Skip to main content
assistive.skiplink.to.breadcrumbs
assistive.skiplink.to.header.menu
assistive.skiplink.to.action.menu
assistive.skiplink.to.quick.search
Log in
Confluence
Spaces
Hit enter to search
Help
Online Help
Keyboard Shortcuts
Feed Builder
What’s new
Available Gadgets
About Confluence
Log in
SEI CERT C Coding Standard
Pages
Boards
Space shortcuts
Dashboard
Secure Coding Home
Android
C
C++
Java
Perl
Page tree
Browse pages
Configure
Space tools
View Page
A
t
tachments (0)
Page History
Page Information
View in Hierarchy
View Source
Export to PDF
Export to Word
Pages
…
SEI CERT C Coding Standard
2 Rules
Rule 08. Memory Management (MEM)
MEM35-C. Allocate sufficient memory for an object
Page Information
Title:
MEM35-C. Allocate sufficient memory for an object
Author:
Jeffrey Gennari
Jun 20, 2006
Last Changed by:
Francesco Mariani
Aug 31, 2025
Tiny Link:
(useful for email)
https://wiki.sei.cmu.edu/confluence/x/ANYxBQ
Export As:
Word
·
PDF
Incoming Links
SEI CERT C Coding Standard (2)
Page:
STR31-C. Guarantee that storage for strings has sufficient space for character data and the null terminator
Page:
ARR01-C. Do not apply the sizeof operator to a pointer when taking the size of an array
Hierarchy
Parent Page
Page:
Rule 08. Memory Management (MEM)
Labels
Global Labels (12)
fortify
compass/rose
coverity
cwe-131
cwe-190
nptc
rose-possible
android-applicable
rule
mem
nptc-intent
in-cpp
Recent Changes
Time
Editor
Aug 31, 2025 04:59
Francesco Mariani
View Changes
May 05, 2025 08:58
Swasti Shrivastava
View Changes
REM Cost Reform
Dec 12, 2024 01:18
Swasti Shrivastava
View Changes
Oct 03, 2024 13:29
Swasti Shrivastava
View Changes
Oct 03, 2024 13:26
Swasti Shrivastava
View Page History
Outgoing Links
External Links (27)
xorl.wordpress.com/2009/06/10/cve-2009-0587-evolution-data-…
https://wiki.sei.cmu.edu/confluence/display/c/AA.+Bibliogra…
https://taas.trust-in-soft.com/tsnippet/t/77590559
https://wiki.sei.cmu.edu/confluence/display/c/INT18-C.+Eval…
https://wiki.sei.cmu.edu/confluence/display/c/How+this+Codi…
https://cwe.mitre.org/data/index.html
https://www.mathworks.com/help/bugfinder/ref/certcrulemem35…
cwe.mitre.org/data/definitions/131.html
https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
https://wiki.sei.cmu.edu/confluence/display/c/PVS-Studio
https://wiki.sei.cmu.edu/confluence/display/c/INT32-C.+Ensu…
https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
https://wiki.sei.cmu.edu/confluence/display/c/SEI+CERT+C+Co…
https://wiki.sei.cmu.edu/confluence/display/c/ARR01-C.+Do+n…
https://pvs-studio.com/en/docs/warnings/v531/
https://wiki.sei.cmu.edu/confluence/display/c/INT31-C.+Ensu…
https://pvs-studio.com/en/docs/warnings/v781/
https://cwe.mitre.org/data/index.html789.html
https://www.kb.cert.org/vulnotes/bymetric?searchview&query=…
https://wiki.sei.cmu.edu/confluence/display/c/MEM04-C.+Bewa…
https://wiki.sei.cmu.edu/confluence/display/c/AA.+Bibliogra…
https://cwe.mitre.org/data/index.html680.html
https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
cwe.mitre.org/
https://pvs-studio.com/en/docs/warnings/v635/
SEI CERT C Coding Standard (37)
Page:
Coverity_V
Page:
MEM04-C. Beware of zero-length allocations
Page:
Rose
Home page:
SEI CERT C Coding Standard
Page:
LDRA_V
Page:
Polyspace Bug Finder
Page:
AA. Bibliography
Page:
STR31-C. Guarantee that storage for strings has sufficient space for character data and the null terminator
Page:
TrustInSoft Analyzer_V
Page:
PC-lint Plus_V
Page:
Coverity
Page:
Cppcheck Premium_V
Page:
PC-lint Plus
Page:
Cppcheck Premium
Page:
BB. Definitions
Page:
Helix QAC_V
Page:
TrustInSoft Analyzer
Page:
Splint
Page:
Astrée
Page:
Astrée_V
Page:
RuleChecker
Page:
Parasoft
Page:
CodeSonar_V
Page:
Klocwork
Page:
Axivion Bauhaus Suite_V
Page:
Polyspace Bug Finder_V
Page:
CodeSonar
Page:
LDRA
Page:
Security Reviewer - Static Reviewer_V
Page:
MEM33-C. Allocate and copy structures containing a flexible array member dynamically
Page:
Helix QAC
Page:
INT30-C. Ensure that unsigned integer operations do not wrap
Page:
PVS-Studio_V
Page:
Security Reviewer - Static Reviewer
Page:
RuleChecker_V
Page:
Parasoft_V
Page:
Klocwork_V
Overview
Content Tools
{"serverDuration": 100, "requestCorrelationId": "e233660c11b7128e"}