Skip to content

v0.8
Compare
Choose a tag to compare
@Enkelmann Enkelmann released this 22 Feb 11:54
· 178 commits to master since this release
v0.8
b086b47
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

The v0.8 release contains a major change in the inner workings of the Pointer Inference analysis: It can now track nested parameters, which allows tracking of a lot more memory objects around function boundaries for all checks depending on it. Additionally, it also solves a long-standing issue regarding state explosion, which previously lead to extremely high RAM usage and analysis times on some binaries.

Other highlights:

  • Better meta-information generation and less false positives for the CWE-416: Use After Free check
  • A new check for CWE-337: Predictable Seed in Pseudo-Random Number Generator

See the CHANGES.md for more details.

Assets 2
Loading