View-868: Weaknesses Addressed by the SEI CERT C++ Coding Standard (2016 Version)

admin 2022年1月14日11:43:26CWE(弱点枚举)评论15 views2200字阅读7分20秒阅读模式

View-868: Weaknesses Addressed by the SEI CERT C++ Coding Standard (2016 Version)

ID: 868

Type: Graph

Status: Obsolete

Objective

CWE entries in this view (graph) are fully or partially eliminated by following the SEI CERT C++ Coding Standard, as published in 2016.

Audience

Software Developers

By following the CERT C++ Secure Coding Standard, developers will be able to fully or partially prevent the weaknesses that are identified in this view. In addition, developers can use a CWE coverage graph to determine which weaknesses are not directly addressed by the standard, which will help identify and resolve remaining gaps in training, tool acquisition, or other approaches for reducing weaknesses.

Software Customers

If a software developer claims to be following the CERT C++ Secure Coding Standard, then customers can search for the weaknesses in this view in order to formulate independent evidence of that claim.

Educators

Educators can use this view in multiple ways. For example, if there is a focus on teaching weaknesses, the educator could link them to the relevant Secure Coding Standard.

Membership

CWE-ID title
CWE-869 CERT C++ Secure Coding Section 01 - Preprocessor (PRE)
CWE-870 CERT C++ Secure Coding Section 02 - Declarations and Initialization (DCL)
CWE-871 CERT C++ Secure Coding Section 03 - Expressions (EXP)
CWE-872 CERT C++ Secure Coding Section 04 - Integers (INT)
CWE-873 CERT C++ Secure Coding Section 05 - Floating Point Arithmetic (FLP)
CWE-874 CERT C++ Secure Coding Section 06 - Arrays and the STL (ARR)
CWE-875 CERT C++ Secure Coding Section 07 - Characters and Strings (STR)
CWE-876 CERT C++ Secure Coding Section 08 - Memory Management (MEM)
CWE-877 CERT C++ Secure Coding Section 09 - Input Output (FIO)
CWE-878 CERT C++ Secure Coding Section 10 - Environment (ENV)
CWE-879 CERT C++ Secure Coding Section 11 - Signals (SIG)
CWE-880 CERT C++ Secure Coding Section 12 - Exceptions and Error Handling (ERR)
CWE-881 CERT C++ Secure Coding Section 13 - Object Oriented Programming (OOP)
CWE-882 CERT C++ Secure Coding Section 14 - Concurrency (CON)
CWE-883 CERT C++ Secure Coding Section 49 - Miscellaneous (MSC)

Notes

Relationship

The relationships in this view were determined based on specific statements within the rules from the standard. Not all rules have direct relationships to individual weaknesses, although they likely have chaining relationships in specific circumstances.

Maintenance

This view is no longer being actively maintained, since it statically represents the coding rules as they were in 2016.

引用

REF-847 SEI CERT C++ Coding Standard

文章来源于互联网:scap中文网

特别标注: 本站(CN-SEC.COM)所有文章仅供技术研究,若将其信息做其他用途,由用户承担全部法律及连带责任,本站不承担任何法律及连带责任,请遵守中华人民共和国安全法.
  • 我的微信
  • 微信扫一扫
  • weinxin
  • 我的微信公众号
  • 微信扫一扫
  • weinxin
admin
  • 本文由 发表于 2022年1月14日11:43:26
  • 转载请保留本文链接(CN-SEC中文网:感谢原作者辛苦付出):
                  View-868: Weaknesses Addressed by the SEI CERT C++ Coding Standard (2016 Version) http://cn-sec.com/archives/612527.html

发表评论

匿名网友 填写信息

:?: :razz: :sad: :evil: :!: :smile: :oops: :grin: :eek: :shock: :???: :cool: :lol: :mad: :twisted: :roll: :wink: :idea: :arrow: :neutral: :cry: :mrgreen: