...
The result of the
/operator is the quotient from the division of the first operand by the second; the result of the%operator is the remainder. In both operations, if the value of the second operand is zero, the behavior is undefined.
(See also undefined behavior 45 of Annex J.)
Division
The result of the / operator is the quotient from the division of the first arithmetic operand by the second arithmetic operand. Division operations are susceptible to divide-by-zero errors. Overflow can also occur during two's complement signed integer division when the dividend is equal to the minimum (negative) value for the signed integer type and the divisor is equal to −1. (See INT32-C. Ensure that operations on signed integers do not result in overflow.)
Noncompliant Code Example
...
Tool | Version | Checker | Description | ||||||
|---|---|---|---|---|---|---|---|---|---|
| 43 D | Partially implemented. | |||||||
| Fortify SCA | V. 5.0 | Can detect violations of this rule with CERT C Rule Pack. | |||||||
Compass/ROSE | Can detect some violations of this rule. In particular, it ensures that all operations involving division or modulo are preceded by a check ensuring that the second operand is nonzero. | ||||||||
| PRQA QA-C |
| 2830 (C) 2831 (D) 2832 (A) 2833 (S) 2834 (P) | Fully implemented |
Related Vulnerabilities
...
MITRE CWE: CWE-369, "Divide by zero"
Bibliography
[Seacord 2005] Chapter 5, "Integers"
[Warren 2002] Chapter 2, "Basics"
...