SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 156

changes.mady.by.user Arthur Hicken

Saved on

compared with

New Version 157

changes.mady.by.user Will Snavely

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

VU#623332 describes a double-free vulnerability in the MIT Kerberos 5 function krb5_recvauth()

Search for other vulnerabilities resulting from the violation of this rule on the CERT website.

Related Guidelines

CERT C Secure Coding StandardMEM01-C. Store a new value in pointers immediately after free()
SEI CERT C++ Coding StandardMEM50-CPP. Do not access freed memory
ISO/IEC TR 24772:2013Dangling References to Stack Frames [DCM]
Dangling Reference to Heap [XYK]
ISO/IEC TS 17961

Accessing freed memory [accfree]
Freeing memory multiple times [dblfree]

MISRA C:2012Rule 18.6 (required)
MITRE CWE

CWE-415, Double Free
CWE-416, Use After Free

...