Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Brochure

Variadic Functions: How They Contribute to Security Vulnerabilities and How to Fix Them

  • November 2005
  • By Robert C. Seacord
  • In this LinuxWorld article, Robert Seacord discusses C/C++ language variadic functions and their use.
  • Secure Coding
  • Publisher: Software Engineering Institute
  • Abstract

    C/C++ language variadic functions are functions that accept a variable number of arguments. Variadic functions are implemented using either the ANSI C stdarg approach or, historically, the UNIX System V vararg approach. Both approaches require that the contract between the developer and user of the variadic function not be violated by the user. 

  • Download