Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/amanda-3.5.1/amandad-src/amandad.c
Examining data/amanda-3.5.1/amandad-src/amandad.h
Examining data/amanda-3.5.1/amandad-src/amandad_util.c
Examining data/amanda-3.5.1/amar-src/amar-test.c
Examining data/amanda-3.5.1/amar-src/amar.c
Examining data/amanda-3.5.1/amar-src/amar.h
Examining data/amanda-3.5.1/amar-src/amarchiver.c
Examining data/amanda-3.5.1/application-src/ambsdtar.c
Examining data/amanda-3.5.1/application-src/amgtar.c
Examining data/amanda-3.5.1/application-src/amstar.c
Examining data/amanda-3.5.1/application-src/teecount.c
Examining data/amanda-3.5.1/client-src/amandates.h
Examining data/amanda-3.5.1/client-src/calcsize.c
Examining data/amanda-3.5.1/client-src/client_util.c
Examining data/amanda-3.5.1/client-src/client_util.h
Examining data/amanda-3.5.1/client-src/findpass.c
Examining data/amanda-3.5.1/client-src/findpass.h
Examining data/amanda-3.5.1/client-src/getfsent.c
Examining data/amanda-3.5.1/client-src/getfsent.h
Examining data/amanda-3.5.1/client-src/killpgrp.c
Examining data/amanda-3.5.1/client-src/noop.c
Examining data/amanda-3.5.1/client-src/rundump.c
Examining data/amanda-3.5.1/client-src/runtar.c
Examining data/amanda-3.5.1/client-src/sendbackup-dump.c
Examining data/amanda-3.5.1/client-src/sendbackup-gnutar.c
Examining data/amanda-3.5.1/client-src/sendbackup.c
Examining data/amanda-3.5.1/client-src/sendbackup.h
Examining data/amanda-3.5.1/client-src/senddiscover.c
Examining data/amanda-3.5.1/client-src/sendsize.c
Examining data/amanda-3.5.1/client-src/unctime.c
Examining data/amanda-3.5.1/client-src/amandates.c
Examining data/amanda-3.5.1/client-src/selfcheck.c
Examining data/amanda-3.5.1/common-src/alloc.c
Examining data/amanda-3.5.1/common-src/am_sl.c
Examining data/amanda-3.5.1/common-src/am_sl.h
Examining data/amanda-3.5.1/common-src/amanda.h
Examining data/amanda-3.5.1/common-src/ambind.c
Examining data/amanda-3.5.1/common-src/amcrc32chw.c
Examining data/amanda-3.5.1/common-src/amcrc32chw.h
Examining data/amanda-3.5.1/common-src/amfeatures.c
Examining data/amanda-3.5.1/common-src/amfeatures.h
Examining data/amanda-3.5.1/common-src/amflock-flock.c
Examining data/amanda-3.5.1/common-src/amflock-lnlock.c
Examining data/amanda-3.5.1/common-src/amflock-lockf.c
Examining data/amanda-3.5.1/common-src/amflock-posix.c
Examining data/amanda-3.5.1/common-src/amflock-test.c
Examining data/amanda-3.5.1/common-src/amflock.c
Examining data/amanda-3.5.1/common-src/amflock.h
Examining data/amanda-3.5.1/common-src/amjson.c
Examining data/amanda-3.5.1/common-src/amjson.h
Examining data/amanda-3.5.1/common-src/ammessage.h
Examining data/amanda-3.5.1/common-src/amsemaphore-test.c
Examining data/amanda-3.5.1/common-src/amsemaphore.c
Examining data/amanda-3.5.1/common-src/amsemaphore.h
Examining data/amanda-3.5.1/common-src/amservice.c
Examining data/amanda-3.5.1/common-src/amutil.c
Examining data/amanda-3.5.1/common-src/amutil.h
Examining data/amanda-3.5.1/common-src/amxml.c
Examining data/amanda-3.5.1/common-src/amxml.h
Examining data/amanda-3.5.1/common-src/backup_support_option.c
Examining data/amanda-3.5.1/common-src/backup_support_option.h
Examining data/amanda-3.5.1/common-src/bsd-security.c
Examining data/amanda-3.5.1/common-src/bsdtcp-security.c
Examining data/amanda-3.5.1/common-src/bsdudp-security.c
Examining data/amanda-3.5.1/common-src/clock.c
Examining data/amanda-3.5.1/common-src/clock.h
Examining data/amanda-3.5.1/common-src/conffile.h
Examining data/amanda-3.5.1/common-src/crc32-test.c
Examining data/amanda-3.5.1/common-src/debug.c
Examining data/amanda-3.5.1/common-src/debug.h
Examining data/amanda-3.5.1/common-src/dgram.c
Examining data/amanda-3.5.1/common-src/dgram.h
Examining data/amanda-3.5.1/common-src/directtcp.h
Examining data/amanda-3.5.1/common-src/event-test.c
Examining data/amanda-3.5.1/common-src/event.c
Examining data/amanda-3.5.1/common-src/event.h
Examining data/amanda-3.5.1/common-src/file.c
Examining data/amanda-3.5.1/common-src/file.h
Examining data/amanda-3.5.1/common-src/fileheader-test.c
Examining data/amanda-3.5.1/common-src/fileheader.c
Examining data/amanda-3.5.1/common-src/fileheader.h
Examining data/amanda-3.5.1/common-src/genversion.c
Examining data/amanda-3.5.1/common-src/glib-util.c
Examining data/amanda-3.5.1/common-src/glib-util.h
Examining data/amanda-3.5.1/common-src/hexencode-test.c
Examining data/amanda-3.5.1/common-src/ipc-binary-test.c
Examining data/amanda-3.5.1/common-src/ipc-binary.c
Examining data/amanda-3.5.1/common-src/ipc-binary.h
Examining data/amanda-3.5.1/common-src/krb5-security.c
Examining data/amanda-3.5.1/common-src/local-security.c
Examining data/amanda-3.5.1/common-src/make_security_file.c
Examining data/amanda-3.5.1/common-src/match-test.c
Examining data/amanda-3.5.1/common-src/match.c
Examining data/amanda-3.5.1/common-src/match.h
Examining data/amanda-3.5.1/common-src/mem-ring.c
Examining data/amanda-3.5.1/common-src/mem-ring.h
Examining data/amanda-3.5.1/common-src/packet.c
Examining data/amanda-3.5.1/common-src/packet.h
Examining data/amanda-3.5.1/common-src/pipespawn.c
Examining data/amanda-3.5.1/common-src/pipespawn.h
Examining data/amanda-3.5.1/common-src/protocol.h
Examining data/amanda-3.5.1/common-src/quoting-test.c
Examining data/amanda-3.5.1/common-src/rsh-security.c
Examining data/amanda-3.5.1/common-src/security-file.c
Examining data/amanda-3.5.1/common-src/security-file.h
Examining data/amanda-3.5.1/common-src/security-util.c
Examining data/amanda-3.5.1/common-src/security-util.h
Examining data/amanda-3.5.1/common-src/security.c
Examining data/amanda-3.5.1/common-src/security.h
Examining data/amanda-3.5.1/common-src/shm-ring.c
Examining data/amanda-3.5.1/common-src/shm-ring.h
Examining data/amanda-3.5.1/common-src/simpleprng.c
Examining data/amanda-3.5.1/common-src/simpleprng.h
Examining data/amanda-3.5.1/common-src/sockaddr-util.c
Examining data/amanda-3.5.1/common-src/sockaddr-util.h
Examining data/amanda-3.5.1/common-src/ssh-security.c
Examining data/amanda-3.5.1/common-src/ssl-security.c
Examining data/amanda-3.5.1/common-src/stream.c
Examining data/amanda-3.5.1/common-src/stream.h
Examining data/amanda-3.5.1/common-src/svn-info.h
Examining data/amanda-3.5.1/common-src/tapelist.c
Examining data/amanda-3.5.1/common-src/tapelist.h
Examining data/amanda-3.5.1/common-src/testutils.c
Examining data/amanda-3.5.1/common-src/timestamp.c
Examining data/amanda-3.5.1/common-src/timestamp.h
Examining data/amanda-3.5.1/common-src/version.h
Examining data/amanda-3.5.1/common-src/ammessage.c
Examining data/amanda-3.5.1/common-src/conffile.c
Examining data/amanda-3.5.1/common-src/protocol.c
Examining data/amanda-3.5.1/common-src/testutils.h
Examining data/amanda-3.5.1/config/snippet/_Noreturn.h
Examining data/amanda-3.5.1/config/snippet/arg-nonnull.h
Examining data/amanda-3.5.1/config/snippet/c++defs.h
Examining data/amanda-3.5.1/config/snippet/warn-on-use.h
Examining data/amanda-3.5.1/contrib/gsc/cfggsc.c
Examining data/amanda-3.5.1/contrib/gsc/defgsc.c
Examining data/amanda-3.5.1/contrib/gsc/gscdd.c
Examining data/amanda-3.5.1/contrib/gsc/gscdds.h
Examining data/amanda-3.5.1/contrib/gsc/tstinq.c
Examining data/amanda-3.5.1/contrib/gsc/ucfggsc.c
Examining data/amanda-3.5.1/device-src/activate-devpay.c
Examining data/amanda-3.5.1/device-src/device.c
Examining data/amanda-3.5.1/device-src/device.h
Examining data/amanda-3.5.1/device-src/directtcp-connection.c
Examining data/amanda-3.5.1/device-src/directtcp-connection.h
Examining data/amanda-3.5.1/device-src/diskflat-device.c
Examining data/amanda-3.5.1/device-src/diskflat-device.h
Examining data/amanda-3.5.1/device-src/dvdrw-device.c
Examining data/amanda-3.5.1/device-src/ndmp-device.c
Examining data/amanda-3.5.1/device-src/null-device.c
Examining data/amanda-3.5.1/device-src/property.c
Examining data/amanda-3.5.1/device-src/property.h
Examining data/amanda-3.5.1/device-src/rait-device.c
Examining data/amanda-3.5.1/device-src/s3-device.c
Examining data/amanda-3.5.1/device-src/s3-device.h
Examining data/amanda-3.5.1/device-src/s3-util.c
Examining data/amanda-3.5.1/device-src/s3-util.h
Examining data/amanda-3.5.1/device-src/s3.c
Examining data/amanda-3.5.1/device-src/s3.h
Examining data/amanda-3.5.1/device-src/tape-device.c
Examining data/amanda-3.5.1/device-src/vfs-device.c
Examining data/amanda-3.5.1/device-src/vfs-device.h
Examining data/amanda-3.5.1/device-src/xfer-dest-device.c
Examining data/amanda-3.5.1/device-src/xfer-dest-taper-cacher.c
Examining data/amanda-3.5.1/device-src/xfer-dest-taper-directtcp.c
Examining data/amanda-3.5.1/device-src/xfer-dest-taper-splitter.c
Examining data/amanda-3.5.1/device-src/xfer-dest-taper.c
Examining data/amanda-3.5.1/device-src/xfer-dest-taper.h
Examining data/amanda-3.5.1/device-src/xfer-device.h
Examining data/amanda-3.5.1/device-src/xfer-source-device.c
Examining data/amanda-3.5.1/device-src/xfer-source-recovery.c
Examining data/amanda-3.5.1/gnulib/alloca.c
Examining data/amanda-3.5.1/gnulib/alloca.in.h
Examining data/amanda-3.5.1/gnulib/arpa_inet.in.h
Examining data/amanda-3.5.1/gnulib/asnprintf.c
Examining data/amanda-3.5.1/gnulib/base64.c
Examining data/amanda-3.5.1/gnulib/base64.h
Examining data/amanda-3.5.1/gnulib/btowc.c
Examining data/amanda-3.5.1/gnulib/c-ctype.c
Examining data/amanda-3.5.1/gnulib/c-ctype.h
Examining data/amanda-3.5.1/gnulib/dosname.h
Examining data/amanda-3.5.1/gnulib/dup2.c
Examining data/amanda-3.5.1/gnulib/errno.in.h
Examining data/amanda-3.5.1/gnulib/euidaccess.c
Examining data/amanda-3.5.1/gnulib/fcntl.in.h
Examining data/amanda-3.5.1/gnulib/fd-hook.c
Examining data/amanda-3.5.1/gnulib/fd-hook.h
Examining data/amanda-3.5.1/gnulib/float+.h
Examining data/amanda-3.5.1/gnulib/float.c
Examining data/amanda-3.5.1/gnulib/float.in.h
Examining data/amanda-3.5.1/gnulib/fseek.c
Examining data/amanda-3.5.1/gnulib/fseeko.c
Examining data/amanda-3.5.1/gnulib/fstat.c
Examining data/amanda-3.5.1/gnulib/fsusage.c
Examining data/amanda-3.5.1/gnulib/fsusage.h
Examining data/amanda-3.5.1/gnulib/ftell.c
Examining data/amanda-3.5.1/gnulib/ftello.c
Examining data/amanda-3.5.1/gnulib/full-read.c
Examining data/amanda-3.5.1/gnulib/full-read.h
Examining data/amanda-3.5.1/gnulib/full-write.c
Examining data/amanda-3.5.1/gnulib/full-write.h
Examining data/amanda-3.5.1/gnulib/gai_strerror.c
Examining data/amanda-3.5.1/gnulib/getaddrinfo.c
Examining data/amanda-3.5.1/gnulib/getgroups.c
Examining data/amanda-3.5.1/gnulib/getopt.c
Examining data/amanda-3.5.1/gnulib/getopt.in.h
Examining data/amanda-3.5.1/gnulib/getopt1.c
Examining data/amanda-3.5.1/gnulib/getopt_int.h
Examining data/amanda-3.5.1/gnulib/gettext.h
Examining data/amanda-3.5.1/gnulib/gettimeofday.c
Examining data/amanda-3.5.1/gnulib/glthread/lock.c
Examining data/amanda-3.5.1/gnulib/glthread/lock.h
Examining data/amanda-3.5.1/gnulib/glthread/threadlib.c
Examining data/amanda-3.5.1/gnulib/group-member.c
Examining data/amanda-3.5.1/gnulib/inet_ntop.c
Examining data/amanda-3.5.1/gnulib/inet_pton.c
Examining data/amanda-3.5.1/gnulib/intprops.h
Examining data/amanda-3.5.1/gnulib/itold.c
Examining data/amanda-3.5.1/gnulib/langinfo.in.h
Examining data/amanda-3.5.1/gnulib/localcharset.c
Examining data/amanda-3.5.1/gnulib/localcharset.h
Examining data/amanda-3.5.1/gnulib/locale.in.h
Examining data/amanda-3.5.1/gnulib/localeconv.c
Examining data/amanda-3.5.1/gnulib/lseek.c
Examining data/amanda-3.5.1/gnulib/lstat.c
Examining data/amanda-3.5.1/gnulib/malloc.c
Examining data/amanda-3.5.1/gnulib/mbrtowc.c
Examining data/amanda-3.5.1/gnulib/mbsinit.c
Examining data/amanda-3.5.1/gnulib/mbtowc-impl.h
Examining data/amanda-3.5.1/gnulib/mbtowc.c
Examining data/amanda-3.5.1/gnulib/memchr.c
Examining data/amanda-3.5.1/gnulib/mkdtemp.c
Examining data/amanda-3.5.1/gnulib/msvc-inval.c
Examining data/amanda-3.5.1/gnulib/msvc-inval.h
Examining data/amanda-3.5.1/gnulib/msvc-nothrow.c
Examining data/amanda-3.5.1/gnulib/msvc-nothrow.h
Examining data/amanda-3.5.1/gnulib/nanosleep.c
