Products
In-IDE
IDE extension that lets you fix coding issues before they exist!
Discover SonarQube for IDE
SaaS
Setup is effortless and analysis is automatic for most languages
Discover SonarQube Cloud
Self-Hosted
Fast, accurate analysis; enterprise scalability
Discover SonarQube Server

C static code analysis

Unique rules to find Bugs, Vulnerabilities, Security Hotspots, and Code Smells in your C code

POSIX functions should not be called with arguments that trigger buffer overflows

consistency - conventional

reliability

security

Vulnerability

Some POSIX functions take one argument that is a buffer and another one that represents the size of the buffer. It is up to the developer to make sure the two arguments do match and that the size argument does not exceed the buffer’s size.

Why is this an issue?

How can I fix it?

More Info

When the size argument exceeds the actual size of the buffer, the memory management functions will either read or write data past the buffer memory boundary into adjacent memory. Because the memory might be uninitialized or contain other pieces of data, the behavior of the affected function can not be predicted and will likely trigger bugs.

What is the potential impact?

Buffer boundaries violations can lead to serious security issues.

Information disclosure

In some scenarios, insecure functions can lead to information disclosure. For instance, if an attacker can cause a buffer overread, they might be able to disclose data in memory that they’re not supposed to have access to. This could potentially allow them to access sensitive information, such as passwords or encryption keys. An example of a buffer overread is provided with the Heartbleed vulnerability. ==== Code execution

In some cases, an attacker can craft input in a way that allows them to gain unauthorized access to your system. For example, they might be able to overwrite a function’s return address in memory, causing your program to execute code of the attacker’s choosing. This could potentially give the attacker full control over your system.

Denial of service

If an attacker can trigger a buffer overflow by providing oversized input, it can cause the program to crash. If the attacker repeats this process, it can continually disrupt the service, denying access to other users. This can be particularly damaging for services that require high availability, such as online platforms or databases.

In some cases, the input might cause the program to enter an infinite loop or consume excessive memory, slowing down the system or even causing it to become unresponsive. This type of attack is known as a resource exhaustion DoS attack.

Exceptions

Functions related to sockets using the type socklen_t are not checked. This is because these functions are using a C-style polymorphic pattern using union. It relies on a mismatch between allocated memory and sizes of structures and it creates false positives.

Available In:

Catch issues on the fly,
in your IDE

Detect issues in your GitHub, Azure DevOps Services, Bitbucket Cloud, GitLab repositories

Analyze code in your
on-premise CI

Developer Edition
Available Since
9.1

In-IDE

SaaS

Self-Hosted