Page History

...

Using an invalid array or container index can result in an arbitrary memory overwrite or abnormal program termination.

Rule	Severity	Likelihood	Detectable	RepairableRemediation Cost	Priority	Level
CTR50-CPP	High	Likely	No	NoHigh	P9	L2

Automated Detection

2891, 3139, 3140

Tool

Version

Checker

Description

Astrée

Include Page

	Astrée_V
	Astrée_V

overflow_upon_dereference

CodeSonar

Include Page

	CodeSonar_V
	CodeSonar_V

LANG.MEM.BO
LANG.MEM.BU
LANG.MEM.TO
LANG.MEM.TU
LANG.MEM.TBA
LANG.STRUCT.PBB
LANG.STRUCT.PPE
LANG.STRUCT.PARITH

Buffer overrun
Buffer underrun
Type overrun
Type underrun
Tainted buffer access
Pointer before beginning of object
Pointer past end of object
Pointer Arithmetic

Helix QAC

Include Page

	Helix QAC_V
	Helix QAC_V

C++3139, C++3140

DF2891

Klocwork

Include Page

	Klocwork_V
	Klocwork_V

ABV.ANY_SIZE_ARRAY
ABV.GENERAL
ABV.GENERAL.MULTIDIMENSION
ABV.NON_ARRAY
ABV.STACK
ABV.TAINTED
SV.TAINTED.ALLOC_SIZE
SV.TAINTED.CALL.INDEX_ACCESS
SV.TAINTED.CALL.LOOP_BOUND
SV.TAINTED.INDEX_ACCESS