Examining data/amanda-3.5.1/gnulib/netdb.in.h
Examining data/amanda-3.5.1/gnulib/netinet_in.in.h
Examining data/amanda-3.5.1/gnulib/nl_langinfo.c
Examining data/amanda-3.5.1/gnulib/pathmax.h
Examining data/amanda-3.5.1/gnulib/physmem.c
Examining data/amanda-3.5.1/gnulib/physmem.h
Examining data/amanda-3.5.1/gnulib/printf-args.c
Examining data/amanda-3.5.1/gnulib/printf-args.h
Examining data/amanda-3.5.1/gnulib/printf-parse.c
Examining data/amanda-3.5.1/gnulib/printf-parse.h
Examining data/amanda-3.5.1/gnulib/raise.c
Examining data/amanda-3.5.1/gnulib/read.c
Examining data/amanda-3.5.1/gnulib/regcomp.c
Examining data/amanda-3.5.1/gnulib/regex.c
Examining data/amanda-3.5.1/gnulib/regex.h
Examining data/amanda-3.5.1/gnulib/regex_internal.c
Examining data/amanda-3.5.1/gnulib/regex_internal.h
Examining data/amanda-3.5.1/gnulib/regexec.c
Examining data/amanda-3.5.1/gnulib/root-uid.h
Examining data/amanda-3.5.1/gnulib/safe-read.c
Examining data/amanda-3.5.1/gnulib/safe-read.h
Examining data/amanda-3.5.1/gnulib/safe-write.c
Examining data/amanda-3.5.1/gnulib/safe-write.h
Examining data/amanda-3.5.1/gnulib/secure_getenv.c
Examining data/amanda-3.5.1/gnulib/select.c
Examining data/amanda-3.5.1/gnulib/sig-handler.c
Examining data/amanda-3.5.1/gnulib/sig-handler.h
Examining data/amanda-3.5.1/gnulib/sigaction.c
Examining data/amanda-3.5.1/gnulib/signal.in.h
Examining data/amanda-3.5.1/gnulib/sigprocmask.c
Examining data/amanda-3.5.1/gnulib/size_max.h
Examining data/amanda-3.5.1/gnulib/snprintf.c
Examining data/amanda-3.5.1/gnulib/sockets.c
Examining data/amanda-3.5.1/gnulib/sockets.h
Examining data/amanda-3.5.1/gnulib/stat.c
Examining data/amanda-3.5.1/gnulib/stdalign.in.h
Examining data/amanda-3.5.1/gnulib/stdbool.in.h
Examining data/amanda-3.5.1/gnulib/stddef.in.h
Examining data/amanda-3.5.1/gnulib/stdint.in.h
Examining data/amanda-3.5.1/gnulib/stdio-impl.h
Examining data/amanda-3.5.1/gnulib/stdio.in.h
Examining data/amanda-3.5.1/gnulib/stdlib.in.h
Examining data/amanda-3.5.1/gnulib/streq.h
Examining data/amanda-3.5.1/gnulib/string.in.h
Examining data/amanda-3.5.1/gnulib/sys_select.in.h
Examining data/amanda-3.5.1/gnulib/sys_socket.c
Examining data/amanda-3.5.1/gnulib/sys_socket.in.h
Examining data/amanda-3.5.1/gnulib/sys_stat.in.h
Examining data/amanda-3.5.1/gnulib/sys_time.in.h
Examining data/amanda-3.5.1/gnulib/sys_types.in.h
Examining data/amanda-3.5.1/gnulib/sys_uio.in.h
Examining data/amanda-3.5.1/gnulib/tempname.c
Examining data/amanda-3.5.1/gnulib/tempname.h
Examining data/amanda-3.5.1/gnulib/time.in.h
Examining data/amanda-3.5.1/gnulib/unistd.c
Examining data/amanda-3.5.1/gnulib/unistd.in.h
Examining data/amanda-3.5.1/gnulib/vasnprintf.c
Examining data/amanda-3.5.1/gnulib/vasnprintf.h
Examining data/amanda-3.5.1/gnulib/verify.h
Examining data/amanda-3.5.1/gnulib/w32sock.h
Examining data/amanda-3.5.1/gnulib/wchar.in.h
Examining data/amanda-3.5.1/gnulib/wcrtomb.c
Examining data/amanda-3.5.1/gnulib/wctype-h.c
Examining data/amanda-3.5.1/gnulib/wctype.in.h
Examining data/amanda-3.5.1/gnulib/write.c
Examining data/amanda-3.5.1/gnulib/xalloc-oversized.h
Examining data/amanda-3.5.1/gnulib/xsize.c
Examining data/amanda-3.5.1/gnulib/xsize.h
Examining data/amanda-3.5.1/ndmp-src/amndma_tape_simulator.c
Examining data/amanda-3.5.1/ndmp-src/amndmjob_main.c
Examining data/amanda-3.5.1/ndmp-src/md5.h
Examining data/amanda-3.5.1/ndmp-src/md5c.c
Examining data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c
Examining data/amanda-3.5.1/ndmp-src/ndma_comm_job.c
Examining data/amanda-3.5.1/ndmp-src/ndma_comm_session.c
Examining data/amanda-3.5.1/ndmp-src/ndma_comm_subr.c
Examining data/amanda-3.5.1/ndmp-src/ndma_control.c
Examining data/amanda-3.5.1/ndmp-src/ndma_cops_backreco.c
Examining data/amanda-3.5.1/ndmp-src/ndma_cops_labels.c
Examining data/amanda-3.5.1/ndmp-src/ndma_cops_query.c
Examining data/amanda-3.5.1/ndmp-src/ndma_cops_robot.c
Examining data/amanda-3.5.1/ndmp-src/ndma_ctrl_calls.c
Examining data/amanda-3.5.1/ndmp-src/ndma_ctrl_conn.c
Examining data/amanda-3.5.1/ndmp-src/ndma_ctrl_media.c
Examining data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c
Examining data/amanda-3.5.1/ndmp-src/ndma_ctst_data.c
Examining data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c
Examining data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c
Examining data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c
Examining data/amanda-3.5.1/ndmp-src/ndma_data.c
Examining data/amanda-3.5.1/ndmp-src/ndma_data_fh.c
Examining data/amanda-3.5.1/ndmp-src/ndma_data_pfe.c
Examining data/amanda-3.5.1/ndmp-src/ndma_image_stream.c
Examining data/amanda-3.5.1/ndmp-src/ndma_noti_calls.c
Examining data/amanda-3.5.1/ndmp-src/ndma_robot.c
Examining data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c
Examining data/amanda-3.5.1/ndmp-src/ndma_tape.c
Examining data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c
Examining data/amanda-3.5.1/ndmp-src/ndmagents.h
Examining data/amanda-3.5.1/ndmp-src/ndmjob.h
Examining data/amanda-3.5.1/ndmp-src/ndmjob_args.c
Examining data/amanda-3.5.1/ndmp-src/ndmjob_job.c
Examining data/amanda-3.5.1/ndmp-src/ndmjob_main.c
Examining data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c
Examining data/amanda-3.5.1/ndmp-src/ndmjob_rules.c
Examining data/amanda-3.5.1/ndmp-src/ndmjr_none.c
Examining data/amanda-3.5.1/ndmp-src/ndmjr_none.h
Examining data/amanda-3.5.1/ndmp-src/ndml_agent.c
Examining data/amanda-3.5.1/ndmp-src/ndml_bstf.c
Examining data/amanda-3.5.1/ndmp-src/ndml_chan.c
Examining data/amanda-3.5.1/ndmp-src/ndml_config.c
Examining data/amanda-3.5.1/ndmp-src/ndml_conn.c
Examining data/amanda-3.5.1/ndmp-src/ndml_cstr.c
Examining data/amanda-3.5.1/ndmp-src/ndml_fhdb.c
Examining data/amanda-3.5.1/ndmp-src/ndml_fhh.c
Examining data/amanda-3.5.1/ndmp-src/ndml_log.c
Examining data/amanda-3.5.1/ndmp-src/ndml_md5.c
Examining data/amanda-3.5.1/ndmp-src/ndml_media.c
Examining data/amanda-3.5.1/ndmp-src/ndml_nmb.c
Examining data/amanda-3.5.1/ndmp-src/ndml_scsi.c
Examining data/amanda-3.5.1/ndmp-src/ndml_stzf.c
Examining data/amanda-3.5.1/ndmp-src/ndml_util.c
Examining data/amanda-3.5.1/ndmp-src/ndmlib.h
Examining data/amanda-3.5.1/ndmp-src/ndmos.c
Examining data/amanda-3.5.1/ndmp-src/ndmos.h
Examining data/amanda-3.5.1/ndmp-src/ndmos_common.c
Examining data/amanda-3.5.1/ndmp-src/ndmos_glib.c
Examining data/amanda-3.5.1/ndmp-src/ndmos_glib.h
Examining data/amanda-3.5.1/ndmp-src/ndmp0.h
Examining data/amanda-3.5.1/ndmp-src/ndmp0_enum_strs.c
Examining data/amanda-3.5.1/ndmp-src/ndmp0_enum_strs.h
Examining data/amanda-3.5.1/ndmp-src/ndmp0_pp.c
Examining data/amanda-3.5.1/ndmp-src/ndmp0_xdr.c
Examining data/amanda-3.5.1/ndmp-src/ndmp0_xmt.c
Examining data/amanda-3.5.1/ndmp-src/ndmp2.h
Examining data/amanda-3.5.1/ndmp-src/ndmp2_enum_strs.c
Examining data/amanda-3.5.1/ndmp-src/ndmp2_enum_strs.h
Examining data/amanda-3.5.1/ndmp-src/ndmp2_pp.c
Examining data/amanda-3.5.1/ndmp-src/ndmp2_translate.c
Examining data/amanda-3.5.1/ndmp-src/ndmp2_translate.h
Examining data/amanda-3.5.1/ndmp-src/ndmp2_xdr.c
Examining data/amanda-3.5.1/ndmp-src/ndmp2_xmt.c
Examining data/amanda-3.5.1/ndmp-src/ndmp3.h
Examining data/amanda-3.5.1/ndmp-src/ndmp3_enum_strs.c
Examining data/amanda-3.5.1/ndmp-src/ndmp3_enum_strs.h
Examining data/amanda-3.5.1/ndmp-src/ndmp3_pp.c
Examining data/amanda-3.5.1/ndmp-src/ndmp3_translate.c
Examining data/amanda-3.5.1/ndmp-src/ndmp3_translate.h
Examining data/amanda-3.5.1/ndmp-src/ndmp3_xdr.c
Examining data/amanda-3.5.1/ndmp-src/ndmp3_xmt.c
Examining data/amanda-3.5.1/ndmp-src/ndmp4.h
Examining data/amanda-3.5.1/ndmp-src/ndmp4_enum_strs.c
Examining data/amanda-3.5.1/ndmp-src/ndmp4_enum_strs.h
Examining data/amanda-3.5.1/ndmp-src/ndmp4_pp.c
Examining data/amanda-3.5.1/ndmp-src/ndmp4_translate.c
Examining data/amanda-3.5.1/ndmp-src/ndmp4_translate.h
Examining data/amanda-3.5.1/ndmp-src/ndmp4_xdr.c
Examining data/amanda-3.5.1/ndmp-src/ndmp4_xmt.c
Examining data/amanda-3.5.1/ndmp-src/ndmp9.h
Examining data/amanda-3.5.1/ndmp-src/ndmp9_enum_strs.c
Examining data/amanda-3.5.1/ndmp-src/ndmp9_enum_strs.h
Examining data/amanda-3.5.1/ndmp-src/ndmp9_xdr.c
Examining data/amanda-3.5.1/ndmp-src/ndmp9_xmt.c
Examining data/amanda-3.5.1/ndmp-src/ndmp_ammend.h
Examining data/amanda-3.5.1/ndmp-src/ndmp_msg_buf.h
Examining data/amanda-3.5.1/ndmp-src/ndmp_translate.c
Examining data/amanda-3.5.1/ndmp-src/ndmp_translate.h
Examining data/amanda-3.5.1/ndmp-src/ndmpconnobj.c
Examining data/amanda-3.5.1/ndmp-src/ndmpconnobj.h
Examining data/amanda-3.5.1/ndmp-src/ndmprotocol.c
Examining data/amanda-3.5.1/ndmp-src/ndmprotocol.h
Examining data/amanda-3.5.1/ndmp-src/scsiconst.h
Examining data/amanda-3.5.1/ndmp-src/smc.h
Examining data/amanda-3.5.1/ndmp-src/smc_api.c
Examining data/amanda-3.5.1/ndmp-src/smc_parse.c
Examining data/amanda-3.5.1/ndmp-src/smc_pp.c
Examining data/amanda-3.5.1/ndmp-src/smc_priv.h
Examining data/amanda-3.5.1/ndmp-src/smc_raw.h
Examining data/amanda-3.5.1/ndmp-src/wraplib.c
Examining data/amanda-3.5.1/ndmp-src/wraplib.h
Examining data/amanda-3.5.1/oldrecover-src/amrecover.c
Examining data/amanda-3.5.1/oldrecover-src/amrecover.h
Examining data/amanda-3.5.1/oldrecover-src/display_commands.c
Examining data/amanda-3.5.1/oldrecover-src/extract_list.c
Examining data/amanda-3.5.1/oldrecover-src/help.c
Examining data/amanda-3.5.1/oldrecover-src/set_commands.c
Examining data/amanda-3.5.1/oldrecover-src/uparse.c
Examining data/amanda-3.5.1/oldrecover-src/uparse.h
Examining data/amanda-3.5.1/oldrecover-src/uscan.c
Examining data/amanda-3.5.1/perl/Amanda/Application.c
Examining data/amanda-3.5.1/perl/Amanda/Archive.c
Examining data/amanda-3.5.1/perl/Amanda/Cmdfile.c
Examining data/amanda-3.5.1/perl/Amanda/Cmdline.c
Examining data/amanda-3.5.1/perl/Amanda/Config.c
Examining data/amanda-3.5.1/perl/Amanda/Debug.c
Examining data/amanda-3.5.1/perl/Amanda/Device.c
Examining data/amanda-3.5.1/perl/Amanda/Disklist.c
Examining data/amanda-3.5.1/perl/Amanda/Feature.c
Examining data/amanda-3.5.1/perl/Amanda/Header.c
Examining data/amanda-3.5.1/perl/Amanda/IPC/Binary.c
Examining data/amanda-3.5.1/perl/Amanda/Logfile.c
Examining data/amanda-3.5.1/perl/Amanda/MainLoop.c
Examining data/amanda-3.5.1/perl/Amanda/NDMP.c
Examining data/amanda-3.5.1/perl/Amanda/Tapelist.c
Examining data/amanda-3.5.1/perl/Amanda/Tests.c
Examining data/amanda-3.5.1/perl/Amanda/Util.c
Examining data/amanda-3.5.1/perl/Amanda/Xfer.c
Examining data/amanda-3.5.1/perl/Amanda/XferServer.c
Examining data/amanda-3.5.1/perl/amglue/amglue.h
Examining data/amanda-3.5.1/perl/amglue/bigint.c
Examining data/amanda-3.5.1/perl/amglue/gerror.c
Examining data/amanda-3.5.1/perl/amglue/ghashtable.c
Examining data/amanda-3.5.1/perl/amglue/objwrap.c
Examining data/amanda-3.5.1/perl/amglue/source.c
Examining data/amanda-3.5.1/perl/amglue/xferwrap.c
Examining data/amanda-3.5.1/recover-src/amrecover.c
Examining data/amanda-3.5.1/recover-src/amrecover.h
Examining data/amanda-3.5.1/recover-src/display_commands.c
Examining data/amanda-3.5.1/recover-src/extract_list.c
Examining data/amanda-3.5.1/recover-src/help.c
Examining data/amanda-3.5.1/recover-src/set_commands.c
Examining data/amanda-3.5.1/recover-src/uparse.c
Examining data/amanda-3.5.1/recover-src/uparse.h
Examining data/amanda-3.5.1/recover-src/uscan.c
Examining data/amanda-3.5.1/server-src/amadmin.c
Examining data/amanda-3.5.1/server-src/amcheck.c
Examining data/amanda-3.5.1/server-src/amindex.c
Examining data/amanda-3.5.1/server-src/amindex.h
Examining data/amanda-3.5.1/server-src/amindexd.c
Examining data/amanda-3.5.1/server-src/amtrmidx.c
Examining data/amanda-3.5.1/server-src/amtrmlog.c
Examining data/amanda-3.5.1/server-src/cmdfile.c
Examining data/amanda-3.5.1/server-src/cmdfile.h
Examining data/amanda-3.5.1/server-src/cmdline.c
Examining data/amanda-3.5.1/server-src/cmdline.h
Examining data/amanda-3.5.1/server-src/disk_history.c
Examining data/amanda-3.5.1/server-src/disk_history.h
Examining data/amanda-3.5.1/server-src/diskfile.c
Examining data/amanda-3.5.1/server-src/driverio.c
