SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 155

changes.mady.by.user Astha Singhal

Saved on

compared with

New Version 156

changes.mady.by.user Astha Singhal

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Migrated to Confluence 4.0

...

Rule

Severity

Likelihood

Remediation Cost

Priority

Level

INT32-C

high

likely

high

P9

L2

Automated Detection

Tool

Version

Checker

Description

Section

LDRA tool suite

Include Page
c:LDRA_Vc:
LDRA_V
Section

43 D
493 S
494 S

Section

Partially Implemented

Section

Fortify SCA

Section

V. 5.0

 

Section

can detect violations of this rule with CERT C Rule Pack. Specifically, it checks to ensure that the operand of a unary negation is compared to the type's minimum value immediately before the operation

...

MITRE CWE: CWE-190, "Integer Overflow (Wrap or Wraparound)"

Bibliography

...

\[[Dowd 2006|AA. Bibliography#Dowd 06]\] Chapter 6, "C Language Issues" (Arithmetic Boundary Conditions, pp. 211-223) \[
[Seacord 2005|AA. Bibliography#Seacord 05]\] Chapter 5, "Integers" \
[[Viega 2005|AA. Bibliography#Viega 05]\] Section 5.2.7, "Integer overflow" \
[[VU#551436|AA. Bibliography#VU551436]\] \[]
[Warren 2002|AA. Bibliography#Warren 02] \] Chapter 2, "Basics"

...

      04. Integers (INT)      INT33-C. Ensure that division and modulo operations do not result in divide-by-zero errors