...
| Code Block |
|---|
...
if (s == 0) {
/* Handle Error */
}
list = malloc(sizeof(int) * s);
if (list == NULL) {
/* Handle Allocation Error */
}
/* Continue Processing list */
...
|
...
Risk Assessment
Assuming that allocating zero bytes results in an error can lead to buffer overflows when zero bytes are allocated. Buffer overflows can be exploited by an attacker to run arbitrary code with the permissions of the vulnerable process.
Rule | Severity | Likelihood | Remediation Cost | Priority | Level | |
|---|---|---|---|---|---|---|
EXP04-A | ||||||
Component | Value | |||||
Severity | 3 (high) | Likelihood | 2 (probable) Remediation cost | 2 (medium) | P12 | L1 |
References
- ISO/IEC 9899-1999 Section 7.20.3 Memory Management Functions
- Seacord 05 Chapter 4, Dynamic Memory Management