Back

ISO/IEC TR 24772-3:2020

Programming languages -- Guidance to avoiding vulnerabilities in programming languages -- Part 3: C

General information

Valid from 20.05.2020
ICS Groups
35.060 Languages used in information technology
Directives or regulations
None

Standard history

Status
Date
Type
Name
20.05.2020
Main
ISO/IEC TR 24772-3:2020
04.03.2013
Main
ISO/IEC TR 24772:2013
This document specifies software programming language vulnerabilities to be avoided in the development of systems where assured behaviour is required for security, safety, mission-critical and business-critical software. In general, this guidance is applicable to the software developed, reviewed, or maintained for any application.
This document describes the way that the vulnerabilities listed in ISO/IEC TR 24772-1 are manifested or avoided in the C language.

Required fields are indicated with *

*
*
*
PDF
241.44 € incl tax
Paper
241.44 € incl tax
Standard monitoring
English (PDF 1 MB)

Related products

Main

ISO/IEC 9899:2018

Information technology -- Programming languages -- C
Withdrawn from 31.10.2024
Main

ISO/IEC TR 23272:2011

Information technology -- Common Language Infrastructure (CLI) -- Information Derived from Partition IV XML File
Newest version Valid from 06.12.2011
Main

EVS-ISO/IEC 2382-15:2001

Information technology - Vocabulary - Part 15: Programming languages
Newest version Valid from 01.07.2001
Main

ISO/IEC TS 17961:2013

Information technology -- Programming languages, their environments and system software interfaces -- C secure coding rules
Newest version Valid from 15.11.2013

Customers who bought this item also bought

Main

IEC TR 61508-3-3:2025

Functional safety of electrical/electronic/programmable electronic safety-related systems - Part 3-3: Object-oriented software in safety-related systems
Newest version Valid from 16.07.2025
Main

ISO/IEC 23643:2020

Software and systems engineering -- Capabilities of software safety and security verification tools
Newest version Valid from 12.06.2020

Standards designation

EVSEstonian standard
ENEuropean standard (published by an CEN or CENELEC)
EN ISOInternational standard adopted as an European standard
ISOInternational Organization for Standardization’s standard
IECInternational Electrotechnical Commission’s standard
HDCENELEC’s harmonisation document
EVS-ENEuropean standard implemented in Estonia
EVS-EN ISOInternational standard adopted in Europe and implemented in Estonia
EVS-EN ISO/IECInternational standard/International electrotechnical standard adopted in Europe and implemented in Estonia
EVS-IECInternational electrotechnical standard implemented in Estonia
EVS-ISO International standard implemented in Estonia
 
A, AMDamedment
+Aa full standard plus the amendment
/Aonly amendment
COR, ACcorrigendum
+CORa full standard plus the corrigendum
NAnational annex
+NAa full standard plus the national annex
/NAonly national annex
TStechnical specification
TRtechnical report
CWAagreement, developed by a CEN or CENELEC
prEVS-EN (etc)draft standard
 
etthe standard is in Estonian only
enthe standard is in English only
et-enthe standard is in Parallel text Estonian-English