...
The mismanagement of memory can lead to freeing memory multiple times or writing to already freed memory. Both of these coding errors can result in an attacker executing arbitrary code with the permissions of the vulnerable process. Memory management errors can also lead to resource depletion and denial-of-service attacks.
Recommendation | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
MEM00-C | High | Probable | Medium | P12 | L1 |
Automated Detection
Tool | Version | Checker | Description | ||||||
|---|---|---|---|---|---|---|---|---|---|
| CodeSonar |
| ALLOC.DF | Double free | ||||||
| Compass/ROSE |
Could detect possible violations by reporting any function that has | ||||||||
| Coverity | 6.5 | RESOURCE_LEAK | Fully implemented | |||||
| Klocwork |
| FREE.INCONSISTENT UFM.FFM.MIGHT UFM.FFM.MUST UFM.DEREF.MIGHT UFM.DEREF.MUST UFM.RETURN.MIGHT UFM.RETURN.MUST UFM.USE.MIGHT UFM.USE.MUST MLK.MIGHT MLK.MUST MLK.RET.MIGHT MLK.RET.MUST FNH.MIGHT FNH.MUST FUM.GEN.MIGHT FUM.GEN.MUST RH.LEAK |
| LDRA tool suite |
| 50 D | Partially implemented | ||||||
| Parasoft C/C++test |
|
|
|
CERT_C-MEM00-a | Do not allocate memory and expect that someone else will deallocate it later |
| Parasoft Insure++ |
| Runtime analysis | |||||||||
| PC-lint Plus |
| 449, 2434 | Partially supported | ||||||
| Polyspace Bug Finder |
| Checks for:
|
Pointer deallocation without a corresponding dynamic allocation
Memory freed more than once without allocation
Memory accessed after deallocation
Rec. partially covered. |
Related Vulnerabilities
Search for vulnerabilities resulting from the violation of this rule on the CERT website.
Related Guidelines
| SEI CERT C++ Coding Standard | VOID MEM11-CPP. Allocate and free memory in the same module, at the same level of abstraction |
| ISO/IEC TR 24772:2013 | Memory Leak [XYL] |
| MITRE CWE | CWE-415, Double free CWE-416, Use after free |
Bibliography
...
...