Examining data/amanda-3.5.1/server-src/driverio.h
Examining data/amanda-3.5.1/server-src/dumper.c
Examining data/amanda-3.5.1/server-src/find.c
Examining data/amanda-3.5.1/server-src/find.h
Examining data/amanda-3.5.1/server-src/holding.c
Examining data/amanda-3.5.1/server-src/holding.h
Examining data/amanda-3.5.1/server-src/infofile.c
Examining data/amanda-3.5.1/server-src/infofile.h
Examining data/amanda-3.5.1/server-src/list_dir.c
Examining data/amanda-3.5.1/server-src/list_dir.h
Examining data/amanda-3.5.1/server-src/logfile.c
Examining data/amanda-3.5.1/server-src/logfile.h
Examining data/amanda-3.5.1/server-src/planner.c
Examining data/amanda-3.5.1/server-src/server_util.c
Examining data/amanda-3.5.1/server-src/server_util.h
Examining data/amanda-3.5.1/server-src/tapefile.c
Examining data/amanda-3.5.1/server-src/tapefile.h
Examining data/amanda-3.5.1/server-src/xfer-dest-holding.c
Examining data/amanda-3.5.1/server-src/xfer-server.h
Examining data/amanda-3.5.1/server-src/xfer-source-holding.c
Examining data/amanda-3.5.1/server-src/diskfile.h
Examining data/amanda-3.5.1/server-src/driver.c
Examining data/amanda-3.5.1/xfer-src/amxfer.h
Examining data/amanda-3.5.1/xfer-src/dest-application.c
Examining data/amanda-3.5.1/xfer-src/dest-buffer.c
Examining data/amanda-3.5.1/xfer-src/dest-directtcp-connect.c
Examining data/amanda-3.5.1/xfer-src/dest-directtcp-listen.c
Examining data/amanda-3.5.1/xfer-src/dest-fd.c
Examining data/amanda-3.5.1/xfer-src/dest-null.c
Examining data/amanda-3.5.1/xfer-src/element-glue.c
Examining data/amanda-3.5.1/xfer-src/element-glue.h
Examining data/amanda-3.5.1/xfer-src/filter-crc.c
Examining data/amanda-3.5.1/xfer-src/filter-process.c
Examining data/amanda-3.5.1/xfer-src/filter-xor.c
Examining data/amanda-3.5.1/xfer-src/source-directtcp-connect.c
Examining data/amanda-3.5.1/xfer-src/source-directtcp-listen.c
Examining data/amanda-3.5.1/xfer-src/source-fd.c
Examining data/amanda-3.5.1/xfer-src/source-file.c
Examining data/amanda-3.5.1/xfer-src/source-pattern.c
Examining data/amanda-3.5.1/xfer-src/source-random.c
Examining data/amanda-3.5.1/xfer-src/source-shm-ring.c
Examining data/amanda-3.5.1/xfer-src/xfer-element.c
Examining data/amanda-3.5.1/xfer-src/xfer-element.h
Examining data/amanda-3.5.1/xfer-src/xfer-test.c
Examining data/amanda-3.5.1/xfer-src/xfer.c
Examining data/amanda-3.5.1/xfer-src/xfer.h
Examining data/amanda-3.5.1/xfer-src/xmsg.c
Examining data/amanda-3.5.1/xfer-src/xmsg.h
Examining data/amanda-3.5.1/debian/patches/14-debian-fix-lintian-manpage-warnings-conffile.c
FINAL RESULTS:
data/amanda-3.5.1/common-src/amutil.c:2114:6: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
if (chown(AMANDA_TMPDIR, (int)get_client_uid(), (int)get_client_gid()) < 0) {
data/amanda-3.5.1/common-src/debug.c:452:6: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
if (chown(db_filename, get_client_uid(), get_client_gid()) < 0) {
data/amanda-3.5.1/common-src/file.c:83:7: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
rc = chmod(dir, mode);
data/amanda-3.5.1/common-src/file.c:86:11: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
rc = chown(dir, uid, gid);
data/amanda-3.5.1/gnulib/stdio.in.h:725:8: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
#undef gets
data/amanda-3.5.1/gnulib/stdio.in.h:727:18: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
_GL_WARN_ON_USE (gets, "gets is a security hole - use fgets instead");
data/amanda-3.5.1/gnulib/sys_stat.in.h:432:19: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
# define lchmod chmod
data/amanda-3.5.1/gnulib/sys_stat.in.h:436:34: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
_GL_CXXALIAS_RPL_CAST_1 (lchmod, chmod, int,
data/amanda-3.5.1/gnulib/unistd.in.h:260:18: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
_GL_WARN_ON_USE (chown, "chdir is not always in <unistd.h> - "
data/amanda-3.5.1/gnulib/unistd.in.h:274:11: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
# undef chown
data/amanda-3.5.1/gnulib/unistd.in.h:275:12: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
# define chown rpl_chown
data/amanda-3.5.1/gnulib/unistd.in.h:277:19: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
_GL_FUNCDECL_RPL (chown, int, (const char *file, uid_t uid, gid_t gid)
data/amanda-3.5.1/gnulib/unistd.in.h:279:19: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
_GL_CXXALIAS_RPL (chown, int, (const char *file, uid_t uid, gid_t gid));
data/amanda-3.5.1/gnulib/unistd.in.h:282:19: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
_GL_FUNCDECL_SYS (chown, int, (const char *file, uid_t uid, gid_t gid)
data/amanda-3.5.1/gnulib/unistd.in.h:285:19: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
_GL_CXXALIAS_SYS (chown, int, (const char *file, uid_t uid, gid_t gid));
data/amanda-3.5.1/gnulib/unistd.in.h:287:19: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
_GL_CXXALIASWARN (chown);
data/amanda-3.5.1/gnulib/unistd.in.h:289:9: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
# undef chown
data/amanda-3.5.1/gnulib/unistd.in.h:291:18: [5] (race) chown:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchown( ) instead.
_GL_WARN_ON_USE (chown, "chown fails to follow symlinks on some systems and "
data/amanda-3.5.1/gnulib/unistd.in.h:1269:12: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
# define readlink rpl_readlink
data/amanda-3.5.1/gnulib/unistd.in.h:1271:19: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
_GL_FUNCDECL_RPL (readlink, ssize_t,
data/amanda-3.5.1/gnulib/unistd.in.h:1274:19: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
_GL_CXXALIAS_RPL (readlink, ssize_t,
data/amanda-3.5.1/gnulib/unistd.in.h:1278:19: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
_GL_FUNCDECL_SYS (readlink, ssize_t,
data/amanda-3.5.1/gnulib/unistd.in.h:1282:19: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
_GL_CXXALIAS_SYS (readlink, ssize_t,
data/amanda-3.5.1/gnulib/unistd.in.h:1285:19: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
_GL_CXXALIASWARN (readlink);
data/amanda-3.5.1/gnulib/unistd.in.h:1287:9: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
# undef readlink
data/amanda-3.5.1/gnulib/unistd.in.h:1289:18: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
_GL_WARN_ON_USE (readlink, "readlink is unportable - "
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:197:7: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
rc = readlink (pos_symlink_name, pos_buf, sizeof pos_buf);
data/amanda-3.5.1/amandad-src/amandad.c:709:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(service_path, X_OK) < 0) {
data/amanda-3.5.1/amandad-src/amandad.c:1050:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(as->repbuf + as->repbufsize, msg);
data/amanda-3.5.1/amar-src/amar-test.c:112:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, fmt "\n", __VA_ARGS__); \
data/amanda-3.5.1/amar-src/amar.c:273:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(archive->hdr.magic, HEADER_SIZE,
data/amanda-3.5.1/amar-src/amar.c:1051:10: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
if (sscanf(buf_ptr(hp), HEADER_MAGIC " %d", &vers) != 1) {
data/amanda-3.5.1/amar-src/amar.c:1416:10: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
if (sscanf(buf_ptr(&hp), HEADER_MAGIC " %d", &vers) != 1) {
data/amanda-3.5.1/application-src/ambsdtar.c:1669:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(bsdtar_target, W_OK) != 0) {
data/amanda-3.5.1/application-src/amgtar.c:896:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(full_path, argument->dle.disk);
data/amanda-3.5.1/application-src/amgtar.c:910:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(full_path + path_len, dp->d_name);
data/amanda-3.5.1/application-src/amgtar.c:1637:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(gnutar_target, W_OK) != 0) {
data/amanda-3.5.1/application-src/amstar.c:1248:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(star_target, W_OK) != 0 ) {
data/amanda-3.5.1/application-src/amstar.c:1701:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(argument->dle.device, R_OK|X_OK) == -1) {
data/amanda-3.5.1/client-src/calcsize.c:285:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(filename, R_OK) != 0) {
data/amanda-3.5.1/client-src/calcsize.c:309:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(filename, R_OK) != 0) {
data/amanda-3.5.1/client-src/client_util.c:1489:6: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sscanf(line+len, match_expr, &level, &size_) == 2) {
data/amanda-3.5.1/client-src/runtar.c:118:22: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((version_file = popen(GNUTAR " --version 2>&1", "r")) != NULL) {
data/amanda-3.5.1/client-src/selfcheck.c:1318:22: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
access_result = access(device, amode);
data/amanda-3.5.1/client-src/selfcheck.c:1594:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access("/etc", R_OK|W_OK) == -1) {
data/amanda-3.5.1/client-src/sendbackup.c:1672:18: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((pipe_fp = popen(cmd, "w")) == NULL) {
data/amanda-3.5.1/client-src/sendsize.c:1169:6: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
sscanf(line+len, match_expr, &level, &size_) == 2) {
data/amanda-3.5.1/client-src/sendsize.c:1632:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(killpgrp_cmd, killpgrp_cmd, config, (char *)0, env);
data/amanda-3.5.1/client-src/sendsize.c:1662:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, "rundump", config, "xfsdump", "-F", "-J", "-l",
data/amanda-3.5.1/client-src/sendsize.c:1665:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, "xfsdump", "-F", "-J", "-l",
data/amanda-3.5.1/client-src/sendsize.c:1676:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, "rundump", config, "vxdump", dumpkeys, "1048576",
data/amanda-3.5.1/client-src/sendsize.c:1679:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, "vxdump", dumpkeys, "1048576", "-",
data/amanda-3.5.1/client-src/sendsize.c:1690:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, "rundump", config, "vdump", dumpkeys, "60", "-",
data/amanda-3.5.1/client-src/sendsize.c:1693:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, "vdump", dumpkeys, "60", "-",
data/amanda-3.5.1/client-src/sendsize.c:1701:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, "rundump", config, "backup", dumpkeys, "-",
data/amanda-3.5.1/client-src/sendsize.c:1704:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, "backup", dumpkeys, "-",
data/amanda-3.5.1/client-src/sendsize.c:1708:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, "rundump", config, "dump", dumpkeys,
data/amanda-3.5.1/client-src/sendsize.c:1714:3: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, "dump", dumpkeys,
data/amanda-3.5.1/common-src/amanda.h:304:23: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
# define EUIDACCESS access
data/amanda-3.5.1/common-src/amanda.h:699:12: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
extern int fprintf(FILE *stream, const char *format, ...);
data/amanda-3.5.1/common-src/amanda.h:790:14: [4] (tmpfile) mktemp:
Temporary file race condition (CWE-377).
extern char *mktemp(char *template);
data/amanda-3.5.1/common-src/amanda.h:818:12: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
extern int printf(const char *format, ...);
data/amanda-3.5.1/common-src/amanda.h:925:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int snprintf(char *buf, size_t len, const char *format,...)
data/amanda-3.5.1/common-src/amanda.h:929:5: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int vsnprintf(char *buf, size_t len, const char *format, va_list ap);
data/amanda-3.5.1/common-src/amanda.h:941:12: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
extern int sscanf(const char *s, const char *format, ...);
data/amanda-3.5.1/common-src/amanda.h:962:13: [4] (format) syslog:
If syslog's format strings can be influenced by an attacker, they can be
exploited (CWE-134). Use a constant format string for syslog.
