SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 151

changes.mady.by.user Anirban Gangopadhyay

Saved on

compared with

New Version Current

changes.mady.by.user Jill Britton

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

LDRA tool suite

Tool

Version

Checker

Description

CodeSonar
Include Page
CodeSonar_V
CodeSonar_V
(customization)

CodeSonar's custom checking infrastructure allows users to implement checks such as the following.

  • A check for all uses of fopen().
  • A check for calls to open() with only two arguments.
  • A check for calls to open() where the third argument does not satisfy some specified requirement.
Helix QAC

Include Page

LDRA

Helix QAC_V

LDRA

Helix QAC_V

C5013
LDRA tool suite44 SEnhanced EnforcementPolyspace Bug Finder
Include Page
Polyspace Bug Finder
LDRA_V
Polyspace Bug Finder
LDRA_V

Umask used with chmod-style arguments

Vulnerable permission assignments

Argument to umask allows external user too much control

Argument gives read/write/search permissions to external users

PRQA QA-C
Include Page
44 SEnhanced EnforcementPRQA QA-C_vPRQA QA-C_v5013Partially implemented

Related Vulnerabilities

Search for vulnerabilities resulting from the violation of this rule on the CERT website.

...