tracker issue : CF-4126394

select a category, or use search below
(searches all categories and all time range)
Title:

Security Analyzer says encoded files have syntax errors

| View in Tracker

Status/Resolution/Reason: Closed/Fixed/

Reporter/Name(from Bugbase): Peter Freitag / Peter Freitag (Peter Freitag)

Created: 03/09/2016

Components: Security Analyzer

Versions: 2016

Failure Type:

Found In Build/Fixed In Build: RC_v31 /

Priority/Frequency: Normal / All users will encounter

Locale/System: English / Mac All

Vote Count: 0

Listed in the version 2016.0.01.298513 Issues Fixed doc
Verification notes: verified_fixed on September 29, 2019 using build 2016.0.01.298513 
Related Bugs:
4131907 - Similar to	ColdFusion Builder
4131907 - Similar to	ColdFusion Builder


Problem Description: If there are files encoded with cfencode it says they were not scanned due to syntax errors... That is not really accurate, it is fine if they are not scanned but it is not a syntax error and the security analyzer should be able to identify such files.

Steps to Reproduce: Scan /CFIDE

Actual Result: 400+ files were not scanned due to syntax errors.

Expected Result: 400+ files were not scanned because they were encoded with cfencode.

Any Workarounds: n/a

----------------------------- Additional Watson Details -----------------------------

Watson Bug ID:	4126394

External Customer Info:
External Company: Foundeo Inc.
External Customer Name: Peter Freitag
External Customer Email: PETE@FOUNDEO.COM
External Test Config:

Attachments:

Comments:

Adding BUG AUDIT TRAIL ********action: updated fieldName: Fix By Product Milestone newValue: HF2 oldValue: HF1 oprid: vmannebo recordName: RQ_DEFECT timpestamp: 2016-02-29 12:33:08.0 action: updated fieldName: Severity newValue: 3 oldValue: 2 oprid: hkallae recordName: RQ_DEFECT timpestamp: 2016-02-12 05:21:31.0 action: updated fieldName: Priority newValue: 2 oldValue: 0 oprid: hkallae recordName: RQ_DEFECT timpestamp: 2016-02-12 05:21:31.0 action: updated fieldName: Version newValue: 12.0 oldValue: 3.1 oprid: preethi recordName: RQ_DEFECT timpestamp: 2016-02-10 05:22:29.0 action: updated fieldName: Fix By Milestone newValue: Post Release oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2016-02-10 05:22:29.0 action: updated fieldName: Product newValue: ColdFusion oldValue: ColdFusion Builder oprid: preethi recordName: RQ_DEFECT timpestamp: 2016-02-10 05:22:29.0 action: updated fieldName: Reason newValue: BugVerified oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2016-02-10 05:22:29.0 action: updated fieldName: Fix By Product Milestone newValue: HF1 oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2016-02-10 05:22:29.0 action: updated fieldName: Owner newValue: uogra oldValue: prk oprid: preethi recordName: RQ_DEFECT timpestamp: 2016-02-10 05:22:29.0 action: updated fieldName: Status newValue: ToFix oldValue: Unverified oprid: preethi recordName: RQ_DEFECT timpestamp: 2016-02-10 05:22:29.0 action: updated fieldName: QE Assigned newValue: preethi oldValue: prk oprid: preethi recordName: RQ_DEFECT timpestamp: 2016-02-10 05:22:29.0 action: updated fieldName: Dev Assigned newValue: uogra oldValue: bukkittu oprid: preethi recordName: RQ_DEFECT timpestamp: 2016-02-10 05:22:29.0
Comment by CFwatson U.
4277 | March 09, 2016 01:55:18 AM GMT
Added By: PreRelease User User Name:Peter Freitag Note Added: Entered Bug. Date Added :2016-02-08 20:57:12.0
Comment by CFwatson U.
4278 | March 09, 2016 01:55:19 AM GMT
This has been fixed from the core engine working perspective. Hence will be closing this now. The same from the builder side needs to be fixed, which will be tracked in a separate bug which has been added in the related bugs.
Comment by S P.
4279 | March 24, 2016 04:11:07 AM GMT
Hi Adobe, I've verified this is fixed in CF2016 Update 1 (build 2016.0.01.298513). Thanks!, -Aaron
Comment by Aaron N.
31451 | September 29, 2019 06:30:13 AM GMT