Coverity Prevent - Quality

Coverity provides a full library of checks to detect critical defects and flaws in source code. All of these checks are run on top of our sophisticated interprocedural data flow analysis engine to ensure that 100% of all paths are explored with the highest accuracy.

Coverity detects defects that can cause:

System and process crashes
Memory and resource leaks
Memory, file, data corruptions
Performance degradations
Unpredictable behavior

Some of the specific checks that are performed include:

memory leaks
system resource leaks
null pointer dereferences
dangling stack references
use of freed resources
use of uninitialized data, logic errors
flawed branch logic
out of bounds array access

buffer underflow
stack smashing
stack overflow
stack string overruns
bad negative integer casts
incorrect allocation sizes
non-null terminated strings
API usage errors

Samples of C/C++ Defects Found

Concurrency

Deadlocks
Blocking call misuse

Performance Degradation

Memory leaks
File handle leaks
Custom memory and network resource leaks
Database connection leaks

Crash Causing Defects

Null pointer deference
Use after free
Double free
Improper memory allocations
Mismatched array new/delete

Incorrect Program Behavior

Dead code caused by logical errors
Uninitialized variables
Invalid use of negative variables

Improper Use of APIs

STL usage errors
API error handling

C/C++ Security Vulnerabilities

Secure Coding Defects

Buffer overflows
Integer overflows
Missing/insufficient validation of malicious data and string input
Format string vulnerabilities
SQL injection attacks
Cross-site scripting attacks

Defect Implications

Total system compromise
Denial of service attacks
Privilege escalation
Leaking confidential data
Data loss
Arbitrary code execution

Coverity Mainpage

last updated: 12.02.2008/

© 2004-2008 Coverity Inc.
Prevent and Extend are products and trademarks of Coverity, San Francisco (USA)
all other trademarks of this site are the property of their respective owners.