extern void syslog(int priority, const char *logstring, ...)
data/amanda-3.5.1/common-src/amanda.h:967:12: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
extern int system(const char *string);
data/amanda-3.5.1/common-src/amanda.h:987:12: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
extern int vfprintf(FILE *stream, const char *format, va_list ap);
data/amanda-3.5.1/common-src/amanda.h:991:12: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
extern int vprintf(const char *format, va_list ap);
data/amanda-3.5.1/common-src/amutil.c:224:4: [4] (shell) execl:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execl(ambind_path, ambind_path, socket_name, NULL);
data/amanda-3.5.1/common-src/amutil.c:2078:2: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execv((char *)*argv_ptr->pdata, (char **)argv_ptr->pdata);
data/amanda-3.5.1/common-src/conffile.c:884:41: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__ ((format (printf, 1, 2)));
data/amanda-3.5.1/common-src/conffile.c:887:41: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__ ((format (printf, 1, 2)));
data/amanda-3.5.1/common-src/conffile.c:6037:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(dir, R_OK|W_OK) == -1) {
data/amanda-3.5.1/common-src/conffile.c:6816:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_cf+len, changern);
data/amanda-3.5.1/common-src/conffile.c:6817:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_cf+len+strlen(changern), cf+2);
data/amanda-3.5.1/common-src/conffile.c:6827:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_tp+len, changern);
data/amanda-3.5.1/common-src/conffile.c:6828:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_tp+len+strlen(changern), cf+2);
data/amanda-3.5.1/common-src/conffile.c:6949:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_pool+len, org);
data/amanda-3.5.1/common-src/conffile.c:6950:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_pool+len+strlen(org), p+2);
data/amanda-3.5.1/common-src/conffile.c:6961:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_pool+len, conf_name);
data/amanda-3.5.1/common-src/conffile.c:6962:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_pool+len+strlen(conf_name), p+2);
data/amanda-3.5.1/common-src/conffile.c:6976:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_pool+len, storagen);
data/amanda-3.5.1/common-src/conffile.c:6977:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_pool+len+strlen(storagen), p+2);
data/amanda-3.5.1/common-src/local-security.c:290:5: [4] (shell) execlp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execlp(xamandad_path, xamandad_path,
data/amanda-3.5.1/common-src/match.c:1169:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(t, get_config_name());
data/amanda-3.5.1/common-src/match.c:1173:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(t, getconf_str(CNF_ORG));
data/amanda-3.5.1/common-src/match.c:1178:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(t, barcode);
data/amanda-3.5.1/common-src/match.c:1184:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(t, meta);
data/amanda-3.5.1/common-src/match.c:1190:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(t, storage);
data/amanda-3.5.1/common-src/rsh-security.c:284:5: [4] (shell) execlp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execlp(RSH_PATH, RSH_PATH, "-l", xclient_username,
data/amanda-3.5.1/common-src/security-file.c:156:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(oline, line);
data/amanda-3.5.1/common-src/security-file.c:219:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(oline, line);
data/amanda-3.5.1/common-src/ssh-security.c:410:5: [4] (shell) execvp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execvp(SSH, (gchar **)myargs->pdata);
data/amanda-3.5.1/contrib/gsc/cfggsc.c:59:9: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define vprintf if (verbose) printf
data/amanda-3.5.1/contrib/gsc/cfggsc.c:59:30: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define vprintf if (verbose) printf
data/amanda-3.5.1/contrib/gsc/cfggsc.c:135:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sstring, "name = '%s'", lname);
data/amanda-3.5.1/contrib/gsc/cfggsc.c:150:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sstring, "uniquetype = '%s'", cusobj.PdDvLn_Lvalue);
data/amanda-3.5.1/contrib/gsc/cfggsc.c:183:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sstring, "name = '%s'", cusobj.parent);
data/amanda-3.5.1/contrib/gsc/cfggsc.c:200:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sstring, "parent = '%s' AND location='%s' AND status=%d",
data/amanda-3.5.1/contrib/gsc/cfggsc.c:244:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sstring, "value3 = %s", cusobj.parent);
data/amanda-3.5.1/contrib/gsc/cfggsc.c:270:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(bufname, "/dev/%s", lname);
data/amanda-3.5.1/contrib/gsc/defgsc.c:132:12: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(sstring, triple, type, class, subclass);
data/amanda-3.5.1/contrib/gsc/defgsc.c:149:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(sstring, "name = '%s'", parent);
data/amanda-3.5.1/contrib/gsc/defgsc.c:158:12: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(sstring, utype, CuDv.PdDvLn_Lvalue, subclass , connect);
data/amanda-3.5.1/contrib/gsc/defgsc.c:174:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(lname, "%s%d", PdDv.prefix, seqno);
data/amanda-3.5.1/contrib/gsc/defgsc.c:175:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(sstring, "name = '%s'", lname);
data/amanda-3.5.1/contrib/gsc/defgsc.c:186:12: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
(void) strcpy(CuDv.name, lname);
data/amanda-3.5.1/contrib/gsc/defgsc.c:215:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(CuDv.location, "%s-00-%s", parent_loc, connect);
data/amanda-3.5.1/contrib/gsc/defgsc.c:217:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
(void) sprintf(CuDv.location, "%s-%s", parent_loc, connect);
data/amanda-3.5.1/contrib/gsc/defgsc.c:222:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(CuDv.ddins, PdDv.DvDr);
data/amanda-3.5.1/contrib/gsc/defgsc.c:223:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(CuDv.PdDvLn_Lvalue, PdDv.uniquetype);
data/amanda-3.5.1/contrib/gsc/defgsc.c:224:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(CuDv.parent, parent);
data/amanda-3.5.1/contrib/gsc/defgsc.c:225:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(CuDv.connwhere, connect);
data/amanda-3.5.1/contrib/gsc/gscdd.c:81:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(buf, fmt, arg1); \
data/amanda-3.5.1/contrib/gsc/gscdd.c:87:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(buf, fmt, arg1, arg2); \
data/amanda-3.5.1/contrib/gsc/gscdd.c:93:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(buf, fmt, arg1, arg2, arg3); \
data/amanda-3.5.1/contrib/gsc/gscdd.c:99:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(buf, fmt, arg1, arg2, arg3, arg4); \
data/amanda-3.5.1/contrib/gsc/gscdd.c:106:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(buf, fmt, arg1, arg2, arg3, arg4, arg5); \
data/amanda-3.5.1/contrib/gsc/gscdd.c:113:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
(void) sprintf(buf, fmt, arg1, arg2, arg3, arg4, arg5, arg6); \
data/amanda-3.5.1/contrib/gsc/ucfggsc.c:42:9: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define vprintf if (verbose) printf
data/amanda-3.5.1/contrib/gsc/ucfggsc.c:42:30: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define vprintf if (verbose) printf
data/amanda-3.5.1/contrib/gsc/ucfggsc.c:95:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sstring,"name = '%s'",logical_name);
data/amanda-3.5.1/contrib/gsc/ucfggsc.c:107:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(sstring,"uniquetype = '%s'", cudvobj.PdDvLn_Lvalue);
data/amanda-3.5.1/device-src/device.c:1071:14: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (!(prop->access & cur_phase))
data/amanda-3.5.1/device-src/device.c:1116:17: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (!(prop->access & cur_phase))
data/amanda-3.5.1/device-src/device.c:1747:22: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
PropertyAccessFlags access,
data/amanda-3.5.1/device-src/device.c:1767:20: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
prop->access = access;
data/amanda-3.5.1/device-src/device.h:449:29: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
PropertyAccessFlags access,
data/amanda-3.5.1/device-src/property.h:147:25: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
PropertyAccessFlags access;
data/amanda-3.5.1/gnulib/euidaccess.c:58:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
# define access __access
data/amanda-3.5.1/gnulib/euidaccess.c:82:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return access (file, mode | EFF_ONLY_OK);
data/amanda-3.5.1/gnulib/euidaccess.c:116:16: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
result = access (file, mode);
data/amanda-3.5.1/gnulib/euidaccess.c:138:12: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
return access (file, mode);
data/amanda-3.5.1/gnulib/inet_ntop.c:140:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
return strcpy (dst, tmp);
data/amanda-3.5.1/gnulib/inet_ntop.c:255:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
return strcpy (dst, tmp);
data/amanda-3.5.1/gnulib/localcharset.c:239:23: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (res_ptr + res_size - (l2 + 1) - (l1 + 1), buf1);
data/amanda-3.5.1/gnulib/localcharset.c:240:23: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (res_ptr + res_size - (l2 + 1), buf2);
data/amanda-3.5.1/gnulib/localcharset.c:511:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "CP%s", pdot + 1);
data/amanda-3.5.1/gnulib/snprintf.c:37:1: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (char *str, size_t size, const char *format, ...)
data/amanda-3.5.1/gnulib/stat.c:117:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (fixed_name, name);
data/amanda-3.5.1/gnulib/stdio.in.h:284:12: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define fprintf rpl_fprintf
data/amanda-3.5.1/gnulib/stdio.in.h:288:19: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_FUNCDECL_RPL (fprintf, int, (FILE *fp, const char *format, ...)
data/amanda-3.5.1/gnulib/stdio.in.h:292:19: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_FUNCDECL_RPL (fprintf, int, (FILE *fp, const char *format, ...)
data/amanda-3.5.1/gnulib/stdio.in.h:296:19: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIAS_RPL (fprintf, int, (FILE *fp, const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:298:19: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIAS_SYS (fprintf, int, (FILE *fp, const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:300:19: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIASWARN (fprintf);
data/amanda-3.5.1/gnulib/stdio.in.h:304:10: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# undef fprintf
data/amanda-3.5.1/gnulib/stdio.in.h:307:18: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_WARN_ON_USE (fprintf, "fprintf is not always POSIX compliant - "
data/amanda-3.5.1/gnulib/stdio.in.h:411:11: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
# undef fscanf
data/amanda-3.5.1/gnulib/stdio.in.h:412:12: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
# define fscanf rpl_fscanf
data/amanda-3.5.1/gnulib/stdio.in.h:414:19: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_FUNCDECL_RPL (fscanf, int, (FILE *stream, const char *format, ...)
data/amanda-3.5.1/gnulib/stdio.in.h:417:19: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIAS_RPL (fscanf, int, (FILE *stream, const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:419:19: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIAS_SYS (fscanf, int, (FILE *stream, const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:421:19: [4] (buffer) fscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIASWARN (fscanf);
data/amanda-3.5.1/gnulib/stdio.in.h:819:11: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
# undef popen
data/amanda-3.5.1/gnulib/stdio.in.h:820:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
# define popen rpl_popen
data/amanda-3.5.1/gnulib/stdio.in.h:822:19: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
_GL_FUNCDECL_RPL (popen, FILE *, (const char *cmd, const char *mode)
data/amanda-3.5.1/gnulib/stdio.in.h:824:19: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
_GL_CXXALIAS_RPL (popen, FILE *, (const char *cmd, const char *mode));
data/amanda-3.5.1/gnulib/stdio.in.h:827:19: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
_GL_FUNCDECL_SYS (popen, FILE *, (const char *cmd, const char *mode)
data/amanda-3.5.1/gnulib/stdio.in.h:830:19: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
_GL_CXXALIAS_SYS (popen, FILE *, (const char *cmd, const char *mode));
data/amanda-3.5.1/gnulib/stdio.in.h:832:19: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
_GL_CXXALIASWARN (popen);
data/amanda-3.5.1/gnulib/stdio.in.h:834:9: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
# undef popen
data/amanda-3.5.1/gnulib/stdio.in.h:836:18: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
_GL_WARN_ON_USE (popen, "popen is buggy on some platforms - "
data/amanda-3.5.1/gnulib/stdio.in.h:847:13: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define printf __printf__
data/amanda-3.5.1/gnulib/stdio.in.h:864:21: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIAS_RPL_1 (printf, __printf__, int, (const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:867:13: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define printf rpl_printf
data/amanda-3.5.1/gnulib/stdio.in.h:869:19: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_FUNCDECL_RPL (printf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:873:19: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIAS_RPL (printf, int, (const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:877:19: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIAS_SYS (printf, int, (const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:879:19: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIASWARN (printf);
data/amanda-3.5.1/gnulib/stdio.in.h:883:10: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# undef printf
data/amanda-3.5.1/gnulib/stdio.in.h:886:18: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_WARN_ON_USE (printf, "printf is not always POSIX compliant - "
data/amanda-3.5.1/gnulib/stdio.in.h:1008:12: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
# undef scanf
data/amanda-3.5.1/gnulib/stdio.in.h:1010:13: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
# define scanf __scanf__
data/amanda-3.5.1/gnulib/stdio.in.h:1018:21: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIAS_RPL_1 (scanf, __scanf__, int, (const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:1021:12: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
# undef scanf
data/amanda-3.5.1/gnulib/stdio.in.h:1022:13: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
# define scanf rpl_scanf
data/amanda-3.5.1/gnulib/stdio.in.h:1024:19: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_FUNCDECL_RPL (scanf, int, (const char *format, ...)
data/amanda-3.5.1/gnulib/stdio.in.h:1027:19: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIAS_RPL (scanf, int, (const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:1030:19: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIAS_SYS (scanf, int, (const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:1032:19: [4] (buffer) scanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIASWARN (scanf);
data/amanda-3.5.1/gnulib/stdio.in.h:1038:12: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
# define snprintf rpl_snprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1040:19: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_FUNCDECL_RPL (snprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1044:19: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_CXXALIAS_RPL (snprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1048:19: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_FUNCDECL_SYS (snprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1053:19: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_CXXALIAS_SYS (snprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1056:19: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_CXXALIASWARN (snprintf);
data/amanda-3.5.1/gnulib/stdio.in.h:1058:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
# undef snprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1060:18: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_WARN_ON_USE (snprintf, "snprintf is unportable - "
data/amanda-3.5.1/gnulib/stdio.in.h:1077:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
# define sprintf rpl_sprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1079:19: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
_GL_FUNCDECL_RPL (sprintf, int, (char *str, const char *format, ...)
