The product attempts to return a memory resource to the system, but it calls a release function that is not compatible with the function that was originally used to allocate that resource.
Extended Description
This weakness can be generally described as mismatching memory management routines, such as:
The memory was allocated explicitly using one set of memory management functions, and deallocated using a different set. For example, memory might be allocated with malloc() in C++ instead of the new operator, and then deallocated with the delete operator.
When the memory management functions are mismatched, the consequences may be as severe as code execution, memory corruption, or program crash. Consequences and ease of exploit will vary depending on the implementation of the routines and the object being managed.
Relevant to the view "Research Concepts" (CWE-1000)
自然
Type
ID
姓名
Childof
根据- a weakness that is still mostly independent of a resource or technology, but with sufficient details to provide specific methods for detection and prevention. Base level weaknesses typically describe issues in terms of 2 or 3 of the following dimensions: behavior, property, technology, language, and resource.
barobj *ptr = new barobj() /* do some work with ptr here */
...
免费(ptr);
}
Instead, the programmer should have either created the object with one of the malloc family functions, or else deleted the object with the delete operator.
(good code)
Example Language:C ++
void foo(){
barobj *ptr = new barobj() /* do some work with ptr here */
...
delete ptr;
}
Example 2
In this example, the program does not use matching functions such as malloc/free, new/delete, and new[]/delete[] to allocate/deallocate the resource.
(不良代码)
Example Language:C ++
A类{
void foo();
}; void a :: foo(){
int *ptr; ptr =(int*)malloc(sizeof(int)); delete ptr;
}
Example 3
在此示例中,该程序在非HEAP内存上调用delete []函数。
(不良代码)
Example Language:C ++
class A{
void foo(bool);
}; void A::foo(bool heap) {
int localArray[2] = {
11,22
}; int *p = localArray; 如果(堆){
p = new int [2];
} 删除[] p;
}
Potential Mitigations
Phase: Implementation
Only call matching memory management functions. Do not mix and match routines. For example, when you allocate a buffer with malloc(), dispose of the original pointer with free().
Phase: Implementation
Strategy: Libraries or Frameworks
Choose a language or tool that provides automatic memory management, or makes manual memory management less error-prone.
To help correctly and consistently manage memory when programming in C++, consider using a smart pointer class such as std::auto_ptr (defined by ISO/IEC ISO/IEC 14882:2003), std::shared_ptr and std::unique_ptr (specified by an upcoming revision of the C++ standard, informally referred to as C++ 1x), or equivalent solutions such as Boost.
阶段:建筑和设计
Strategy: Libraries or Frameworks
使用审查的库或框架,该图书馆或框架不允许这种弱点发生或提供使这种弱点更容易避免的结构。
例如,Linux中的GLIBC提供了防止无效指针的保护。
阶段:建筑和设计
使用一种为内存分配和交易提供抽象的语言。
Phase: Testing
使用动态检测内存管理问题的工具,例如Valgrind。
影响资源
记忆
Memberships
This MemberOf Relationships table shows additional CWE Categories and Views that reference this weakness as a member. This information is often useful in understanding where a weakness fits within the context of external information sources.
自然
Type
ID
姓名
MemberOf
Category - a CWE entry that contains a set of other entries that share a common characteristic.
Description
该表显示了与该弱点相关的弱点和高级类别。这些关系定义为childof,parentof,ementof,并深入了解可能存在于较高和较低抽象水平的类似项目。此外,定义了诸如Peerof和Canalsobe之类的关系,以显示用户可能想要探索的类似弱点。
与“ CISQ数据保护措施”(CWE-1340)有关
