...
| CERT C++ Secure Coding Standard | MEM35-CPP. Allocate sufficient memory for an object |
| ISO/IEC TR 24772:2013 | Buffer Boundary Violation (Buffer Overflow) [HCB] |
| MITRE CWE | CWE-190, Integer overflow (wrap or wraparound) CWE-131, Incorrect calculation of buffer size |
Bibliography
| [Coverity 2007] | |
| [Seacord 2005] | Chapter 4, "Dynamic Memory Management |
...
| " |
...
Chapter 5, "Integer Security" | |
| [xorl 2009] | CVE-2009-0587: Evolution Data Server Base64 Integer Overflows |
...