data/amanda-3.5.1/gnulib/stdio.in.h:1082:19: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
_GL_CXXALIAS_RPL (sprintf, int, (char *str, const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:1084:19: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
_GL_CXXALIAS_SYS (sprintf, int, (char *str, const char *format, ...));
data/amanda-3.5.1/gnulib/stdio.in.h:1086:19: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
_GL_CXXALIASWARN (sprintf);
data/amanda-3.5.1/gnulib/stdio.in.h:1088:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
# undef sprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1090:18: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
_GL_WARN_ON_USE (sprintf, "sprintf is not always POSIX compliant - "
data/amanda-3.5.1/gnulib/stdio.in.h:1196:12: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define vfprintf rpl_vfprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1200:19: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_FUNCDECL_RPL (vfprintf, int, (FILE *fp, const char *format, va_list args)
data/amanda-3.5.1/gnulib/stdio.in.h:1204:19: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_FUNCDECL_RPL (vfprintf, int, (FILE *fp, const char *format, va_list args)
data/amanda-3.5.1/gnulib/stdio.in.h:1208:19: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIAS_RPL (vfprintf, int, (FILE *fp, const char *format, va_list args));
data/amanda-3.5.1/gnulib/stdio.in.h:1213:24: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIAS_SYS_CAST (vfprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1216:19: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIASWARN (vfprintf);
data/amanda-3.5.1/gnulib/stdio.in.h:1220:10: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# undef vfprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1223:18: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_WARN_ON_USE (vfprintf, "vfprintf is not always POSIX compliant - "
data/amanda-3.5.1/gnulib/stdio.in.h:1231:11: [4] (buffer) vfscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
# undef vfscanf
data/amanda-3.5.1/gnulib/stdio.in.h:1232:12: [4] (buffer) vfscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
# define vfscanf rpl_vfscanf
data/amanda-3.5.1/gnulib/stdio.in.h:1234:19: [4] (buffer) vfscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_FUNCDECL_RPL (vfscanf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1238:19: [4] (buffer) vfscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIAS_RPL (vfscanf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1241:19: [4] (buffer) vfscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIAS_SYS (vfscanf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1244:19: [4] (buffer) vfscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIASWARN (vfscanf);
data/amanda-3.5.1/gnulib/stdio.in.h:1251:12: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define vprintf rpl_vprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1255:19: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_FUNCDECL_RPL (vprintf, int, (const char *format, va_list args)
data/amanda-3.5.1/gnulib/stdio.in.h:1259:19: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_FUNCDECL_RPL (vprintf, int, (const char *format, va_list args)
data/amanda-3.5.1/gnulib/stdio.in.h:1263:19: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIAS_RPL (vprintf, int, (const char *format, va_list args));
data/amanda-3.5.1/gnulib/stdio.in.h:1268:24: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIAS_SYS_CAST (vprintf, int, (const char *format, va_list args));
data/amanda-3.5.1/gnulib/stdio.in.h:1270:19: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_CXXALIASWARN (vprintf);
data/amanda-3.5.1/gnulib/stdio.in.h:1274:10: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# undef vprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1277:18: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
_GL_WARN_ON_USE (vprintf, "vprintf is not always POSIX compliant - "
data/amanda-3.5.1/gnulib/stdio.in.h:1285:11: [4] (buffer) vscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
# undef vscanf
data/amanda-3.5.1/gnulib/stdio.in.h:1286:12: [4] (buffer) vscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
# define vscanf rpl_vscanf
data/amanda-3.5.1/gnulib/stdio.in.h:1288:19: [4] (buffer) vscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_FUNCDECL_RPL (vscanf, int, (const char *format, va_list args)
data/amanda-3.5.1/gnulib/stdio.in.h:1291:19: [4] (buffer) vscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIAS_RPL (vscanf, int, (const char *format, va_list args));
data/amanda-3.5.1/gnulib/stdio.in.h:1293:19: [4] (buffer) vscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIAS_SYS (vscanf, int, (const char *format, va_list args));
data/amanda-3.5.1/gnulib/stdio.in.h:1295:19: [4] (buffer) vscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
_GL_CXXALIASWARN (vscanf);
data/amanda-3.5.1/gnulib/stdio.in.h:1301:12: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
# define vsnprintf rpl_vsnprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1303:19: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_FUNCDECL_RPL (vsnprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1307:19: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_CXXALIAS_RPL (vsnprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1311:19: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_FUNCDECL_SYS (vsnprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1316:19: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_CXXALIAS_SYS (vsnprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1319:19: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_CXXALIASWARN (vsnprintf);
data/amanda-3.5.1/gnulib/stdio.in.h:1321:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
# undef vsnprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1323:18: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
_GL_WARN_ON_USE (vsnprintf, "vsnprintf is unportable - "
data/amanda-3.5.1/gnulib/stdio.in.h:1331:12: [4] (buffer) vsprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
# define vsprintf rpl_vsprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1333:19: [4] (buffer) vsprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
_GL_FUNCDECL_RPL (vsprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1337:19: [4] (buffer) vsprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
_GL_CXXALIAS_RPL (vsprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1343:24: [4] (buffer) vsprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
_GL_CXXALIAS_SYS_CAST (vsprintf, int,
data/amanda-3.5.1/gnulib/stdio.in.h:1346:19: [4] (buffer) vsprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
_GL_CXXALIASWARN (vsprintf);
data/amanda-3.5.1/gnulib/stdio.in.h:1348:9: [4] (buffer) vsprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
# undef vsprintf
data/amanda-3.5.1/gnulib/stdio.in.h:1350:18: [4] (buffer) vsprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
_GL_WARN_ON_USE (vsprintf, "vsprintf is not always POSIX compliant - "
data/amanda-3.5.1/gnulib/unistd.in.h:249:18: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
_GL_WARN_ON_USE (access, "the access function is a security risk - "
data/amanda-3.5.1/gnulib/unistd.in.h:780:19: [4] (misc) getlogin:
It's often easy to fool getlogin. Sometimes it does not work at all,
because some program messed up the utmp file. Often, it gives only the
first 8 characters of the login name. The user currently logged in on the
controlling tty of our program need not be the user who started it. Avoid
getlogin() for security-related purposes (CWE-807). Use getpwuid(geteuid())
and extract the desired information instead.
_GL_FUNCDECL_SYS (getlogin, char *, (void));
data/amanda-3.5.1/gnulib/unistd.in.h:782:19: [4] (misc) getlogin:
It's often easy to fool getlogin. Sometimes it does not work at all,
because some program messed up the utmp file. Often, it gives only the
first 8 characters of the login name. The user currently logged in on the
controlling tty of our program need not be the user who started it. Avoid
getlogin() for security-related purposes (CWE-807). Use getpwuid(geteuid())
and extract the desired information instead.
_GL_CXXALIAS_SYS (getlogin, char *, (void));
data/amanda-3.5.1/gnulib/unistd.in.h:783:19: [4] (misc) getlogin:
It's often easy to fool getlogin. Sometimes it does not work at all,
because some program messed up the utmp file. Often, it gives only the
first 8 characters of the login name. The user currently logged in on the
controlling tty of our program need not be the user who started it. Avoid
getlogin() for security-related purposes (CWE-807). Use getpwuid(geteuid())
and extract the desired information instead.
_GL_CXXALIASWARN (getlogin);
data/amanda-3.5.1/gnulib/unistd.in.h:785:9: [4] (misc) getlogin:
It's often easy to fool getlogin. Sometimes it does not work at all,
because some program messed up the utmp file. Often, it gives only the
first 8 characters of the login name. The user currently logged in on the
controlling tty of our program need not be the user who started it. Avoid
getlogin() for security-related purposes (CWE-807). Use getpwuid(geteuid())
and extract the desired information instead.
# undef getlogin
data/amanda-3.5.1/gnulib/unistd.in.h:787:18: [4] (misc) getlogin:
It's often easy to fool getlogin. Sometimes it does not work at all,
because some program messed up the utmp file. Often, it gives only the
first 8 characters of the login name. The user currently logged in on the
controlling tty of our program need not be the user who started it. Avoid
getlogin() for security-related purposes (CWE-807). Use getpwuid(geteuid())
and extract the desired information instead.
_GL_WARN_ON_USE (getlogin, "getlogin is unportable - "
data/amanda-3.5.1/gnulib/vasnprintf.c:162:20: [4] (buffer) swprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
# define SNPRINTF swprintf
data/amanda-3.5.1/gnulib/vasnprintf.c:180:21: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
# define SNPRINTF snprintf
data/amanda-3.5.1/gnulib/vasnprintf.c:182:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
# undef snprintf
data/amanda-3.5.1/gnulib/vasnprintf.c:184:21: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
# define SNPRINTF _snprintf
data/amanda-3.5.1/gnulib/vasnprintf.c:188:20: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
# define SNPRINTF snprintf
data/amanda-3.5.1/gnulib/vasnprintf.c:190:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
# undef snprintf
data/amanda-3.5.1/gnulib/vasnprintf.c:194:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#undef sprintf
data/amanda-3.5.1/gnulib/vasnprintf.c:4256:39: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf ((char *) p, decimal_format, exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:4264:39: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (expbuf, decimal_format, exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:4449:47: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf ((char *) p, decimal_format, exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:4457:47: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (expbuf, decimal_format, exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:4969:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
count = sprintf (tmp, buf, arg); \
data/amanda-3.5.1/gnulib/vasnprintf.c:4972:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
count = sprintf (tmp, buf, prefixes[0], arg); \
data/amanda-3.5.1/gnulib/vasnprintf.c:4975:33: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
count = sprintf (tmp, buf, prefixes[0], prefixes[1],\
data/amanda-3.5.1/gnulib/wchar.in.h:605:19: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
_GL_FUNCDECL_SYS (wcscpy, wchar_t *, (wchar_t *dest, const wchar_t *src));
data/amanda-3.5.1/gnulib/wchar.in.h:607:19: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
_GL_CXXALIAS_SYS (wcscpy, wchar_t *, (wchar_t *dest, const wchar_t *src));
data/amanda-3.5.1/gnulib/wchar.in.h:608:19: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
_GL_CXXALIASWARN (wcscpy);
data/amanda-3.5.1/gnulib/wchar.in.h:610:9: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
# undef wcscpy
data/amanda-3.5.1/gnulib/wchar.in.h:612:18: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
_GL_WARN_ON_USE (wcscpy, "wcscpy is unportable - "
data/amanda-3.5.1/gnulib/wchar.in.h:674:19: [4] (buffer) wcscat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120).
_GL_FUNCDECL_SYS (wcscat, wchar_t *, (wchar_t *dest, const wchar_t *src));
data/amanda-3.5.1/gnulib/wchar.in.h:676:19: [4] (buffer) wcscat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120).
_GL_CXXALIAS_SYS (wcscat, wchar_t *, (wchar_t *dest, const wchar_t *src));
data/amanda-3.5.1/gnulib/wchar.in.h:677:19: [4] (buffer) wcscat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120).
_GL_CXXALIASWARN (wcscat);
data/amanda-3.5.1/gnulib/wchar.in.h:679:9: [4] (buffer) wcscat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120).
# undef wcscat
data/amanda-3.5.1/gnulib/wchar.in.h:681:18: [4] (buffer) wcscat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120).
