VariantIncomplete

CWE-831Signal Handler Function Associated with Multiple Signals

Category: other

Description

The product defines a function that is used as a handler for more than one signal.

Common consequences· 1

  • Availability / Integrity / Confidentiality / Access Control / Other — DoS: Crash, Exit, or Restart, Execute Unauthorized Code or Commands, Read Application Data, Gain Privileges or Assume Identity, Bypass Protection Mechanism, Varies by Context
    The most common consequence will be a corruption of the state of the product, possibly leading to a crash or exit. However, if the signal handler is operating on state variables for security relevant libraries or protection mechanisms, the consequences can be far more severe, including protection mechanism bypass, privilege escalation, or information exposure.

References

  1. https://cwe.mitre.org/data/definitions/831.html

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Signal Handler Use of a Non-reentrant Function
CWE
Signal Handler with Functionality that is not Asynchronous-Safe
CWE
Invokable Control Element with Signature Containing an Excessive Number of Parameters
CWE
Signal Handler Race Condition
CWE
Use of a Non-reentrant Function in a Concurrent Context
CWE
Function Call With Incorrect Number of Arguments
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.