SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 78

changes.mady.by.user Robert Seacord

Saved on

compared with

New Version 79

changes.mady.by.user Carol J. Lallier

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

Related Guidelines

CERT C++ Secure Coding Standard

...

MEM07-CPP. Ensure that the arguments to calloc(), when multiplied, can be represented as a size_t

...

MITRE CWE

...

CWE-190,

...

Integer overflow (wrap or wraparound)

...


...

CWE-128,

...

Wrap-around error

...

Bibliography

[

...

RUS-CERT]Advisory 2002-08:02, "Flaw in calloc and

...

Similar Routines"
[Seacord 2005]Chapter 4, "Dynamic Memory Management"
[Secunia]Advisory SA10635, "HP-UX calloc Buffer Size Miscalculation Vulnerability"

 
 
  buffer size miscalculation vulnerability"

...