_GL_WARN_ON_USE (wcscat, "wcscat is unportable - "
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:1542:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (sess->data_acb.bu_type, request->bu_type);
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:1600:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (sess->data_acb.bu_type, request->bu_type);
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:1748:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (sess->data_acb.bu_type, request->bu_type);
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2903:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (prefix, "%cLM%s", ref_conn->chan.name[1], tag);
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2928:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (prefix, "%cLM%s", ref_conn->chan.name[1], tag);
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2982:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (prefix, "%cLM%s", ref_conn->chan.name[1], tag);
data/amanda-3.5.1/ndmp-src/ndma_comm_job.c:45:32: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
#define ERROR(S) { if (errbuf) strcpy(errbuf, (S)); RETERR }
data/amanda-3.5.1/ndmp-src/ndma_cops_labels.c:157:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (me->label, labbuf);
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:210:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, ndmp2_auth_type_to_str (atyp));
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:259:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, ndmp3_auth_type_to_str (atyp));
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:307:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, ndmp4_auth_type_to_str (atyp));
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:351:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, ndmp2_mover_addr_type_to_str (val));
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:379:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, ndmp3_addr_type_to_str (val));
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:406:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, ndmp4_addr_type_to_str (val));
data/amanda-3.5.1/ndmp-src/ndma_ctrl_media.c:435:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "##ndmjob -%c %s", type, labbuf);
data/amanda-3.5.1/ndmp-src/ndma_ctst_data.c:371:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (errbuf, "expected %s got %s",
data/amanda-3.5.1/ndmp-src/ndma_ctst_data.c:381:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (errbuf, "expected %s got %s",
data/amanda-3.5.1/ndmp-src/ndma_ctst_data.c:399:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmpbuf, "%s: %s", what, errbuf);
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:555:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (errbuf, "expected %s got %s",
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:565:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (errbuf, "expected %s got %s",
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:574:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (errbuf, "expected %s got %s",
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:592:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmpbuf, "%s: %s", what, errbuf);
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:225:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmpbuf, "got %s (error expected)", ndmp9_error_to_str (reply_error));
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:309:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(tmpbuf, "got %s (call)", ndmp9_error_to_str (reply_error));
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:335:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(test_name_buf, "%s/%s", test_name, sub_test_name);
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:337:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(test_name_buf, test_name);
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:354:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(warn_msg_buf, warn_msg);
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:365:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fail_msg_buf, fail_msg);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:655:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "Passed tape write %s", note);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:668:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "Failed %s recno=%d; %s", what, recno, note);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:758:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "Passed tape read %s", note);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:771:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "Failed %s recno=%d; %s", what, recno, note);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:944:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "Passed %s", note);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:954:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "Failed %s: %s", what, note);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:992:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "Failed %s while testing %s", oper, what);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:1004:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, " note: %s", note);
data/amanda-3.5.1/ndmp-src/ndma_data.c:116:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (buf, envtab->env[i].name);
data/amanda-3.5.1/ndmp-src/ndma_data.c:118:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, envtab->env[i].value);
data/amanda-3.5.1/ndmp-src/ndma_data.c:157:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (cmd, da->bu_type);
data/amanda-3.5.1/ndmp-src/ndma_data.c:192:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (cmd, da->bu_type);
data/amanda-3.5.1/ndmp-src/ndma_data.c:228:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (cmd, da->bu_type);
data/amanda-3.5.1/ndmp-src/ndma_data.c:732:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf (buf, sizeof(buf), fmt, ap);
data/amanda-3.5.1/ndmp-src/ndma_data_pfe.c:124:3: [4] (shell) execl:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execl ("/bin/sh", "sh", "-c", cmd, NULL);
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:377:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (reason, "IS %s_LISTEN: ", mine_ep->name);
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:382:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (reason_end, "%s not idle", mine_ep->name);
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:387:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (reason_end, "%s not idle", peer_ep->name);
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:428:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (reason, "IS %s_CONNECT: ", mine_ep->name);
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:433:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (reason_end, "%s not idle", mine_ep->name);
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:441:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (reason_end, "LOCAL %s not LISTEN",
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:447:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (reason_end, "LOCAL %s not LOCAL",
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:456:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (reason_end, "LOCAL %s not IDLE",
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:701:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (reason, "IS %s_START: ", mine_ep->name);
data/amanda-3.5.1/ndmp-src/ndma_noti_calls.c:136:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf (buf, sizeof(buf), fmt, ap);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:907:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (env_name, "NDMJOB_%s", arg+2);
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:283:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (p, p+1);
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:287:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (p, p+2);
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:315:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (dest, C_chdir);
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:320:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (dest, file_arg_new[i]);
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:334:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (dest, C_chdir);
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:340:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (dest, file_arg[i]);
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:77:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (cmd, "LC_ALL=C sort %s -o %s\n", I_index_file, I_index_file);
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:80:7: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (system (cmd) < 0)
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:96:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf (buf, sizeof(buf), fmt, ap);
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:111:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "%s(%d)", tag, (int)getpid());
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:112:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (tagbuf, "%-11s", buf);
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:114:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (tagbuf, "%-4s", tag);
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:145:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf (buf, sizeof(buf), fmt, ap);
data/amanda-3.5.1/ndmp-src/ndml_chan.c:493:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (bp, "name=%s", ch->name); while (*bp) bp++;
data/amanda-3.5.1/ndmp-src/ndml_chan.c:507:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (bp, " %s ", p);
data/amanda-3.5.1/ndmp-src/ndml_log.c:80:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf (buf, sizeof(buf), fmt, ap);
data/amanda-3.5.1/ndmp-src/ndml_log.c:91:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf (buf, sizeof(buf), fmt, ap);
data/amanda-3.5.1/ndmp-src/ndml_media.c:132:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (q, me->label);
data/amanda-3.5.1/ndmp-src/ndml_media.c:175:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "valid label=%s filemark=%s n_bytes=%s slot=%s",
data/amanda-3.5.1/ndmp-src/ndml_media.c:183:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "media used=%s written=%s eof=%s eom=%s io_error=%s",
data/amanda-3.5.1/ndmp-src/ndml_media.c:192:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "label read=%s written=%s io_error=%s mismatch=%s",
data/amanda-3.5.1/ndmp-src/ndml_media.c:200:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "fm_error=%s nb_determined=%s nb_aligned=%s",
data/amanda-3.5.1/ndmp-src/ndml_media.c:207:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "slot empty=%s bad=%s missing=%s",
data/amanda-3.5.1/ndmp-src/ndml_scsi.c:73:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (targ->dev_name, str);
data/amanda-3.5.1/ndmp-src/ndmos_common.c:88:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (osbuf, "%s (running %s from %s)",
data/amanda-3.5.1/ndmp-src/ndmos_common.c:101:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (revbuf, "%s LIB:%d.%d/%s OS:%s (%s)",
data/amanda-3.5.1/ndmp-src/ndmp0_pp.c:50:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "C %s %lu",
data/amanda-3.5.1/ndmp-src/ndmp0_pp.c:54:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "R %s %lu (%lu)",
data/amanda-3.5.1/ndmp-src/ndmp0_pp.c:59:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " %s",
data/amanda-3.5.1/ndmp-src/ndmp0_pp.c:90:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s protocol_version=%d text_reason='%s'",
data/amanda-3.5.1/ndmp-src/ndmp0_pp.c:110:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s", ndmp0_error_to_str(*p));
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:51:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "C %s %lu",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:55:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "R %s %lu (%lu)",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:60:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " %s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:74:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "%s", ndmp2_mover_addr_type_to_str (ma->addr_type));
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:103:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "auth_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:110:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " auth_id=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:115:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " auth_id=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:153:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "bu_type='%s'", p->name);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:159:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "auth_type=%s", ndmp2_auth_type_to_str (p->auth_type));
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:165:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "device='%s'", p->device.name);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:171:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "device='%s' cont=%d sid=%d lun=%d",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:198:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "device='%s' mode=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:206:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "op=%s count=%ld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:227:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "bu_type='%s' n_env=%d mover=",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:233:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "env[%d] name='%s' value='%s'",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:248:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "bu_type='%s' n_env=%d n_nlist=%d mover=",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:255:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "env[%d] name='%s' value='%s'",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:261:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf,
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:278:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s text_reason='%s'",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:286:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s protocol_version=%d text_reason='%s'",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:295:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s text_reason='%s'",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:303:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s seek_position=%lld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:318:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "entry='%s'", p->entry);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:324:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "level=%s message='%s'",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:331:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "file=%s error=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:347:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "[%d] %-15s %7llu %s [%lld]", i,
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:370:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "[%d] %lu %lu %s", i,
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:390:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "[%d] %-15s %7llu %lu [%lld]", i,
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:405:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "mode=%s addr_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:467:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s", ndmp2_error_to_str(*p));
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:482:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "error=%s hostname=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:486:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 1: sprintf (buf, "os_type=%s os_vers=%s hostid=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:491:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " %s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:507:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s attrs=0x%lx",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:515:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s methods[%d]={",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:519:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " %s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:532:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s cont=%d sid=%d lun=%d",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:543:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf,
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:563:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "error=%s flags=0x%lx file_num=%ld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:583:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s resid_count=%ld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:590:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s count=%ld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:597:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s data_in_len=%d",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:605:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "error=%s op=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:609:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 1: sprintf (buf, "state=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:612:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 2: sprintf (buf, "halt_reason=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:636:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s n_env=%d",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:642:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "[%d] name='%s' value='%s'",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:670:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "error=%s state=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:674:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 1: sprintf (buf, "pause_reason=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:677:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 2: sprintf (buf, "halt_reason=%s",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:697:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s mover=", ndmp2_error_to_str(p->error));
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:51:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "C %s %lu",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:55:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "R %s %lu (%lu)",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:60:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " %s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:74:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "%s", ndmp3_addr_type_to_str (ma->addr_type));
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:103:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "auth_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:105:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "auth_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:112:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " auth_id=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:117:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " auth_id=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:160:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "auth_type=%s", ndmp3_auth_type_to_str (p->auth_type));
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:166:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "device='%s'", p->device);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:172:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "device='%s' cont=%d sid=%d lun=%d",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:199:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "device='%s' mode=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:207:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "op=%s count=%ld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:228:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "bu_type='%s' n_env=%d",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:233:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "env[%d] name='%s' value='%s'",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:248:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "bu_type='%s' n_env=%d n_nlist=%d",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:254:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "env[%d] name='%s' value='%s'",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:264:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "nl[%d] original_path='%s'",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:268:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "..... destination_dir='%s'",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:272:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "..... new_name='%s' other='%s'",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:291:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "addr_type=%s", ndmp3_addr_type_to_str (p->addr_type));
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:304:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s text_reason='%s'",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:312:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s protocol_version=%d text_reason='%s'",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:321:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s text_reason='%s'",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:329:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s seek_position=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:344:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "file=%s error=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:352:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "log_type=%s id=%lu message='%s'",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:410:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, " name[%d] fs_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:415:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " other=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:420:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " unix=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:425:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf)," nt=%s dos=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:441:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, " stat[%ud] fs_type=%s ftype=%s size=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:505:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, " name[%ud] fs_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:510:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " other=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:515:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " unix=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:520:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf)," nt=%s dos=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:583:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, " stat[%ud] fs_type=%s ftype=%s size=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:599:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "mode=%s addr_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:625:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "mode=%s addr=", ndmp3_mover_mode_to_str (p->mode));
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:671:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s", ndmp3_error_to_str(*p));
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:677:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s addr_types[%d]={",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:681:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " %s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:707:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "error=%s hostname=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:711:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 1: sprintf (buf, "os_type=%s os_vers=%s hostid=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:728:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s cont=%d sid=%d lun=%d",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:739:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf,
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:759:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "invalid=%lx error=%s flags=0x%lx file_num=%ld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:780:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s resid_count=%ld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:787:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s count=%ld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:794:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s data_in_len=%d",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:802:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "invalid=%lx error=%s op=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:807:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 1: sprintf (buf, "state=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:810:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 2: sprintf (buf, "halt_reason=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:835:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s n_env=%d",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:841:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "[%d] name='%s' value='%s'",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:868:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "error=%s state=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:872:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 1: sprintf (buf, "pause_reason=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:875:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 2: sprintf (buf, "halt_reason=%s",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:899:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s mover_conn_addr=",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:907:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s data_conn_addr=",
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2270:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (buf, name3->destination_dir);
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2273:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, name3->new_name);
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2291:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (buf, name3->original_path);
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2294:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, name3->new_name);
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2301:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (buf, name3->destination_dir);
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2304:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, name3->new_name);
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2307:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (buf, name3->destination_dir);
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2310:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, name3->original_path);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:51:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "C %s %lu",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:55:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "R %s %lu (%lu)",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:60:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " %s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:77:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "%s", ndmp4_addr_type_to_str (ma->addr_type));
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:85:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), ",%s=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:115:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "auth_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:117:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "auth_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:124:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " auth_id=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:129:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " auth_id=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:170:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "auth_type=%s", ndmp4_auth_type_to_str (p->auth_type));
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:176:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "device='%s'", p->device);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:211:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "device='%s' mode=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:219:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "op=%s count=%ld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:240:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "butype_name='%s' n_env=%d",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:245:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "env[%d] name='%s' value='%s'",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:260:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "butype_name='%s' n_env=%d n_nlist=%d",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:266:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "env[%d] name='%s' value='%s'",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:276:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "nl[%d] original_path='%s'",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:280:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "..... destination_path='%s'",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:284:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "..... name='%s' other='%s'",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:303:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "addr_type=%s", ndmp4_addr_type_to_str (p->addr_type));
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:316:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s", ndmp4_data_halt_reason_to_str(p->reason));
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:322:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s protocol_version=%d text_reason='%s'",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:331:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s", ndmp4_mover_halt_reason_to_str(p->reason));
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:337:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "reason=%s seek_position=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:352:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "file=%s recovery_status=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:360:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "log_type=%s id=%lu message='%s'",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:418:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, " name[%ud] fs_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:423:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " other=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:428:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " unix=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:433:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf)," nt=%s dos=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:449:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, " stat[%d] fs_type=%s ftype=%s size=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:513:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, " name[%d] fs_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:518:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " other=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:523:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " unix=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:528:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf)," nt=%s dos=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:591:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, " stat[%ud] fs_type=%s ftype=%s size=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:607:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "mode=%s addr_type=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:633:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "mode=%s addr=", ndmp4_mover_mode_to_str (p->mode));
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:679:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s", ndmp4_error_to_str(*p));
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:694:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "error=%s hostname=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:698:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 1: sprintf (buf, "os_type=%s os_vers=%s hostid=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:711:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s addr_types[%d]={",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:715:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (NDMOS_API_STREND(buf), " %s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:735:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s cont=%d sid=%d lun=%d",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:746:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf,
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:766:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "unsupp=%lx error=%s flags=0x%lx file_num=%ld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:787:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s resid_count=%ld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:794:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s count=%ld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:801:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s data_in_len=%d",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:809:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "unsupp=%lx error=%s op=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:814:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 1: sprintf (buf, "state=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:817:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 2: sprintf (buf, "halt_reason=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:842:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s n_env=%d",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:848:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "[%d] name='%s' value='%s'",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:875:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 0: sprintf (buf, "error=%s state=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:879:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 1: sprintf (buf, "pause_reason=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:882:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
case 2: sprintf (buf, "halt_reason=%s",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:906:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "error=%s data_conn_addr=",
data/amanda-3.5.1/ndmp-src/ndmp4_translate.c:2303:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (buf, name4->destination_path);
data/amanda-3.5.1/ndmp-src/ndmp4_translate.c:2306:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (buf, name4->name);
data/amanda-3.5.1/ndmp-src/smc_pp.c:80:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (buf, "@%-3d %-4s",
data/amanda-3.5.1/ndmp-src/smc_pp.c:103:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (strend(buf), " PVolTag(%s,#%d)",
data/amanda-3.5.1/ndmp-src/smc_pp.c:113:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (*buf && nline++ == lineno) strcpy (ret_buf, buf);
data/amanda-3.5.1/ndmp-src/smc_pp.c:119:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (buf, INDENT_SPACES "AVolTag(%s,#%d)",
data/amanda-3.5.1/ndmp-src/smc_pp.c:124:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (*buf && nline++ == lineno) strcpy (ret_buf, buf);
data/amanda-3.5.1/ndmp-src/smc_pp.c:128:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (buf, INDENT_SPACES "SValid(src=%d,%sinvert)",
data/amanda-3.5.1/ndmp-src/smc_pp.c:133:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (*buf && nline++ == lineno) strcpy (ret_buf, buf);
data/amanda-3.5.1/ndmp-src/smc_pp.c:137:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (buf, INDENT_SPACES);
data/amanda-3.5.1/ndmp-src/smc_pp.c:154:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (*buf && nline++ == lineno) strcpy (ret_buf, buf);
data/amanda-3.5.1/ndmp-src/smc_pp.c:158:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (buf, INDENT_SPACES);
data/amanda-3.5.1/ndmp-src/smc_pp.c:176:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (*buf && nline++ == lineno) strcpy (ret_buf, buf);
data/amanda-3.5.1/ndmp-src/wraplib.c:83:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (wccb->errmsg, "failed fdopen %s", filename);
data/amanda-3.5.1/ndmp-src/wraplib.c:89:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (wccb->errmsg, "failed open %s", filename);
data/amanda-3.5.1/ndmp-src/wraplib.c:140:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (wccb->errmsg, "failed open %s", filename);
data/amanda-3.5.1/ndmp-src/wraplib.c:162:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf (buf+5, sizeof(buf)-5, fmt, ap);
data/amanda-3.5.1/ndmp-src/wraplib.c:319:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (wccb->errmsg, "malformed fhinfo %s", p);
data/amanda-3.5.1/ndmp-src/wraplib.c:334:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(wccb->errmsg,"malformed fhinfo %s",p);
data/amanda-3.5.1/ndmp-src/wraplib.c:519:3: [4] (shell) execl:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execl ("/bin/sh", "sh", "-c", cmd, NULL);
data/amanda-3.5.1/oldrecover-src/display_commands.c:306:15: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((fp = popen(pager_command, "w")) == NULL)
data/amanda-3.5.1/oldrecover-src/extract_list.c:1194:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((fp = popen(pager_command, "w")) == NULL)
data/amanda-3.5.1/oldrecover-src/extract_list.c:1858:15: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
(void)execv(cmd, (char **)argv_ptr->pdata);
data/amanda-3.5.1/oldrecover-src/uparse.c:681:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define YYFPRINTF fprintf
data/amanda-3.5.1/perl/Amanda/Application.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Application.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Application.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Application.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Archive.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Archive.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Archive.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Archive.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Cmdline.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Config.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Config.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Config.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Config.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Debug.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Debug.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Debug.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Debug.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Device.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Device.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Device.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Device.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Device.c:3815:25: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
newSViv(prop->access), 0);
data/amanda-3.5.1/perl/Amanda/Disklist.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Disklist.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Disklist.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Disklist.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Feature.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Feature.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Feature.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Feature.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Header.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Header.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Header.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Header.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Logfile.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Logfile.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Logfile.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Logfile.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/MainLoop.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/MainLoop.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/MainLoop.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/MainLoop.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/NDMP.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/NDMP.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/NDMP.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/NDMP.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Tapelist.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Tests.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Tests.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Tests.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Tests.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Util.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Util.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Util.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Util.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/Xfer.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/Xfer.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/Xfer.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/Xfer.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/perl/Amanda/XferServer.c:667:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,name);
data/amanda-3.5.1/perl/Amanda/XferServer.c:1254:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(r,SWIG_Perl_TypeProxyName(type));
data/amanda-3.5.1/perl/Amanda/XferServer.c:1482:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#ifdef access
data/amanda-3.5.1/perl/Amanda/XferServer.c:1483:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
#undef access
data/amanda-3.5.1/recover-src/display_commands.c:317:15: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((fp = popen(pager_command, "w")) == NULL)
data/amanda-3.5.1/recover-src/extract_list.c:1543:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ((fp = popen(pager_command, "w")) == NULL)
data/amanda-3.5.1/recover-src/extract_list.c:2211:15: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
(void)execv(cmd, (char **)argv_ptr->pdata);
data/amanda-3.5.1/recover-src/uparse.c:781:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define YYFPRINTF fprintf
data/amanda-3.5.1/server-src/amadmin.c:495:5: [4] (shell) execvp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execvp(amadmin_perl, argv_orig);
data/amanda-3.5.1/server-src/amcheck.c:744:13: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (access(tapefile, F_OK) != 0) {
data/amanda-3.5.1/server-src/amcheck.c:750:13: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (access(tapefile, W_OK) != 0) {
data/amanda-3.5.1/server-src/amcheck.c:783:16: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (access(pgm, X_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:976:7: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(lbl_templ, R_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1078:5: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(amlibexecdir, X_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1100:5: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(sbindir, X_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1118:5: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(COMPRESS_PATH, X_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1156:5: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(tape_dir, W_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1199:5: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(holdfile, F_OK) != -1) {
data/amanda-3.5.1/server-src/amcheck.c:1369:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(holdingdisk_get_diskdir(hdp), W_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1376:14: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
else if(access(holdingdisk_get_diskdir(hdp), X_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1459:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
else if(access(conf_logdir, W_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1475:24: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(logbad == 0 && access(olddir, W_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1630:13: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (access(conf_infofile, W_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1673:14: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (access(hostinfodir, W_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1707:18: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (access(diskdir, W_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1729:18: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (access(infofile, R_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1758:15: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (access(conf_indexdir, W_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1791:19: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (access(hostindexdir, W_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1823:19: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
} else if (access(diskdir, W_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1841:13: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
else if(access(dp->srv_encrypt, X_OK) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:1854:13: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
else if(access(dp->srvcompprog, X_OK) == -1) {
data/amanda-3.5.1/server-src/amindexd.c:211:3: [4] (shell) execlp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execlp(COMPRESS_PATH, COMPRESS_PATH, COMPRESS_BEST_OPT, compress->filename, NULL);
data/amanda-3.5.1/server-src/amindexd.c:285:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(old_line, line);
data/amanda-3.5.1/server-src/driver.c:384:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(logfile, F_OK) == 0 || access(oldlogfile, F_OK) == 0) {
data/amanda-3.5.1/server-src/driver.c:384:39: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(logfile, F_OK) == 0 || access(oldlogfile, F_OK) == 0) {
data/amanda-3.5.1/server-src/driver.c:442:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
|| access(holdingdisk_get_diskdir(hdp), W_OK) == -1) {
data/amanda-3.5.1/server-src/dumper.c:3187:6: [4] (shell) execlp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execlp(COMPRESS_PATH, COMPRESS_PATH, ( comptype == COMP_BEST ?
