SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 104

changes.mady.by.user Anirban Gangopadhyay

Saved on

compared with

New Version 105

changes.mady.by.user Michal Rozenau

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Parasoft C/C++test 10.4

...

Recommendation

Severity

Likelihood

Remediation Cost

Priority

Level

EXP39-C

Medium

Unlikely

High

P2

L3

Automated Detection

Tool

Version

Checker

Description

LDRA tool suite
Include Page
LDRA_V
LDRA_V
94 S, 554 SPartially implemented
Parasoft C/C++test

Include Page
Parasoft_V
Parasoft_V

MISRA2004-10_1_b, MISRA2004-10_2_1, MISRA2004-11_4, BD-PB-OVERFARRAY, BD-SECURITY-OVERFMT, BD-SECURITY-OVERFRD, BD-SECURITY-OVERFWR

CERT_C-EXP39-a
CERT_C-EXP39-b
CERT_C-EXP39-c
CERT_C-EXP39-d
CERT_C-EXP39-e
CERT_C-EXP39-f

There shall be no implicit conversions from integral to floating type
A cast should not be performed between a pointer to object type and a different pointer to object type
Avoid accessing arrays and pointers out of bounds
Avoid buffer overflow from tainted data due to defining incorrect format limits
Avoid buffer read overflow from tainted data
Avoid buffer write overflow from tainted data

Polyspace Bug Finder

Include Page
Polyspace Bug Finder_V
Polyspace Bug Finder_V

Pointer access out of bounds

Unreliable cast of pointer

MISRA C:2012 Rule 11.3

Pointer dereferenced outside its bounds

Pointer implicitly cast to different data type

A cast shall not be performed between a pointer to object type and a pointer to a different object type

PRQA QA-C
Include Page
PRQA QA-C_v
PRQA QA-C_v

0310
3305

Partially implemented
PRQA QA-C++4.1 3017, 3030, 3033 
PVS-Studio

Include Page
PVS-Studio_V
PVS-Studio_V

V580

Related Vulnerabilities

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

...