corruption.
   - @kind problem
   - @problem.severity error
   - @security-severity 2.1
   - @precision high
   - @id cpp/pointer-overflow-check
   - @tags reliability
     - security
     - external/cwe/cwe-758
3. cpp/potential-buffer-overflow
   - CWE: https://cwe.mitre.org/data/definitions/676.html
   - @name Potential buffer overflow
   - @description Using a library function that does not check
                  buffer bounds requires the surrounding program
                  to be very carefully written to avoid buffer
                  overflows.
   - @kind problem
   - @id cpp/potential-buffer-overflow
   - @problem.severity warning
   - @security-severity 10.0
   - @tags reliability
     - security
     - external/cwe/cwe-676
   - @deprecated This query is deprecated, use
                 Potentially overrunning write
                 (`cpp/overrunning-write`) and
                 Potentially overrunning write with float to string
                 conversion
                 (`cpp/overrunning-write-with-float`) instead.

Note that cpp/potential-buffer-overflow is deprecated. This query
will be updated to the succeeding queries in the next commit. The
query is used in this commit to show that we considered and tested
the query in history.

Cc: Sean Brogan <sean.brogan@microsoft.com>
Cc: Michael Kubacki <mikuback@linux.microsoft.com>
Cc: Michael D Kinney <michael.d.kinney@intel.com>
Signed-off-by: Michael Kubacki <michael.kubacki@microsoft.com>
1 file changed
tree: 521d812714ffcdef9045e49ab0331b0ff744943b
  1. .azurepipelines/
  2. .github/
  3. .mergify/
  4. .pytool/
  5. ArmPkg/
  6. ArmPlatformPkg/
  7. ArmVirtPkg/
  8. BaseTools/
  9. Conf/
  10. CryptoPkg/
  11. DynamicTablesPkg/
  12. EmbeddedPkg/
  13. EmulatorPkg/
  14. FatPkg/
  15. FmpDevicePkg/
  16. IntelFsp2Pkg/
  17. IntelFsp2WrapperPkg/
  18. MdeModulePkg/
  19. MdePkg/
  20. NetworkPkg/
  21. OvmfPkg/
  22. PcAtChipsetPkg/
  23. PrmPkg/
  24. RedfishPkg/
  25. SecurityPkg/
  26. ShellPkg/
  27. SignedCapsulePkg/
  28. SourceLevelDebugPkg/
  29. StandaloneMmPkg/
  30. UefiCpuPkg/
  31. UefiPayloadPkg/
  32. UnitTestFrameworkPkg/
  33. .gitignore
  34. .gitmodules
  35. .mailmap
  36. CONTRIBUTING.md
  37. edksetup.bat
  38. edksetup.sh
  39. License-History.txt
  40. License.txt
  41. Maintainers.txt
  42. pip-requirements.txt
  43. ReadMe.rst