SEI CERT C++ Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 72

changes.mady.by.user Will Snavely

Saved on

compared with

New Version 73

changes.mady.by.user Michal Rozenau

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Parasoft C/C++test 10.4.1 update

...

Slicing results in information loss, which could lead to abnormal program execution or denial-of-service attacks.

Rule

Severity

Likelihood

Remediation Cost

Priority

Level

OOP51-CPP

Low

Probable

Medium

P4

L3

Automated Detection

Tool

Version

Checker

Description

Parasoft C/C++test
Include Page
cplusplus:
Parasoft_V
cplusplus:
Parasoft_V
OOP-02, JSF-117_a 

CERT_CPP-OOP51-a

Avoid slicing function arguments / return value

PRQA QA-C++
 
Include Page
PRQA QA-C++_V
PRQA QA-C++_V

3072

 


Related Vulnerabilities

Search for other vulnerabilities resulting from the violation of this rule on the CERT website.

Related Guidelines

SEI CERT C++ Coding Standard

ERR61-CPP. Catch exceptions by lvalue reference
CTR56-CPP. Do not use pointer arithmetic on polymorphic objects 

SEI CERT C Coding Standard 

EXP34-C. Do not dereference null pointers

Bibliography

[Dewhurst 2002]Gotcha #38, "Slicing"
[ISO/IEC 14882-2014]Subclause 12.8, "Copying and Moving Class Objects"
[Sutter 2000]Item 40, "Object Lifetimes—Part I"

...


...