UNINIT.STACK.MIGHT

Uninitialized variable possible

The UNINIT.STACK.MIGHT checker finds instances in which a local variable of a non-class type is read when it may not have been initialized.

Vulnerability and risk

In C++, stack variables aren't initialized by default. They generally contain random junk data from the current content of stack memory. The uninitialized data may contain values that cause program flow to change in unintended ways, possibly with security implications.

Mitigation and prevention

To avoid initialization problems, make sure all variables and resources are initialized explicitly before their first usage. Take note of complex conditional situations and make sure that all paths include the initialization.

Vulnerable code example

1
2
3
4
5
6
7
8
9
  int foo(int t) {
    int x;
    if (t > 16) {
      x = 1;
    } else if (t > 8) {
      x = 2;
    }
    return x + 1;
  }

Klocwork flags line 8, indicating that the value of variable 'x' can be used when it might be uninitialized.

Related checkers

• UNINIT.STACK.ARRAY.MIGHT
• UNINIT.STACK.ARRAY.MUST
• UNINIT.STACK.ARRAY.PARTIAL.MUST

External guidance

• CERT EXP33-C: Do not read uninitialized memory
• CERT EXP53-CPP: Do not read uninitialized memory
• CERT EXP54-CPP: Do not access an object outside of its lifetime
• CWE-457: Use of Uninitialized Variable
• CWE-665: Improper Initialization