CWE-244 – Improper Clearing of Heap Memory Before Release (‘Heap Inspection’)
Description Using realloc() to resize buffers that store sensitive information can leave the sensitive information exposed to attack, because it is not removed from memory....
