CWE-585 - Empty Synchronized Block

CWE-585

Abstraction:
Variant

Structure:
Simple

Status:
Draft

Weakness Name: Empty Synchronized Block

Description: The product contains an empty synchronized block.
An empty synchronized block does not actually accomplish any synchronization and may indicate a troubled section of code. An empty synchronized block can occur because code no longer needed within the synchronized block is commented out without removing the synchronized block.

Common Consequences: Scope: Other
Impact: Other
Notes: An empty synchronized block will wait until nobody else is using the synchronizer being specified. While this may be part of the desired behavior, because you haven't protected the subsequent code by placing it inside the synchronized block, nothing is stopping somebody else from modifying whatever it was you were waiting for while you run the subsequent code.

Related Weaknesses: CWE-1071Empty Code Block

Release Date:
2006-12-15

Latest Modification Date:
2024-02-29

Free security scan for your website

Don't show website scan report rating on the leaderboard