...
Recommendation | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
EXP12 EXP32-C PL | medium info | unlikely probable | medium low | P4 | L3 |
Automated Detection
...
Tool
...
Version
...
Checker
...
Description
...
| Section |
|---|
...
| Section |
|---|
CHECKED_RETURN |
...
| Section |
|---|
finds inconsistencies in how function call return values are handled. Coverity Prevent cannot discover all violations of this recommendation, so further verification is necessary. |
...
| Section |
|---|
Splint |
...
...
...
| Section |
|---|
Compass/ROSE |
...
...
...
P12 | L1 |
...
| Section |
|---|
...
| Section |
|---|
SV.RVT.RETVAL_NOTTESTED |
...
Related Vulnerabilities
Search for vulnerabilities resulting from the violation of this rule on the CERT website.
Related Guidelines
CERT C++ Secure Coding Standard: EXP12-CPP. Do not ignore values returned by functions or methods
CERT C Secure Coding Standard: EXP12-C. Do not ignore values returned by functions
The CERT Oracle Secure Coding Standard for Java: EXP00-J. Do not ignore values returned by methods
ISO/IEC 9899:1999 Section 6.8.3, "Expression and null statements"
ISO/IEC TR 24772 "CSJ Passing Parameters and Return Values"
MITRE CWE: CWE-754, "Improper Check for Unusual or Exceptional Conditions"
Bibliography
...
EXP11-C. Do not apply operators expecting one type to data of an incompatible type 03. Expressions (EXP) EXP13-C. Treat relational and equality operators as if they were nonassociative