SEI CERT C Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 160

changes.mady.by.user Will Snavely

Saved on

compared with

New Version 161

changes.mady.by.user Svyatoslav Razmyslov

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Tool

Version

Checker

Description

CodeSonar
Include Page
CodeSonar_V
CodeSonar_V

IO.INJ.FMT
MISC.FMT

Format string injection
Format string

Compass/ROSE



Coverity
Include Page
Coverity_V
Coverity_V

TAINTED_STRING

Implemented
GCC
Include Page
GCC_V
GCC_V

Can detect violations of this rule when the -Wformat-security flag is used

Klocwork
Include Page
Klocwork_V
Klocwork_V

SV.FMTSTR.GENERIC
SV.TAINTED.FMTSTR


LDRA tool suite
Include Page
LDRA_V
LDRA_V

86 D

Partially Implemented
Parasoft C/C++test
Include Page
c:Parasoft_Vc:
Parasoft_V
SECURITY-05 SECURITY-08 SECURITY-36
Polyspace Bug FinderR2016aTainted string format

Input format argument is from an unsecure source

Splint
Include Page
Splint_V
Splint_V


PVS-Studio6.22V618General analysis rule

Related Vulnerabilities

Two examples of format-string vulnerabilities resulting from a violation of this rule include Ettercap and Samba.

...