SEI CERT C Coding Standard

Space shortcuts

Page tree

Title: INT04-C. Enforce limits on integer values originating from tainted sources  
Author: Robert C. Seacord Jul 20, 2006
Last Changed by: Jill Britton Jan 18, 2023
Tiny Link: (useful for email) https://wiki.sei.cmu.edu/confluence/x/ddYxBQ
Export As: Word · PDF  
Incoming Links
SEI CERT C Coding Standard (2)
    Page: ARR38-C. Guarantee that library functions do not form invalid pointers
    Page: MEM05-C. Avoid large stack allocations
Hierarchy
Parent Page
    Page: Rec. 04. Integers (INT)
Labels
Global Labels (4)
Recent Changes
Time Editor  
Jan 18, 2023 11:28 Jill Britton View Changes
Apr 27, 2022 08:40 Jill Britton View Changes
Apr 23, 2021 12:25 Jill Britton View Changes
Apr 21, 2021 05:17 Jill Britton View Changes
Apr 20, 2021 06:35 Jill Britton  
Outgoing Links
External Links (12)
    https://www.securecoding.cert.org/confluence/display/seccod…
    https://www.mathworks.com/help/bugfinder/ref/certcrec.int02…
    https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
    https://www.kb.cert.org/vulnotes/bymetric?searchview&query=…
    https://www.securecoding.cert.org/confluence/display/seccod…
    https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
    BB. Definitions#denial-of-service attack
    BB. Definitions#unsigned integer wrapping
    https://wiki.sei.cmu.edu/confluence/pages/viewpage.action?p…
    www.kb.cert.org/vuls/id/720951
    https://tools.ietf.org/html/rfc6520
    BB.%20Definitions#mutilated%20value
SEI CERT C Coding Standard (18)     Home page: SEI CERT C Coding Standard
    Page: Klocwork
    Page: Klocwork_V
    Page: INT30-C. Ensure that unsigned integer operations do not wrap
    Page: MEM04-C. Beware of zero-length allocations
    Page: Astrée
    Page: Parasoft
    Page: CodeSonar_V
    Page: Helix QAC
    Page: BB. Definitions
    Page: Helix QAC_V
    Page: AA. Bibliography
    Page: CodeSonar
    Page: Polyspace Bug Finder
    Page: Parasoft_V
    Page: Polyspace Bug Finder_V
    Page: INT01-C. Use rsize_t or size_t for all integer values representing the size of an object
    Page: Astrée_V
SEI CERT C++ Coding Standard (2)     Home page: SEI CERT C++ Coding Standard
    Page: VOID INT04-CPP. Enforce limits on integer values originating from untrusted sources