SEI CERT Perl Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 23

changes.mady.by.user Carol J. Lallier

Saved on

compared with

New Version Current

changes.mady.by.user Will Snavely

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Tool

Diagnostic

 Warnings

Missing argument in .*printf

Taint modeInsecure dependency in .*printf

Related Guidelines

SEI CERT C

...

Coding Standard

...

FIO30-C. Exclude user input from format strings
SEI CERT C++

...

Coding Standard

...

VOID FIO30-CPP. Exclude user input from format strings

...

CERT Oracle Secure Coding Standard for Java

...

IDS06-J. Exclude unsanitized user input from format strings
MITRE CWE

...

CWE-134, "Uncontrolled format string"

Bibliography

[Christey 2005]Format string vulnerabilities in Perl programs
[Seacord 2005]Chapter 6, "Formatted Output"
[VU#948385]Perl contains an integer sign error in format string processing
[Wall 2011]perlfunc

 

...

Image Modified Image Modified Image Modified