Page History

...

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

Related Guidelines

Key here (explains table format and definitions)

CWE-415, Double Free

Taxonomy	Taxonomy item	Relationship
CERT C Secure Coding Standard	MEM01-C. Store a new value in pointers immediately after free()		Prior to 2018-01-12: CERT: Unspecified Relationship
CERT C SEI CERT C++ Coding Standard	MEM50-CPP. Do not access freed memory	Prior to 2018-01-12: CERT: Unspecified Relationship
ISO/IEC TR 24772:2013	Dangling References to Stack Frames [DCM]Dangling Reference to Heap [XYK]	Prior to 2018-01-12: CERT: Unspecified Relationship
ISO/IEC TR 24772:2013	Dangling Reference to Heap [XYK]	Prior to 2018-01-12: CERT: Unspecified Relationship
ISO/IEC TS 17961	Accessing freed memory [accfree]	Prior to 2018-01-12: CERT: Unspecified Relationship
ISO/IEC TS 17961	Freeing memory multiple times [dblfree]	Prior to 2018-01-12: CERT: Unspecified Relationship
MISRA MISRA C:2012	Rule 18.6 (required)	Prior to 2018-01-12: CERT: Unspecified Relationship
CWE 2.11	MITRE CWE		CWE-416, Use After Free	2017-07-07: CERT: Exact
CWE 2.11	CWE-672	2017-07-07: CERT: Rule subset of CWE

Key here for mapping notes

Intersection( MEM30-C, FIO46-C) = Ø CWE-672 = Union( MEM30-C, list) where list =

Use of a resource, other than memory after it has been released (eg: reusing a closed file, or expired mutex)

Intersection( MEM30-C, FIO46-C) = Ø

CWE-672 = Subset( CWE-666)

CWE-758 = Union( MEM30-C, list) where list =

MEM30-C = Union( CWE-456, list) where list =

Dereference of a pointer after freeing it (besides passing it to free() a second time)

[ISO/IEC 9899:2011]	7.22.3, "Memory Management Functions"
[Kernighan 1988]	Section 7.8.5, "Storage Management"
[OWASP Freed Memory]
[MIT 2005]
[Seacord 2013b]	Chapter 4, "Dynamic Memory Management"
[Viega 2005]	Section 5.2.19, "Using Freed Memory"
[VU#623332]
[xorl 2009]	CVE-2009-1364: LibWMF Pointer Use after free()

...