...
Improper handling of signals can lead to security vulnerabilities. The following rules and recommendations are meant to eliminate common errors associated with signal handling.
Recommendations
SIG00-A. Mask signals handled by non-interruptible signal handlers
...
SIG02-A. Avoid using signals to implement normal functionality
Rules
SIG30-C. Call only asynchronous-safe functions within signal handlers
...
SIG34-C. Do not call signal() from within interruptible signal handlers
Risk Assessment Summary
Recommendation | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
SIG00-A | 3 (high) | 3 (likely) | 1 (high) | P9 | L2 |
SIG01-A | 1 (low) | 1 (unlikely) | 3 (low) | P3 | L3 |
SIG02-A | 3 (high) | 2 (probable) | 2 (medium) | P12 | L1 |
Rule | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
SIG30-C | 3 (high) | 3 (likely) | 1 (high) | P9 | L2 |
SIG31-C | 3 (high) | 3 (likely) | 1 (high) | P9 | L2 |
SIG32-C | 3 (high) | 3 (likely) | 1 (high) | P9 | L2 |
SIG33-C | 1 (low) | 1 (unlikely) | 2 (medium) | P2 | L3 |
SIG34-C | 1 (low) | 1 (unlikely) | 3 (low) | P3 | L3 |
Related Rules and Recommendations
| Navigation Map | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|
|
...