Page Information

Title:	ARR38-C. Guarantee that library functions do not form invalid pointers
Author:	David Svoboda	Nov 01, 2011
Last Changed by:	Jill Britton	Apr 20, 2023
Tiny Link: (useful for email)	https://wiki.sei.cmu.edu/confluence/x/W9UxBQ
Export As:	Word · PDF

SEI CERT C Coding Standard (2)     Page: CC. Undefined Behavior     Page: STR31-C. Guarantee that storage for strings has sufficient space for character data and the null terminator

Android (1)     Page: Unknown Applicability (C Rules/Recomendations)

SEI CERT C++ Coding Standard (1)     Page: CTR52-CPP. Guarantee that library functions do not overflow

Parent Page     Page: Rule 06. Arrays (ARR)

• ptc
• android-unknown
• rule
• arr
• in-cpp

Time	Editor
Apr 20, 2023 05:19	Jill Britton	View Changes
Jan 19, 2023 09:05	Jill Britton	View Changes
Jan 18, 2023 11:43	Jill Britton	View Changes
Jan 10, 2023 08:34	David Svoboda	View Changes
Jun 30, 2022 10:37	Jill Britton

External Links (30)
    https://www.securecoding.cert.org/confluence/display/seccod…
    https://www.securecoding.cert.org/confluence/display/seccod…
    https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
    https://wiki.sei.cmu.edu/confluence/display/c/AA.+Bibliogra…
    https://cwe.mitre.org/data/definitions/129.html
    https://wiki.sei.cmu.edu/confluence/display/c/SEI+CERT+C+Co…
    cwe.mitre.org/data/definitions/119.html
    https://tools.ietf.org/html/rfc6520
    https://bugs.chromium.org/p/project-zero/issues/detail?id=8…
    https://cwe.mitre.org/data/index.html
    https://wiki.sei.cmu.edu/confluence/display/c/INT30-C.+Ensu…
    https://wiki.sei.cmu.edu/confluence/display/c/How+this+Codi…
    blog.existentialize.com/diagnosis-of-the-openssl-heartbleed…
    https://wiki.sei.cmu.edu/confluence/display/c/AA.+Bibliogra…
    https://www.kb.cert.org/vulnotes/bymetric?searchview&query=…
    https://www.securecoding.cert.org/confluence/display/seccod…
    https://cwe.mitre.org/data/definitions/125.html
    https://wiki.sei.cmu.edu/confluence/display/c/Polyspace+Bug…
    https://wiki.sei.cmu.edu/confluence/display/c/API00-C.+Func…
    https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
    https://www.mathworks.com/help/bugfinder/ref/certcrulearr38…
    https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
    https://wiki.sei.cmu.edu/confluence/display/c/ARR01-C.+Do+n…
    cwe.mitre.org/data/definitions/805.html
    https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
    cwe.mitre.org/data/definitions/121.html
    https://cwe.mitre.org/data/definitions/123.html
    https://cwe.mitre.org/data/archive.html
    https://www.securecoding.cert.org/confluence/display/seccod…
    www.kb.cert.org/vuls/id/720951

SEI CERT C Coding Standard (25)     Home page: SEI CERT C Coding Standard     Page: INT30-C. Ensure that unsigned integer operations do not wrap     Page: TrustInSoft Analyzer     Page: CC. Undefined Behavior     Page: INT04-C. Enforce limits on integer values originating from tainted sources     Page: Coverity_V     Page: Coverity     Page: Splint_V     Page: TrustInSoft Analyzer_V     Page: BB. Definitions     Page: void CERT C Rules implemented in the LDRA tool suite     Page: LDRA_V     Page: AA. Bibliography     Page: PC-lint Plus_V     Page: Helix QAC_V     Page: Polyspace Bug Finder_V     Page: Astrée_V     Page: Klocwork_V     Page: PC-lint Plus     Page: Astrée     Page: CodeSonar     Page: CodeSonar_V     Page: Parasoft     Page: Helix QAC     Page: Parasoft_V