Using SAST and MISRA Memory Safety Standards to Prevent the Next CrowdStrike Debacle
The Problem A common coding error in a CrowdStrike Falcon update caused critical system outages around the world starting on Friday July 19th 2024. The culprit? A Null Pointer Dereference (also known as CWE-476) in a piece of C++ program that ran with privileged access to the Windows operating system. X posters offered all kinds of hypothesis on the…
