Submission + - Securing the C Language through the Standard
n0-0p writes: One of the members of the C standard committee has a proposal for updating the C language to prevent integer overflows and related vulnerabilities. Most developers (and even security professionals) either misunderstand or are simply unaware of these types of vulnerabilities. They're extremely hard to find through manual and automated code reviews, and they've quickly become one of the top 3 flaws found in OS software. For some background, the site has links to PDF sample chapters from two different books covering the subject.