Q
Detector Library
C detectors (34/34)
Logging of sensitive informationInsecure Use Of ChrootDeadlock And Lock InconsistencyUnsafe File ExtensionOS command injectionIncorrect Use Of FreeUse Of Uninitialized VariableInsecure Use strcat fnSQL injectionBitwise Operator On Signed OperandInsecure use gets fnRandom fd exhaustionRedundant Free UsageInsecure Use MemsetDivide By Zero.Return Stack AddressUnchecked Return ValueIncorrect Format SpecifierUnhandled Expression ResultPath traversalImproper Input ValidationOut Of Bounds ReadInteger OverflowInsecure use strtok functionImproper size of a memory bufferincomplete-cleanupNull pointer dereferenceInsecure Temporary File Or DirectoryInsecure Buffer AccessIncorrect Use Ato FnLoose File PermissionsExposure of Sensitive InformationOut-of-bounds WriteString Equality
Use Of Uninitialized Variable High
Your code contains an uninitialized variable, which can lead to unpredictable behavior and bugs in your program. Make sure to initialize all variables before using them to ensure consistent and reliable execution of your code. Addressing this issue will help maintain the stability and correctness of your application.
Detector ID
c/use-of-uninitialized-variable@v1.0
Category
Common Weakness Enumeration (CWE) 
Tags
-
Noncompliant example
1#include <stdio.h>
2
3int useOfUninitializedVariableNonCompliant() {
4 int x; // x is not initialized
5 // Noncompliant: x has grabage value
6 return x + 10;
7}
Compliant example
1#include <stdio.h>
2
3int useOfUninitializedVariableCompliant(int flag, int b) {
4 int a;
5 if (flag) {
6 a = b;
7 } else {
8 a = 10;
9 }
10 // Compliant: Variable is used
11 return a;
12}