data/amanda-3.5.1/server-src/dumper.c:3198:6: [4] (shell) execlp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execlp(srvcompprog, srvcompprog, (char *)0);
data/amanda-3.5.1/server-src/dumper.c:3296:6: [4] (shell) execlp:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execlp(srv_encrypt, srv_encrypt, (char *)0);
data/amanda-3.5.1/server-src/find.c:98:9: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(logfile, R_OK) != 0) break;
data/amanda-3.5.1/server-src/find.c:110:5: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(logfile,R_OK) == 0) {
data/amanda-3.5.1/server-src/find.c:121:5: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if(access(logfile,R_OK) == 0) {
data/amanda-3.5.1/server-src/find.c:174:10: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(pathlogfile, R_OK) != 0) break;
data/amanda-3.5.1/server-src/find.c:193:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(pathlogfile, R_OK) == 0) {
data/amanda-3.5.1/server-src/find.c:210:6: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access(pathlogfile, R_OK) == 0) {
data/amanda-3.5.1/server-src/holding.c:1050:11: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
else if (access(diskdir,W_OK) != 0) {
data/amanda-3.5.1/amar-src/amarchiver.c:369:10: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
int c = getopt_long (argc, argv, "", long_options, &option_index);
data/amanda-3.5.1/application-src/ambsdtar.c:396:6: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long (argc, argv, "", long_options, &option_index);
data/amanda-3.5.1/application-src/amgtar.c:453:6: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long (argc, argv, "", long_options, &option_index);
data/amanda-3.5.1/application-src/amstar.c:413:6: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long (argc, argv, "", long_options, &option_index);
data/amanda-3.5.1/client-src/client_util.c:1678:20: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
*my_realpath = realpath(filename, tmp_realpath);
data/amanda-3.5.1/client-src/client_util.c:1757:20: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
*my_realpath = realpath(filename, tmp_realpath);
data/amanda-3.5.1/common-src/alloc.c:123:15: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((v = getenv(*p)) == NULL) {
data/amanda-3.5.1/common-src/amanda.h:729:12: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
extern int getopt(int argc, char * const *argv, const char *optstring);
data/amanda-3.5.1/common-src/amservice.c:167:18: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt = getopt_long(argc, argv, "o:f:s", long_options, NULL)) != EOF) {
data/amanda-3.5.1/common-src/security-file.c:263:21: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
sec_real_path = realpath(DEFAULT_SECURITY_FILE, security_real_path);
data/amanda-3.5.1/common-src/ssh-security.c:222:22: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
ssh_connection = getenv("SSH_CONNECTION");
data/amanda-3.5.1/contrib/gsc/cfggsc.c:93:17: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(a, v, "l:12v")) != EOF) {
data/amanda-3.5.1/contrib/gsc/defgsc.c:67:17: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(a, v, "p:w:c:s:t:")) != EOF) {
data/amanda-3.5.1/contrib/gsc/ucfggsc.c:71:17: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc,argv,"vl:")) != EOF) {
data/amanda-3.5.1/gnulib/getopt.c:101:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
extern char *getenv ();
data/amanda-3.5.1/gnulib/getopt.c:237:47: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
d->__posixly_correct = posixly_correct || !!getenv ("POSIXLY_CORRECT");
data/amanda-3.5.1/gnulib/getopt.c:1187:1: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
getopt (int argc, char *const *argv, const char *optstring)
data/amanda-3.5.1/gnulib/getopt.c:1222:11: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt (argc, argv, "abc:d:0123456789");
data/amanda-3.5.1/gnulib/getopt.in.h:59:9: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
# undef getopt
data/amanda-3.5.1/gnulib/getopt.in.h:60:9: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
# undef getopt_long
data/amanda-3.5.1/gnulib/getopt.in.h:70:10: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
# define getopt __GETOPT_ID (getopt)
data/amanda-3.5.1/gnulib/getopt.in.h:70:30: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
# define getopt __GETOPT_ID (getopt)
data/amanda-3.5.1/gnulib/getopt.in.h:71:10: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
# define getopt_long __GETOPT_ID (getopt_long)
data/amanda-3.5.1/gnulib/getopt.in.h:71:35: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
# define getopt_long __GETOPT_ID (getopt_long)
data/amanda-3.5.1/gnulib/getopt.in.h:232:12: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
extern int getopt (int ___argc, char *const *___argv, const char *__shortopts)
data/amanda-3.5.1/gnulib/getopt.in.h:236:12: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
extern int getopt_long (int ___argc, char *__getopt_argv_const *___argv,
data/amanda-3.5.1/gnulib/getopt1.c:40:1: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
getopt_long (int argc, char *__getopt_argv_const *argv, const char *options,
data/amanda-3.5.1/gnulib/getopt1.c:105:11: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long (argc, argv, "abc:d:0123456789",
data/amanda-3.5.1/gnulib/glthread/lock.c:639:3: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection (&lock->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:657:3: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection (&lock->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:776:3: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection (&lock->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:797:3: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection (&lock->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:827:15: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection (&lock->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:851:3: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection (&lock->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:880:15: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection (&lock->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:895:3: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection (&lock->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:957:3: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection (&lock->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:979:9: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection (&lock->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:1026:11: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
InitializeCriticalSection (&once_control->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:1027:11: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection (&once_control->lock);
data/amanda-3.5.1/gnulib/glthread/lock.c:1046:15: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
EnterCriticalSection (&once_control->lock);
data/amanda-3.5.1/gnulib/localcharset.c:138:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
dir = getenv ("CHARSETALIASDIR");
data/amanda-3.5.1/gnulib/localcharset.c:414:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
locale = getenv ("LC_ALL");
data/amanda-3.5.1/gnulib/localcharset.c:417:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
locale = getenv ("LC_CTYPE");
data/amanda-3.5.1/gnulib/localcharset.c:419:22: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
locale = getenv ("LANG");
data/amanda-3.5.1/gnulib/localcharset.c:475:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
locale = getenv ("LC_ALL");
data/amanda-3.5.1/gnulib/localcharset.c:478:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
locale = getenv ("LC_CTYPE");
data/amanda-3.5.1/gnulib/localcharset.c:480:22: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
locale = getenv ("LANG");
data/amanda-3.5.1/gnulib/localcharset.c:536:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
locale = getenv ("LC_ALL");
data/amanda-3.5.1/gnulib/localcharset.c:539:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
locale = getenv ("LC_CTYPE");
data/amanda-3.5.1/gnulib/localcharset.c:541:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
locale = getenv ("LANG");
data/amanda-3.5.1/gnulib/secure_getenv.c:39:10: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
return getenv (name);
data/amanda-3.5.1/gnulib/stdlib.in.h:558:19: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_FUNCDECL_SYS (random, long, (void));
data/amanda-3.5.1/gnulib/stdlib.in.h:560:19: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_CXXALIAS_SYS (random, long, (void));
data/amanda-3.5.1/gnulib/stdlib.in.h:561:19: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_CXXALIASWARN (random);
data/amanda-3.5.1/gnulib/stdlib.in.h:563:9: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
# undef random
data/amanda-3.5.1/gnulib/stdlib.in.h:565:18: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_WARN_ON_USE (random, "random is unportable - "
data/amanda-3.5.1/gnulib/stdlib.in.h:572:19: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_FUNCDECL_SYS (srandom, void, (unsigned int seed));
data/amanda-3.5.1/gnulib/stdlib.in.h:574:19: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_CXXALIAS_SYS (srandom, void, (unsigned int seed));
data/amanda-3.5.1/gnulib/stdlib.in.h:575:19: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_CXXALIASWARN (srandom);
data/amanda-3.5.1/gnulib/stdlib.in.h:577:9: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
# undef srandom
data/amanda-3.5.1/gnulib/stdlib.in.h:579:18: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_WARN_ON_USE (srandom, "srandom is unportable - "
data/amanda-3.5.1/gnulib/stdlib.in.h:603:19: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_FUNCDECL_SYS (setstate, char *, (char *arg_state) _GL_ARG_NONNULL ((1)));
data/amanda-3.5.1/gnulib/stdlib.in.h:605:19: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_CXXALIAS_SYS (setstate, char *, (char *arg_state));
data/amanda-3.5.1/gnulib/stdlib.in.h:606:19: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_CXXALIASWARN (setstate);
data/amanda-3.5.1/gnulib/stdlib.in.h:608:9: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
# undef setstate
data/amanda-3.5.1/gnulib/stdlib.in.h:610:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
_GL_WARN_ON_USE (setstate, "setstate is unportable - "
data/amanda-3.5.1/gnulib/stdlib.in.h:756:12: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
# define realpath rpl_realpath
data/amanda-3.5.1/gnulib/stdlib.in.h:758:19: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
_GL_FUNCDECL_RPL (realpath, char *, (const char *name, char *resolved)
data/amanda-3.5.1/gnulib/stdlib.in.h:760:19: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
_GL_CXXALIAS_RPL (realpath, char *, (const char *name, char *resolved));
data/amanda-3.5.1/gnulib/stdlib.in.h:763:19: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
_GL_FUNCDECL_SYS (realpath, char *, (const char *name, char *resolved)
data/amanda-3.5.1/gnulib/stdlib.in.h:766:19: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
_GL_CXXALIAS_SYS (realpath, char *, (const char *name, char *resolved));
data/amanda-3.5.1/gnulib/stdlib.in.h:768:19: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
_GL_CXXALIASWARN (realpath);
data/amanda-3.5.1/gnulib/stdlib.in.h:770:9: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
# undef realpath
data/amanda-3.5.1/gnulib/stdlib.in.h:772:18: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
_GL_WARN_ON_USE (realpath, "realpath is unportable - use gnulib module "
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:173:11: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((p = getenv ("NDMJOB_CONF")) != 0) {
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:195:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt (ac, av, options)) != EOF) {
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:908:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((p = getenv (env_name)) != 0) {
data/amanda-3.5.1/ndmp-src/ndmos.h:329:29: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
#define NDMOS_MACRO_SRAND() srand(time(0))
data/amanda-3.5.1/ndmp-src/ndmos_glib.h:84:28: [3] (random) g_random_int:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
#define NDMOS_MACRO_RAND() g_random_int()
data/amanda-3.5.1/ndmp-src/wraplib.c:214:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt (argc, argv, "cxtB:d:I:E:f:o:")) != EOF) {
data/amanda-3.5.1/oldrecover-src/amrecover.c:452:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
server_name = getenv("AMANDA_SERVER");
data/amanda-3.5.1/oldrecover-src/amrecover.c:457:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
tape_server_name = getenv("AMANDA_TAPESERVER");
data/amanda-3.5.1/oldrecover-src/amrecover.c:490:17: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((i = getopt(argc, argv, "C:s:t:d:U")) != EOF)
data/amanda-3.5.1/oldrecover-src/display_commands.c:297:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((pager = getenv("PAGER")) == NULL)
data/amanda-3.5.1/oldrecover-src/extract_list.c:1185:15: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((pager = getenv("PAGER")) == NULL)
data/amanda-3.5.1/recover-src/amrecover.c:387:17: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((i = getopt_long(argc, argv, "o:C:s:t:d:Uh:", long_options, NULL)) != EOF) {
data/amanda-3.5.1/recover-src/amrecover.c:467:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
server_name = getenv("AMANDA_SERVER");
data/amanda-3.5.1/recover-src/amrecover.c:486:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
tape_server_name = getenv("AMANDA_TAPE_SERVER");
data/amanda-3.5.1/recover-src/amrecover.c:488:25: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
tape_server_name = getenv("AMANDA_TAPESERVER");
data/amanda-3.5.1/recover-src/display_commands.c:308:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((pager = getenv("PAGER")) == NULL)
data/amanda-3.5.1/recover-src/extract_list.c:1534:15: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((pager = getenv("PAGER")) == NULL)
data/amanda-3.5.1/server-src/amadmin.c:209:13: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long(argc, argv, "ld", long_options, &option_index);
data/amanda-3.5.1/server-src/amcheck.c:258:6: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long (argc, argv, "M:mawsclto:", long_options, &option_index);
data/amanda-3.5.1/server-src/amindexd.c:500:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
peer = getenv("AMANDA_AUTHENTICATED_PEER");
data/amanda-3.5.1/server-src/dumper.c:795:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *A = getenv("DISABLE_NETWORK_SHM");
data/amanda-3.5.1/server-src/dumper.c:824:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *A = getenv("DUMPER_TRY_AGAIN");
data/amanda-3.5.1/server-src/xfer-dest-holding.c:246:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *A = getenv("XFER_DEST_HOLDING_PORT_WRITE_DATA");
data/amanda-3.5.1/server-src/xfer-dest-holding.c:359:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *A = getenv("XFER_DEST_HOLDING_PORT_OPEN_HEADER");
data/amanda-3.5.1/server-src/xfer-dest-holding.c:394:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *A = getenv("XFER_DEST_HOLDING_PORT_WRITE_HEADER");
data/amanda-3.5.1/server-src/xfer-dest-holding.c:570:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *A = getenv("XFER_DEST_HOLDING_SHM_WRITE_DATA");
