Mark QByteArray and QString as security-critical
These classes are usually the first line of defense, containing tainted data before anything else had the chance the verify it. Amends 8df072fc8006510c9b743e8ffedaaf51a876883a. QUIP: 23 Task-number: QTBUG-135195 Pick-to: 6.9 6.8 Change-Id: I91413e022b9794e21b6816b80962f5169ce8cd78 Reviewed-by: Matthias Rauter <matthias.rauter@qt.io>
This commit is contained in:
parent
bfdedb260e
commit
ef8d3e91d8
@ -2,6 +2,7 @@
|
||||
// Copyright (C) 2016 Intel Corporation.
|
||||
// Copyright (C) 2019 Klarälvdalens Datakonsult AB, a KDAB Group company, info@kdab.com, author Giuseppe D'Angelo <giuseppe.dangelo@kdab.com>
|
||||
// SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
|
||||
// Qt-Security score:critical reason:data-parser
|
||||
|
||||
#include "qbytearray.h"
|
||||
#include "qbytearraymatcher.h"
|
||||
|
@ -1,6 +1,7 @@
|
||||
// Copyright (C) 2022 The Qt Company Ltd.
|
||||
// Copyright (C) 2016 Intel Corporation.
|
||||
// SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
|
||||
// Qt-Security score:critical reason:data-parser
|
||||
|
||||
#ifndef QBYTEARRAY_H
|
||||
#define QBYTEARRAY_H
|
||||
|
@ -2,6 +2,7 @@
|
||||
// Copyright (C) 2022 Intel Corporation.
|
||||
// Copyright (C) 2019 Mail.ru Group.
|
||||
// SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
|
||||
// Qt-Security score:critical reason:data-parser
|
||||
|
||||
#include "qstringlist.h"
|
||||
#if QT_CONFIG(regularexpression)
|
||||
|
@ -3,6 +3,7 @@
|
||||
// Copyright (C) 2019 Mail.ru Group.
|
||||
// Copyright (C) 2020 Klarälvdalens Datakonsult AB, a KDAB Group company, info@kdab.com, author Marc Mutz <marc.mutz@kdab.com>
|
||||
// SPDX-License-Identifier: LicenseRef-Qt-Commercial OR LGPL-3.0-only OR GPL-2.0-only OR GPL-3.0-only
|
||||
// Qt-Security score:critical reason:data-parser
|
||||
|
||||
#ifndef QSTRING_H
|
||||
#define QSTRING_H
|
||||
|
Loading…
x
Reference in New Issue
Block a user