Merge pull request #12855 from MathiasVP/fix-joins-in-use-after-free

C++: Fix bad self-join in `cpp/use-after-free`
github · Apr 18, 2023 · fb1a871 · fb1a871
2 parents 09502c6 + 61aba46
commit fb1a871
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/cpp/ql/src/Critical/UseAfterFree.ql b/cpp/ql/src/Critical/UseAfterFree.ql
@@ -128,7 +128,8 @@ module ParameterSinks {
       callHasTargetAndArgument(f, i, call, argument) and
       initializeParameterInFunction(f, i, p) and
       p = getAnAlwaysDereferencedParameter() and
-      result = pragma[only_bind_out](valueNumber(argument).getAnInstruction()) and
+      result =
+        pragma[only_bind_out](pragma[only_bind_into](valueNumber(argument)).getAnInstruction()) and
       call = getAnAlwaysReachedCallInstruction(_)
     )
   }