SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 72

changes.mady.by.user Anirban Gangopadhyay

Saved on

compared with

New Version 73

changes.mady.by.user Anirban Gangopadhyay

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Recommendation

Severity

Likelihood

Remediation Cost

Priority

Level

MSC15-C

High

Likely

Medium

P18

L1

Automated Detection

Tool

Version

Checker

Description

Astrée
Include Page
Astrée_V
Astrée_V

Supported, but no explicit checker
LDRA tool suite
Include Page
LDRA_V
LDRA_V

48 D, 63 D, 84 D, 113 D, 5 Q, 64 S, 65 S, 100 S, 109 S, 156 S, 296 S, 324 S, 335 S, 336 S, 339 S, 412 S, 427 S, 465 S, 482 S, 497 S, 545 S, 587 S, 608 S, 642 S, 62 X, 63 X

Partially implemented
Parasoft C/C++test
Include Page
Parasoft_V
Parasoft_V
CERT_C-MSC15-a

Evaluation of constant unsigned integer expressions should not lead to wrap-around

Polyspace Bug Finder

Include Page
Polyspace Bug Finder_V
Polyspace Bug Finder_V

Array access out of bounds

Copy of overlapping memory

Declaration mismatch

Format string specifiers and arguments mismatch

Integer overflow

Invalid use of standard library memory routine

Invalid use of standard library routine

Invalid use of standard library string routine

Non-initialized pointer

Non-initialized variable

Null pointer

Overlapping assignment

Pointer access out of bounds

Standard function call with incorrect arguments

Unreliable cast of function pointer

Unreliable cast of pointer

Use of tainted pointer

Writing to const qualified object

Array index outside bounds during array access

Source and destination arguments of a copy function have overlapping memory

Mismatch between function or variable declarations

String specifiers do not match corresponding arguments

Overflow from operation between integers

Standard library memory function called with invalid arguments

Wrong arguments to standard library function

Standard library string function called with invalid arguments

Pointer not initialized before dereference

Variable not initialized before use

NULL pointer dereferenced

Memory overlap between left and right sides of an assignment

Pointer dereferenced outside its bounds

Argument to a standard function does not meet requirements for use in the function

Function pointer cast to another function pointer with different argument or return type

Pointer implicitly cast to different data type

Pointer from an unsecure source may be NULL or point to unknown memory

Object declared with a const qualifier is modified

PRQA QA-C
Include Page
PRQA QA-C_v
PRQA QA-C_v

0160, 0161, 0162, 0163, 0164, 0165, 0166, 0167, 0168, 0169, 0170, 0171, 0172, 0173, 0174, 0175, 0176, 0177, 0178, 0179, 0184, 0185, 0186, 0190, 0191, 0192, 0193, 0194, 0195, 0196, 0197, 0198, 0199, 0200, 0201, 0203, 0204, 0206, 0207, 0208, 0235, 0275, 0304, 0309, 0337, 0400, 0401, 0402, 0403, 0543, 0544, 0545, 0602, 0623, 0625, 0626, 0630, 0632, 0636, 0654, 0658, 0661, 0667, 0668, 0672, 0706, 0745, 0777, 0779, 0809, 0813, 0814, 0836, 0837, 0848, 0853, 0854, 0864, 0865, 0867, 0872, 0874, 0885, 0887, 0888, 0914, 0915, 0942, 3113, 3114, 3239, 3319, 3438, 0301, 0302, 0307, 0475, 0676, 0678, 0680, 3311, 3312, 3437,1509, 1510

Partially implemented
PVS-Studio

Include Page
PVS-Studio_V
PVS-Studio_V

V772

Related Vulnerabilities

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

...