You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: cpp/ql/src/Critical/MissingCheckScanf.qhelp
+4-4Lines changed: 4 additions & 4 deletions
Original file line number
Diff line number
Diff line change
@@ -12,8 +12,8 @@ improper return-value checking.
12
12
<p>
13
13
Specifically, the query flags uses of variables that may have been modified by
14
14
<tt>scanf</tt> and subsequently are used without being guarded by a correct
15
-
return-value check. A proper check is one that asserts the corresponding
16
-
<tt>scanf</tt> to have returned (at least) a certain minimum constant.
15
+
return-value check. A proper check is one that ensures that the corresponding
16
+
<tt>scanf</tt> has returned (at least) a certain minimum constant.
17
17
</p>
18
18
<p>
19
19
Functions in the <tt>scanf</tt> family return either EOF (a negative value)
@@ -24,7 +24,7 @@ is not enough.
24
24
<warning>
25
25
This query has medium precision because, in the current implementation, it
26
26
takes a strict stance on unguarded uses of output variables, and flags them
27
-
as problematic even if they had already been initialized.
27
+
as problematic even if they have already been initialized.
28
28
</warning>
29
29
</overview>
30
30
@@ -46,6 +46,6 @@ input. This can be done by comparing the return value to a numerical constant.
46
46
<references>
47
47
<li>SEI CERT C++ Coding Standard: <ahref="https://wiki.sei.cmu.edu/confluence/display/cplusplus/ERR62-CPP.+Detect+errors+when+converting+a+string+to+a+number">ERR62-CPP. Detect errors when converting a string to a number</a>.</li>
48
48
<li>SEI CERT C Coding Standard: <ahref="https://wiki.sei.cmu.edu/confluence/display/c/ERR33-C.+Detect+and+handle+standard+library+errors">ERR33-C. Detect and handle standard library errors</a>.</li>
0 commit comments