 | |
|
Overview The accidental addition of a data-structure
sentinel can cause serious programming logic problems.
Consequences Availability:...
Overview In many languages the compare statement is very
close in appearance to the assignment statement and are
often confused. Consequences ...
Overview In many languages, the compare statement is
very close in appearance to the assignment statement;
they are often confused. Consequences...
Overview The accidental deletion of a data structure
sentinel can cause serious programing logic problems.
Consequences Availability:...
Overview Associative lists should always have unique
keys, since having non-unique keys can often be mistaken
for an error. Consequences ...
Overview If one changes security privileges, one should
ensure that the change was successful. Consequences
Authorization: If privileges...
Overview If memory is allocated and not freed the
process could continue to consume more and more memory
and eventually crash. Consequences ...
Overview Non-final public fields should be avoided, if
possible, as the code is easily tamperable. Consequences
Integrity: The object...
Overview Causing a change in flow, due to an exception,
can often leave the code in a bad state. Consequences
Implementation: The code...
Overview Sometimes an error is detected, and bad or no
action is taken. Consequences Undefined. Exposure period
Implementation: This is...
Overview Tempfile creation should be done in a safe way.
To be safe, the temp file function should open up the
temp file with appropriate access...
Overview In some languages, forgetting to explicitly
delimit a block can result in a logic error that can, in
turn, have security...
Overview If a function's return value is not properly
checked, the function could have failed without proper
acknowledgement. Consequenc es ...
Overview If too few arguments are sent to a function,
the function will still pop the expected number of
arguments from the stack. Potentially, a...
Overview Omitting a break statement so that one may fall
through is often indistinguishable from an error, and
therefore should not be...
Overview Sending non-cloned mutable data as an argument
may result in that data being altered or deleted by the
called function, thereby putting...
Overview Truncation errors occur when a primitive is
cast to a primitive of a smaller size and data is lost
in the conversion. Consequences ...
Abstract The behavior of this function is undefined
unless its control parameter is set to a specific value.
Description The Linux Standard...
Overview Using the value of an unitialized variable is
not safe. Consequences Integrity: Initial variables
usually contain junk, which...
Overview In C and C++, one may often accidentally refer
to the wrong memory due to the semantics of when math
operations are implicitly...
Overview Running sizeof() on a malloced pointer type
will always return the wordsize/8. Consequences
Authorization: This error can often...
Overview This is a common error given when an operator
is used which does not make sense for the context
appears. Consequences ...
|
