The size_t type is the unsigned integer type of the result of the sizeof operator. Variables of type size_t are guaranteed to be of sufficient precision to represent the size of an object. The limit of size_t is specified by the SIZE_MAX macro.
Any variable that is used to represent the size of an object including integer values used as sizes, indices, loop counters, and lengths should be declared as size_t.
The improper calculation or manipulation of an object's size can result in exploitable vulnerabilities.
| Recommendation | Severity | Likelihood | Remediation Cost | Priority | Level | 
|---|---|---|---|---|---|
| INT01-A | 2 (medium) | 2 (probable) | 2 (medium) | P8 | L2 | 
Search for vulnerabilities resulting from the violation of this rule on the CERT website.
| \[[ISO/IEC 9899-1999|AA. C References#ISO/IEC 9899-1999]\] Section 7.17, "Common definitions <stddef.h>" \[[ISO/IEC 9899-1999|AA. C References#ISO/IEC 9899-1999]\] Section 7.20.3, "Memory management functions" | 
INT00-A. Understand the data model used by your implementation(s) 04. Integers (INT) INT02-A. Understand integer conversion rules