SEI CERT C++ Coding Standard

Space shortcuts

Page tree

Versions Compared

Old Version 15

changes.mady.by.user Jill Britton

Saved on

compared with

New Version Current

changes.mady.by.user David Svoboda

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: REM Cost Reform

...

It is rare for a violation of this rule to result in a security vulnerability unless it occurs in security-sensitive code. However, violations of this rule can easily result in lost or misinterpreted data. 

Rule

Severity

Likelihood

Detectable

RepairableRemediation Cost

Priority

Level

ERR62-CPP

Medium

Unlikely

Yes

MediumNo

P4

L3

Automated Detection

Tool

Version

Checker

Description

Axivion Bauhaus Suite

Include Page
Axivion Bauhaus Suite_V
Axivion Bauhaus Suite_V

CertC++-ERR62

Clang

Include Page
Clang_39_V
Clang_39_V

cert-err34-c

Checked by clang-tidy; only identifies use of unsafe C Standard Library functions corresponding to ERR34-C
CodeSonar
Include Page
CodeSonar_V
CodeSonar_V

BADFUNC.ATOF
BADFUNC.ATOI
BADFUNC.

ATOF

ATOL
BADFUNC.

ATOF

ATOLL

Use of atof
Use of atoi
Use of atol
Use of atoll

Helix QAC

Include Page
Helix QAC_V
Helix QAC_V

C++3161
Klocwork
Include Page
Klocwork_V
Klocwork_V
CERT.ERR.CONV.STR_TO_NUM
Parasoft C/C++test

Include Page
Parasoft_V
Parasoft_V

CERT_CPP-ERR62-aThe
library functions
'atof', 'atoi
and atol from library
', 'atol' and 'atoll' functions from the 'stdlib.h
shall
' or 'cstdlib' library should not be used
Polyspace Bug Finder

Include Page
Polyspace Bug Finder_V
Polyspace Bug Finder_V

CERT C++: ERR62-CPPChecks for unvalidated string-to-number conversion (rule fully covered)

Related Vulnerabilities

Search for other vulnerabilities resulting from the violation of this rule on the CERT website.

...