Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 33 Next »

Generated Content

This page is automatically generated from the "Automated Detection" sections in the individual guidelines. Do not modify this page directly.

Version number:
9.1

Checker

Guideline

MSC13-C. Detect and remove unused values
ABRARR38-C. Guarantee that library functions do not form invalid pointers
ABV.ITERATORARR30-C. Do not form or use out-of-bounds pointers or array subscripts
ASSIGCOND.CALLEXP45-C. Do not perform assignments in selection statements
ASSIGCOND.GENEXP45-C. Do not perform assignments in selection statements
EFFECTEXP16-C. Do not compare function pointers to constant values
EFFECTMSC12-C. Detect and remove code that has no effect
FNH.MIGHTMEM34-C. Only free memory allocated dynamically
FNH.MUSTMEM34-C. Only free memory allocated dynamically
FUM.GEN.MIGHTMEM34-C. Only free memory allocated dynamically
FUM.GEN.MUSTMEM34-C. Only free memory allocated dynamically
IF_DEF_IN_HEADER_DECLDCL36-C. Do not declare an identifier with conflicting linkage classifications
IF_DUPL_HEADERPRE08-C. Guarantee that header file names are unique
IF_MISS_DECLDCL31-C. Declare identifiers before using them
IF_MULTI_DECLDCL01-C. Do not reuse variable names in subscopes
IF_MULTI_DECLDCL36-C. Do not declare an identifier with conflicting linkage classifications
IF_MULTI_DEFDCL01-C. Do not reuse variable names in subscopes
IF_MULTI_KINDDCL01-C. Do not reuse variable names in subscopes
INCORRECT.ALLOC_SIZEMEM35-C. Allocate sufficient memory for an object
LA_UNUSEDMSC01-C. Strive for logical completeness
LOCRET.*DCL30-C. Declare objects with appropriate storage durations
LV_UNUSED.GENMSC07-C. Detect and remove dead code
MLKMEM31-C. Free dynamically allocated memory when no longer needed
NNTSSTR03-C. Do not inadvertently truncate a string
NNTSSTR32-C. Do not pass a non-null-terminated character sequence to a library function that expects a string
NNTS.TAINTEDSTR02-C. Sanitize data passed to complex subsystems
NNTS.TAINTEDSTR31-C. Guarantee that storage for strings has sufficient space for character data and the null terminator
NPD.* *RNPD.*EXP34-C. Do not dereference null pointers
PRECISION.LOSSINT31-C. Ensure that integer conversions do not result in lost or misinterpreted data
RETVOID.IMPLICITDCL31-C. Declare identifiers before using them
RH.LEAKFIO22-C. Close files before spawning processes
RH.LEAKFIO42-C. Close files when they are no longer needed
RH.LEAKFIO46-C. Do not access a closed file
SEMICOLEXP15-C. Do not place a semicolon on the same line as an if, for, or while statement
SV.CODE_INJECTION.SHELL_EXECENV33-C. Do not call system()
SV.CUDS.MISSING_ABSOLUTE_PATHFIO02-C. Canonicalize path names originating from tainted sources
SV.FIU.PERMISSIONSPOS36-C. Observe correct revocation order while relinquishing privileges
SV.FIU.PERMISSIONSPOS37-C. Ensure that privilege relinquishment is successful
SV.FMTSTR.GENERICFIO30-C. Exclude user input from format strings
SV.FMT_STRFIO47-C. Use valid format strings
SV.RVT.RETVAL_NOTTESTEDEXP12-C. Do not ignore values returned by functions
SV.STRBO.GETSSTR31-C. Guarantee that storage for strings has sufficient space for character data and the null terminator
SV.TAINTED.FMTSTRFIO30-C. Exclude user input from format strings
SV.TAINTED.INJECTIONSTR02-C. Sanitize data passed to complex subsystems
SV.TAINTED.INJECTIONENV33-C. Do not call system()
SV.TAINTED.LOOP_BOUNDARR30-C. Do not form or use out-of-bounds pointers or array subscripts
SV.TOCTOU.FILE_ACCESSFIO01-C. Be careful using functions that use file names for identification
SV.USAGERULES.PERMISSIONSPOS36-C. Observe correct revocation order while relinquishing privileges
SV.USAGERULES.PERMISSIONSPOS37-C. Ensure that privilege relinquishment is successful
SV.USAGERULES.PROCESS_VARIANTSPOS33-C. Do not use vfork()
SV.USAGERULES.UNBOUNDED_STRING_COPYSTR31-C. Guarantee that storage for strings has sufficient space for character data and the null terminator
SV.USAGERULES.UNINTENDED_COPYMEM03-C. Clear sensitive information stored in reusable resources
UFM.DEREF.MIGHTMEM30-C. Do not access freed memory
UFM.DEREF.MUSTMEM30-C. Do not access freed memory
UFM.FFMMEM31-C. Free dynamically allocated memory when no longer needed
UFM.RETURN.MIGHTMEM30-C. Do not access freed memory
UFM.RETURN.MUSTMEM30-C. Do not access freed memory
UFM.USE.MIGHTMEM30-C. Do not access freed memory
UFM.USE.MUSTMEM30-C. Do not access freed memory
UNINIT.HEAP.MIGHTEXP33-C. Do not read uninitialized memory
UNINIT.HEAP.MUSTEXP33-C. Do not read uninitialized memory
UNINIT.STACK.ARRAY.MIGHTEXP33-C. Do not read uninitialized memory
UNINIT.STACK.ARRAY.MUSTEXP33-C. Do not read uninitialized memory
UNINIT.STACK.ARRAY.PARTIAL.MUSTEXP33-C. Do not read uninitialized memory
UNINIT.STACK.MUSTEXP33-C. Do not read uninitialized memory
UNREACH.*MSC07-C. Detect and remove dead code
VA_UNUSED.*MSC07-C. Detect and remove dead code

>

  • No labels