...
MEM32-C. Detect and handle critical memory allocation errors
MEM33-C. reservedUse flexible array members for dynamically sized structures
MEM34-C. Only free memory allocated dynamically
MEM35-C. Allocate sufficient memory for an object
MEM33-C. Use flexible array members for dynamically sized structures
Risk Assessment Summary
Recommendation | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
MEM00-A | 3 (high) | 2 (probable) | 1 (high) | P6 | L2 |
MEM01-A | 3 (high) | 2 (probable) | 3 (low) | P18 | L1 |
MEM02-A | 1 (low) | 1 (unlikely) | 3 (low) | P3 | L3 |
MEM03-A | 2 (medium) | 1 (unlikely) | 3 (low) | P6 | L2 |
MEM04-A | 3 (high) | 2 (probable) | 2 (medium) | P12 | L1 |
MEM05-A | 1 (low) | 1 (unlikely) | 2 (medium) | P2 | L3 |
MEM06-A | 3 (high) | 2 (probable) | 2 (medium) | P12 | L1 |
MEM07-A | 3 (high) | 1 (unlikely) | 1 (high) | P3 | L3 |
Rule | Severity | Likelihood | Remediation Cost | Priority | Level | ||||
|---|---|---|---|---|---|---|---|---|---|
MEM30-C | 3 (high) | 3 (likely) | 2 (medium) | P18 | L1 | ||||
MEM31-C | 3 (high) | 2 (probable) | 2 (medium) | P12 | L1 | ||||
MEM32-C | 1 (low) | 3 (likely) | 2 (medium) | P6 | L2 | ||||
MEM33-C | TBD | TBD | TBD | TBD | 1 (low) | 1 (unlikely) | 3 (low) | P3 | L3 TBD |
MEM34-C | 1 (low) | 1 (unlikely) | 2 (medium) | P2 | L3 | ||||
MEM35-C | 3 (high) | 2 (probable) | 1 (high) | P6 | L2 | ||||
MEM36-C | TBD | TBD | TBD | TBD | TBD | ||||
MEM37-C | TBD | TBD | TBD | TBD | TBD | ||||
MEM38-C | 1 (low) | 1 (unlikely) | 3 (low) | P3 | L3 |
References
| Wiki Markup |
|---|
\[[ISO/IEC 9899-1999|AA. C References#ISO/IEC 9899-1999]\] Section 7.20.3, "Memory management functions" \[[Seacord 05|AA. C References#Seacord 05]\] Chapter 4, "Dynamic Memory Management" |