You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
If we take a look in the source code at that location, we find a macro:
MEMZERO(target, bytestozero);
This isn't something that the analysis can handle (the macro isn't a statement in the AST). The quickest and most general solution is to preprocess the file. Alternatively, I'll have a look into whether or not it's possible for the repair to consider macros as fix locations. (This will take a fair bit of refactoring and will depend on what's possible in LibClang, but that would be a nice solution.)
ChrisTimperley
changed the title
CVE-2017-15232
Fix location is a macro; repair can't modify macros (CVE-2017-15232)
Feb 24, 2023
Repair module doesn't generate any candidate patch and it failed to find top-location for the suggested fix-locations
The text was updated successfully, but these errors were encountered: