Page Information

Title:	IDS08-J. Sanitize untrusted data included in a regular expression
Author:	Joman Chu	Mar 04, 2010
Last Changed by:	Jon O'Donnell	Aug 06, 2021
Tiny Link: (useful for email)	https://wiki.sei.cmu.edu/confluence/x/fzdGBQ
Export As:	Word · PDF

SEI CERT Oracle Coding Standard for Java (1)     Page: IDS07-J. Sanitize untrusted data passed to the Runtime.exec() method

Parent Page     Page: Rule 00. Input Validation and Data Sanitization (IDS)

• draft
• ids
• android-applicable
• android
• dos
• rule

Time	Editor
Aug 06, 2021 08:59	Jon O'Donnell	View Changes
Dec 19, 2018 10:53	Alexandre GIGLEUX	View Changes
Dec 19, 2018 10:48	Alexandre GIGLEUX	View Changes
Dec 05, 2018 07:59	Alexandre GIGLEUX	View Changes
Nov 21, 2018 14:10	Derek Leung

External Links (8)
    cwe.mitre.org/
    https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
    https://www.safaribooksonline.com/library/view/secure-codin…
    https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
    https://rules.sonarsource.com/java/RSPEC-2631
    java.sun.com/docs/books/tutorial/essential/regex/index.html
    cwe.mitre.org/data/definitions/625.html
    cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1949

SEI CERT Oracle Coding Standard for Java (9)     Page: Rule BB. Glossary     Page: The Checker Framework_V     Page: Rule AA. References     Page: IDS09-J. Specify an appropriate locale when comparing locale-dependent data     Page: CodeSonar_V     Page: SonarQube     Home page: SEI CERT Oracle Coding Standard for Java     Page: The Checker Framework     Page: SonarQube_V

SEI CERT C Coding Standard (1)     Page: CodeSonar