Found in 4 comments on Hacker News
hermitdev · 2017-03-22 · Original thread
I've not read through the CERT C++ rules (yet), but I highly recommend reading "Secure Coding in C and C++" [0]. Expectedly, there's a good discussion on bounds checking. But, nearly half the book is dedicated to integer underflow/overflow (and signed/unsigned) issues (which most devs either ignore or are oblivious to). It's not a panacea, but if you're write C/C++ without thinking about security and how things can go wrong, it can be a real eye opener.


pjmlp · 2021-04-19 · Original thread
Start with the 2nd edition of "Tour of C++" from Bjarne Stroustrup, then "Programming: Principles and Practice Using C++" and finally 4th edition of "The C++ Programming Language".

There are others for C++, but this would be a good start.

As for C, "Extreme C" has nice up to day content.

And in both cases, "Secure Coding in C and C++",

Fresh book recommendations delivered straight to your inbox every Thursday.