...
Tool | Version | Checker | Description | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Astrée |
| dangling_pointer_use | Supported Astrée reports all accesses to freed allocated memory. | ||||||||||
| Axivion Bauhaus Suite |
| CertC-MEM30 | Detects memory accesses after its deallocation and double memory deallocations | ||||||||||
| CodeSonar |
| ALLOC.UAF | Use after free | ||||||||||
| Compass/ROSE | |||||||||||||
| USE_AFTER_FREE | Can detect the specific instances where memory is deallocated more than once or read/written to the target of a freed pointer | |||||||||||
| Helix QAC |
| ||||||||||||
| Klocwork |
| UFM.DEREF.MIGHT | |||||||||||
| LDRA tool suite |
| 51 D, 484 S, 112 D | Partially implemented | ||||||||||
| Parasoft C/C++test |
| CERT_C-MEM30-a | Do not use resources that have been freed | ||||||||||
| Parasoft Insure++ | Runtime analysis | ||||||||||||
| PC-lint Plus |
| 449, 2434 | Fully supported | ||||||||||
| Polyspace Bug Finder |
| Checks for use of previously freed pointer (rule partially covered) | |||||||||||
| PRQA QA-C |
| 2731, 2732, 2733 | |||||||||||
| PRQA QA-C++ |
| 3339, 4303, 4304 | |||||||||||
| PVS-Studio |
| V586, V774 | |||||||||||
| Splint |
| ||||||||||||
| TrustInSoft Analyzer |
| dangling_pointer | Exhaustively verified (see one compliant and one non-compliant example). | Helix QAC | | Include Page | | Helix QAC_V | Helix QAC_V
Related Vulnerabilities
VU#623332 describes a double-free vulnerability in the MIT Kerberos 5 function krb5_recvauth().
...