...
Failing to properly close files may allow an attacker to exhaust system resources and can increase the risk that data written into in-memory file buffers will not be flushed in the event of abnormal program termination.
Rule | Severity | Likelihood | Detectable | RepairableRemediation Cost | Priority | Level |
|---|---|---|---|---|---|---|
FIO51-CPP | Medium | Unlikely | No | MediumNo | P4P2 | L3 |
Automated Detection
Tool | Version | Checker | Description | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| CodeSonar |
| ALLOC.LEAK | Leak | |||||||||
| Helix QAC |
| DF4786, DF4787, DF4788 | ||||||||||
| Klocwork |
| RH.LEAK | ||||||||||
| Parasoft C/C++test |
| CERT_CPP-FIO51-a | Ensure resources are freed | |||||||||
| Parasoft Insure++ | Runtime detection | |||||||||||
| Polyspace Bug Finder |
| CERT C++: FIO51-CPP | Checks for resource leak (rule partially covered) | Helix QAC | ||||||||
| Include Page | Helix QAC_V | Helix QAC_V|||||||||||
| Security Reviewer - Static Reviewer | 6.02 | C80 | Fully implemented |
Related Vulnerabilities
Search for vulnerabilities resulting from the violation of this rule on the CERT website.
...