Update DangerousUseOfExceptionBlocks.ql

ihsinme · web-flow · commit 73de757f396e · 2022-04-04T21:38:03.000+03:00
diff --git a/cpp/ql/src/experimental/Security/CWE/CWE-476/DangerousUseOfExceptionBlocks.ql b/cpp/ql/src/experimental/Security/CWE/CWE-476/DangerousUseOfExceptionBlocks.ql
@@ -69,6 +69,7 @@ predicate pointerDereference(CatchAnyBlock cb, Variable vr, Variable vro) {
         vro = ase.getLValue().(VariableAccess).getTarget()
       )
       or
+      // `e0` is a `new` expression (or equivalent function call) assigned to the array element `vro`
       exists(AssignExpr ase |
         ase = vro.getAnAccess().(Qualifier).getEnclosingStmt().(ExprStmt).getExpr().(AssignExpr) and
         (

Original file line number	Diff line number	Diff line change
`@@ -69,6 +69,7 @@ predicate pointerDereference(CatchAnyBlock cb, Variable vr, Variable vro) {`
`69`	`69`	`vro = ase.getLValue().(VariableAccess).getTarget()`
`70`	`70`	`)`
`71`	`71`	`or`
	`72`	+ // `e0` is a `new` expression (or equivalent function call) assigned to the array element `vro`
`72`	`73`	`exists(AssignExpr ase \|`
`73`	`74`	`ase = vro.getAnAccess().(Qualifier).getEnclosingStmt().(ExprStmt).getExpr().(AssignExpr) and`
`74`	`75`	`(`