CERT Rule | Related Guidelines |
|---|---|
| CTR50-CPP | CWE 119, Failure to Constrain Operations within the Bounds of a Memory Buffer CWE 129, Improper Validation of Array Index |
| CTR52-CPP | CWE 119, Failure to Constrain Operations within the Bounds of an Allocated Memory Buffer CWE 805, Buffer Access with Incorrect Length Value |
| CTR54-CPP | CWE-469, Use of Pointer Subtraction to Determine Size |
| CTR55-CPP | CWE 129, Unchecked Array Indexing |
| MEM50-CPP | |
| MEM51-CPP | CWE 590, Free of Memory Not on the Heap CWE 415, Double Free CWE 404, Improper Resource Shutdown or Release CWE 762, Mismatched Memory Management Routines |
| MEM52-CPP | CWE 252, Unchecked Return Value |
| MEM56-CPP | CWE-415, Double Free |
| ERR50-CPP | CWE-754, Improper Check for Unusual or Exceptional Conditions |
| ERR51-CPP | CWE-754, Improper Check for Unusual or Exceptional Conditions |
| ERR56-CPP | CWE-703, Failure to Handle Exceptional Conditions |
| CON50-CPP | CWE-667, Improper Locking |
| CON51-CPP | CWE-667, Improper Locking |
| CON53-CPP | CWE-764, Multiple Locks of a Critical Resource |
| CON56-CPP | CWE-667, Improper Locking |
| MSC50-CPP | CWE-327, Use of a Broken or Risky Cryptographic Algorithm CWE-330, Use of Insufficiently Random Values |
| MSC51-CPP | CWE-327, Use of a Broken or Risky Cryptographic Algorithm |
| FIO21-CPP | CWE-362, Concurrent Execution Using Shared Resource with Improper Synchronization ("Race Condition") CWE-675, Duplicate Operations on Resource |