Get Started
- CodeAnt AI
- Control Center
- Pull Request Review
- IDE
- Compliance
- Anti-Patterns
- Code Governance
- Infrastructure Security Database
- Application Security Database
- Apex
- Bash
- C
- Clojure
- Cpp
- Lang
- Correctness
- Security
- Containers
- Crypto
- Filesystem
- Format-string
- Ldap
- Libraries
- Memory
- Misc
- Rng
- Sql
- Strings
- Alloc-strlen
- Missing-nul-cpp-string-memcpy
- Narrow-to-wide-string-mismatch
- Readlink-null-terminator
- Return-c-str
- Snprintf-return-value-length
- Snprintf-return-value-snprintf
- Snprintf-source-size
- Std-string-npos
- String-buffer-overflow
- String-view-data-null-terminator
- String-view-temporary-string
- Unbounded-copy-to-stack-buffer
- Wide-to-narrow-string-mismatch
- System-command
- Uri
- Use-after-free
- Libxml2
- Csharp
- Dockerfile
- Elixir
- Fingerprints
- Generic
- Go
- Html
- Java
- Javascript
- Json
- Kotlin
- Ocaml
- Php
- Problem-based-packs
- Python
- Ruby
- Rust
- Scala
- Solidity
- Swift
- Terraform
- Typescript
- Yaml
Missing-nul-cpp-string-memcpy
Missing nul cpp string memcpy
The number of bytes copied from $STR does not include the NUL terminator. This can lead to an out-of-bounds read and information disclosure. One extra byte should be added to the length to ensure that the NUL terminator is copied.
Likelihood: LOW
Confidence: HIGH
CWE:
- CWE-125: Out-of-bounds Read