CWE-128: Wrap-around Error

Background

Code examples

Illustrative examples from MITRE showing how the weakness appears in code.

The following image processing code allocates a table for images.

Vulnerable example

img_t table_ptr; /*struct containing img data, 10kB each*/

This code intends to allocate a table of size num_imgs, however as num_imgs grows large, the calculation determining the size of the list will eventually overflow (CWE-190). This will result in a very small list to be allocated instead. If the subsequent code operates on the list as if it were num_imgs long, it may result in many types of out-of-bounds problems (CWE-119).

Background

CWE-128: Wrap-around Error

Overview

Background

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Terminology & mappings

Mapped taxonomies

Attack patterns

Frequently asked questions

What is CWE-128?

What CVEs are caused by CWE-128?

How do you prevent CWE-128?

How is CWE-128 detected?

What are the consequences of CWE-128?

Is CWE-128 actively exploited?

References

Stay ahead of CWE-128

Background

Overview

Background

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Related weaknesses

Parent

Peer

Can precede

Terminology & mappings

Mapped taxonomies

Attack patterns

Frequently asked questions

What is CWE-128?

What CVEs are caused by CWE-128?

How do you prevent CWE-128?

How is CWE-128 detected?

What are the consequences of CWE-128?

Is CWE-128 actively exploited?

References

Stay ahead of CWE-128