Skip to main content

Table 6 Indirect Call Analysis

From: ELAID: detecting integer-Overflow-to-Buffer-Overflow vulnerabilities by light-weight and accurate static analysis

Programs Total CS Total ICS % of ICS LAID(Definition-based) Type-based ELAID(LAID+Type)
     % of ICS resolved # of avg target % of ICS resolved # of avg target % of ICS resolved # of avg target
gocr 4207 2 0.05% 100% 1 100% 2 100% 1
jasper 3722 56 1.5% 98% 3.6 100% 11.3 100% 3.7
cpio 2747 24 0.87% 63% 2.2 83% 2.6 83% 2.2
libexif 2450 22 0.9% 95% 2.9 95% 9.1 95% 2.1
jbig2dec 2668 30 1.12% 100% 2.9 100% 3.3 100% 2.9
swftools 62178 723 1.16% 66% 7 100% 75.5 100% 63.9
linux kernel 1160541 22632 1.95% 25% 5 43% 98.2 43% 38.4
Average - - 1.08% 78% 3.5 88.7% 29 88.7% 16.3