GitHub
CERT Secure Coding

Security Reviewer - Static Reviewer

This page was automatically generated and should not be edited.

The information on this page was provided by outside contributors and has not been verified by SEI CERT.

The table below can be re-ordered, by clicking column headers.

Tool Version: 6.02

CheckerGuideline
C01CTR52-CPP. Guarantee that library functions do not overflow
C04CTR52-CPP. Guarantee that library functions do not overflow
C17FIO50-CPP. Do not alternately input and output from a file stream without an intervening positioning call
C24STR52-CPP. Use valid references, pointers, and iterators to reference elements of a basic_string
C35ERR51-CPP. Handle all exceptions
C53EXP50-CPP. Do not depend on the order of evaluation for side effects
C54EXP53-CPP. Do not read uninitialized memory
C55EXP53-CPP. Do not read uninitialized memory
C56EXP53-CPP. Do not read uninitialized memory
C57EXP53-CPP. Do not read uninitialized memory
C58EXP53-CPP. Do not read uninitialized memory
C59EXP53-CPP. Do not read uninitialized memory
C60EXP53-CPP. Do not read uninitialized memory
C61EXP53-CPP. Do not read uninitialized memory
C62EXP53-CPP. Do not read uninitialized memory
C63EXP53-CPP. Do not read uninitialized memory
C80FIO51-CPP. Close files when they are no longer needed
CPP_12MEM50-CPP. Do not access freed memory
CPP_14MEM50-CPP. Do not access freed memory
CPP_15MEM50-CPP. Do not access freed memory
CPP_28MEM53-CPP. Explicitly construct and destruct objects when manually managing object lifetime
CPP_29MEM53-CPP. Explicitly construct and destruct objects when manually managing object lifetime
RTOS_07MSC50-CPP. Do not use std::rand() for generating pseudorandom numbers
RTOS_08MSC51-CPP. Ensure your random number generator is properly seeded
RTOS_09MSC52-CPP. Value-returning functions must return a value from all exit paths
RTOS_10MSC52-CPP. Value-returning functions must return a value from all exit paths
RTOS_11MSC52-CPP. Value-returning functions must return a value from all exit paths
RTOS_12MSC52-CPP. Value-returning functions must return a value from all exit paths
RTOS_33STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator
RTOS_34STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator
shadowVariableSTR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator
shiftTooManyBitsSTR51-CPP. Do not attempt to create a std::string from a null pointer
UNSAFE_03STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator
UNSAFE_04STR50-CPP. Guarantee that storage for strings has sufficient space for character data and the null terminator
UNSAFE_06OOP52-CPP. Do not delete a polymorphic object without a virtual destructor
UNSAFE_07OOP50-CPP. Do not invoke virtual functions from constructors or destructors
UNSAFE_08CON53-CPP. Avoid deadlock by locking in a predefined order
UNSAFE_09DCL50-CPP. Do not define a C-style variadic function
va_end_missingERR59-CPP. Do not throw an exception across execution boundaries
va_start_subsequentCallsMEM56-CPP. Do not store an already-owned pointer value in an unrelated smart pointer
wcsdupCalledMEM51-CPP. Properly deallocate dynamically allocated resources