Revision History

  • Add some C-library/syscall specific advice

    1.6

    Mon Oct 26 2020, Huzaifa Sidhpuwala (huzaifas@redhat.com)

  • Add section on misuse of Macros - wmealing@redhat.com

  • Add information about removing sensitive information from memory - huzaifas@redhat.com

  • Update cryptographic recommendations for Python - ntait@redhat.com

  • C-Allocators: various sections - dueno@redhat.com

    1.5

    Fri Dec 1 2017, Mirek Jahoda (mjahoda@redhat.com)

  • First release in AsciiDoc

  • Many updates in the crypto-related sections

  • Grammar and typography fixes

    1.3-1

    Mon Oct 13 2014, Florian Weimer (fweimer@redhat.com)

  • Go: Mention default value handling in deserialization

  • Shell: New chapter

    1.2-1

    Wed Jul 16 2014, Florian Weimer (fweimer@redhat.com)

  • C: Corrected the strncat example

  • C: Mention mixed signed/unsigned comparisons

  • C: Unsigned overflow checking example

  • C++: operator new[] has been fixed in GCC

  • C++: Additional material on std::string, iterators

  • OpenSSL: Mention openssl genrsa entropy issue

  • Packaging: X.509 key generation

  • Go, Vala: Add short chapters

  • Serialization: Notes on fragmentation and reassembly

    1.1-1

    Tue Aug 27 2013, Eric Christensen (sparks@redhat.com)

  • Add a chapter which covers some Java topics.

  • Deserialization: Warn about Java’s java.beans.XMLDecoder.

  • C: Correct the advice on array allocation (bug 995595).

  • C: Add material on global variables.

    1.0-1

    Thu May 09 2013, Eric Christensen (sparks@redhat.com)

  • Added more C and C++ examples.

  • TLS Client NSS: Rely on NSS 3.14 cipher suite defaults.

    0-1

    Thu Mar 7 2013, Eric Christensen (sparks@redhat.com)

  • Initial publication.