data/amanda-3.5.1/server-src/xfer-dest-holding.c:684:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *A = getenv("XFER_DEST_HOLDING_SHM_OPEN_HEADER");
data/amanda-3.5.1/server-src/xfer-dest-holding.c:719:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *A = getenv("XFER_DEST_HOLDING_SHM_WRITE_HEADER");
data/amanda-3.5.1/server-src/xfer-dest-holding.c:963:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *A = getenv("XFER_DEST_HOLDING_CLOSE_CHUNK");
data/amanda-3.5.1/server-src/xfer-dest-holding.c:1136:11: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
env = getenv("CHUNKER_FAKE_ENOSPC_AT");
data/amanda-3.5.1/amandad-src/amandad.c:141:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char info_end_buf[INFO_END_LEN]; /* last few bytes read, used for scanning for info end */
data/amanda-3.5.1/amandad-src/amandad.c:160:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char databuf[NETWORK_BLOCK_BYTES]; /* buffer to relay netfd data in */
data/amanda-3.5.1/amandad-src/amandad.c:368:50: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sin.sin6_port = (in_port_t)htons((in_port_t)atoi(argv[i]));
data/amanda-3.5.1/amandad-src/amandad.c:372:49: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sin.sin_port = (in_port_t)htons((in_port_t)atoi(argv[i]));
data/amanda-3.5.1/amandad-src/amandad.c:375:43: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
error(_("can't bind to port %d: %s\n"), atoi(argv[i]),
data/amanda-3.5.1/amandad-src/amandad.c:413:50: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sin.sin6_port = (in_port_t)htons((in_port_t)atoi(argv[i]));
data/amanda-3.5.1/amandad-src/amandad.c:417:49: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sin.sin_port = (in_port_t)htons((in_port_t)atoi(argv[i]));
data/amanda-3.5.1/amandad-src/amandad.c:420:43: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
error(_("can't bind to port %d: %s\n"), atoi(argv[i]),
data/amanda-3.5.1/amandad-src/amandad.c:1160:51: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pkt_cat(&as->rep_pkt, " %d", allocstream(as, atoi(tok)));
data/amanda-3.5.1/amandad-src/amandad.c:1349:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NETWORK_BLOCK_BYTES + 1];
data/amanda-3.5.1/amandad-src/amandad.c:1401:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(as->repbuf + as->repbufsize, s, n);
data/amanda-3.5.1/amandad-src/amandad.c:1522:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(combined_buf, as->info_end_buf, INFO_END_LEN);
data/amanda-3.5.1/amandad-src/amandad.c:1523:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(combined_buf+INFO_END_LEN, as->databuf, n);
data/amanda-3.5.1/amandad-src/amandad.c:1529:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(as->info_end_buf, combined_buf + n, INFO_END_LEN);
data/amanda-3.5.1/amandad-src/amandad.c:1694:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *amanda_remote_host_env[2];
data/amanda-3.5.1/amandad-src/amandad.c:2128:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char str[13];
data/amanda-3.5.1/amandad-src/amandad.c:2155:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char str[12];
data/amanda-3.5.1/amar-src/amar-test.c:41:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hdr[28]; \
data/amanda-3.5.1/amar-src/amar-test.c:282:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open(temp_filename, write? O_WRONLY|O_CREAT|O_TRUNC : O_RDONLY, 0777);
data/amanda-3.5.1/amar-src/amar-test.c:696:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16300];
data/amanda-3.5.1/amar-src/amar-test.c:697:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[16300];
data/amanda-3.5.1/amar-src/amar-test.c:719:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("amar-test.big", O_CREAT|O_WRONLY|O_TRUNC, 0777);
data/amanda-3.5.1/amar-src/amar-test.c:761:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd2 = open("amar-test.big", O_RDONLY);
data/amanda-3.5.1/amar-src/amar-test.c:848:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("amar-test.big", O_CREAT|O_WRONLY|O_TRUNC, 0777);
data/amanda-3.5.1/amar-src/amar-test.c:872:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd2 = open("amar-test.big", O_RDONLY);
data/amanda-3.5.1/amar-src/amar-test.c:932:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("amar-test.big", O_CREAT|O_WRONLY|O_TRUNC, 0777);
data/amanda-3.5.1/amar-src/amar-test.c:960:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open("amar-test.big", O_RDONLY);
data/amanda-3.5.1/amar-src/amar-test.c:1066:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hdr[32];
data/amanda-3.5.1/amar-src/amar-test.c:1069:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr, "AMANDA ARCHIVE FORMAT 2");
data/amanda-3.5.1/amar-src/amar.c:40:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char magic[28];
data/amanda-3.5.1/amar-src/amar.c:59:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, &r, sizeof(record_t)); \
data/amanda-3.5.1/amar-src/amar.c:65:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&r, ptr, sizeof(record_t)); \
data/amanda-3.5.1/amar-src/amar.c:190:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(archive->buf + archive->buf_len, &archive->hdr, HEADER_SIZE);
data/amanda-3.5.1/amar-src/amar.c:215:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(archive->buf + archive->buf_len, data, data_size);
data/amanda-3.5.1/amar-src/amar.c:739:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newbuf, hp->buf+hp->buf_offset, hp->buf_len);
data/amanda-3.5.1/amar-src/amar.c:916:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newbuf, as->buf, as->buf_len);
data/amanda-3.5.1/amar-src/amar.c:922:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(as->buf + as->buf_len, buf, len);
data/amanda-3.5.1/amar-src/amar.c:1287:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_buf, hp->buf + hp->buf_offset, hp->buf_len);
data/amanda-3.5.1/amar-src/amarchiver.c:67:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd_out = open(opt_file, O_CREAT|O_WRONLY|O_TRUNC, 0660);
data/amanda-3.5.1/amar-src/amarchiver.c:81:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd_in = open(argv[i], O_RDONLY);
data/amanda-3.5.1/amar-src/amarchiver.c:223:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_WRONLY|O_CREAT|O_TRUNC, 0660);
data/amanda-3.5.1/amar-src/amarchiver.c:272:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd_in = open(opt_file, O_RDONLY);
data/amanda-3.5.1/amar-src/amarchiver.c:331:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd_in = open(opt_file, O_RDONLY);
data/amanda-3.5.1/application-src/ambsdtar.c:414:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
GINT_TO_POINTER(atoi(optarg)));
data/amanda-3.5.1/application-src/ambsdtar.c:468:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
gblocksize = atoi(argument.tar_blocksize);
data/amanda-3.5.1/application-src/ambsdtar.c:546:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int j = atoi(s);
data/amanda-3.5.1/application-src/ambsdtar.c:805:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[32768];
data/amanda-3.5.1/application-src/ambsdtar.c:929:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((nullfd = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/application-src/ambsdtar.c:1277:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new_timestamps[64];
data/amanda-3.5.1/application-src/ambsdtar.c:1683:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[2*PATH_MAX];
data/amanda-3.5.1/application-src/ambsdtar.c:1692:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
exclude_list = fopen(argument->dle.exclude_list->first->name, "r");
data/amanda-3.5.1/application-src/ambsdtar.c:1700:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
exclude = fopen(exclude_filename, "w");
data/amanda-3.5.1/application-src/ambsdtar.c:1742:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
include = fopen(include_filename, "w");
data/amanda-3.5.1/application-src/ambsdtar.c:1752:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[2*PATH_MAX];
data/amanda-3.5.1/application-src/ambsdtar.c:1753:27: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *include_list = fopen(argument->dle.include_list->first->name, "r");
data/amanda-3.5.1/application-src/ambsdtar.c:1885:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32768];
data/amanda-3.5.1/application-src/ambsdtar.c:1924:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[32768];
data/amanda-3.5.1/application-src/ambsdtar.c:2039:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/application-src/ambsdtar.c:2043:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1024];
data/amanda-3.5.1/application-src/ambsdtar.c:2075:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((infd = open(inputname, O_RDONLY)) == -1) {
data/amanda-3.5.1/application-src/ambsdtar.c:2142:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/application-src/ambsdtar.c:2156:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
tt = fopen(filename, "w");
data/amanda-3.5.1/application-src/ambsdtar.c:2190:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmppath[PATH_MAX];
data/amanda-3.5.1/application-src/amgtar.c:471:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
GINT_TO_POINTER(atoi(optarg)));
data/amanda-3.5.1/application-src/amgtar.c:572:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 41: argument.state_stream = atoi(optarg);
data/amanda-3.5.1/application-src/amgtar.c:731:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int j = atoi(s);
data/amanda-3.5.1/application-src/amgtar.c:1094:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[32768];
data/amanda-3.5.1/application-src/amgtar.c:1204:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((nullfd = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/application-src/amgtar.c:1347:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[32768];
data/amanda-3.5.1/application-src/amgtar.c:1653:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[2*PATH_MAX];
data/amanda-3.5.1/application-src/amgtar.c:1663:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
exclude_list = fopen(argument->dle.exclude_list->first->name, "r");
data/amanda-3.5.1/application-src/amgtar.c:1671:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
exclude = fopen(exclude_filename, "w");
data/amanda-3.5.1/application-src/amgtar.c:1718:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
include = fopen(include_filename, "w");
data/amanda-3.5.1/application-src/amgtar.c:1728:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[2*PATH_MAX];
data/amanda-3.5.1/application-src/amgtar.c:1729:27: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *include_list = fopen(argument->dle.include_list->first->name, "r");
data/amanda-3.5.1/application-src/amgtar.c:1816:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[32768];
data/amanda-3.5.1/application-src/amgtar.c:1817:33: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *recover_state_file = fopen(argument->recover_dump_state_file,
data/amanda-3.5.1/application-src/amgtar.c:1950:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32768];
data/amanda-3.5.1/application-src/amgtar.c:1990:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[32768];
data/amanda-3.5.1/application-src/amgtar.c:2107:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/application-src/amgtar.c:2138:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((infd = open(inputname, O_RDONLY)) == -1) {
data/amanda-3.5.1/application-src/amgtar.c:2158:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((outfd = open(incrname, O_WRONLY|O_CREAT, 0600)) == -1) {
data/amanda-3.5.1/application-src/amgtar.c:2261:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32768];
data/amanda-3.5.1/application-src/amgtar.c:2299:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmppath[PATH_MAX];
data/amanda-3.5.1/application-src/amgtar.c:2370:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
major = atoi(gv);
data/amanda-3.5.1/application-src/amgtar.c:2371:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
minor = atoi(minor_version);
data/amanda-3.5.1/application-src/amstar.c:440:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
GINT_TO_POINTER(atoi(optarg)));
data/amanda-3.5.1/application-src/amstar.c:807:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[32768];
data/amanda-3.5.1/application-src/amstar.c:888:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((nullfd = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/application-src/amstar.c:1025:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[32768];
data/amanda-3.5.1/application-src/amstar.c:1274:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *include_list = fopen(argument->dle.include_list->first->name, "r");
data/amanda-3.5.1/application-src/amstar.c:1276:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[2*PATH_MAX+2];
data/amanda-3.5.1/application-src/amstar.c:1337:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32768];
data/amanda-3.5.1/application-src/amstar.c:1413:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[32768];
data/amanda-3.5.1/application-src/amstar.c:1485:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char levelstr[NUM_STR_SIZE+7];
data/amanda-3.5.1/application-src/amstar.c:1524:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmppath[PATH_MAX];
data/amanda-3.5.1/application-src/amstar.c:1600:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((exclude = fopen(exclname, "r")) != NULL) {
data/amanda-3.5.1/application-src/amstar.c:1641:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((include = fopen(exclname, "r")) != NULL) {
data/amanda-3.5.1/application-src/teecount.c:45:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[BUFFER];
data/amanda-3.5.1/client-src/amandates.c:91:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
amdf = fopen(amandates_file, "r+");
data/amanda-3.5.1/client-src/amandates.c:93:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
amdf = fopen(amandates_file, "r");
data/amanda-3.5.1/client-src/amandates.c:98:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
amdf = fopen(amandates_file, "w+");
data/amanda-3.5.1/client-src/amandates.c:336:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((dumpdf = fopen("/var/lib/dumpdates", "r")) == NULL) {
data/amanda-3.5.1/client-src/calcsize.c:331:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dumplevel[ndumps] = atoi(argv[0]);
data/amanda-3.5.1/client-src/calcsize.c:332:35: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dumpdate [ndumps] = (time_t) atol(argv[1]);
data/amanda-3.5.1/client-src/calcsize.c:709:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pattern[1025];
data/amanda-3.5.1/client-src/calcsize.c:713:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *file = fopen(filename, "r");
data/amanda-3.5.1/client-src/client_util.c:90:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/client_util.c:163:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fd=open(afilename, O_WRONLY|O_CREAT|O_APPEND, 0600)) < 0){
data/amanda-3.5.1/client-src/client_util.c:315:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((file_exclude = fopen(filename,"w")) != NULL) {
data/amanda-3.5.1/client-src/client_util.c:329:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((exclude = fopen(exclname, "r")) != NULL) {
data/amanda-3.5.1/client-src/client_util.c:384:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((file_include = fopen(filename,"w")) != NULL) {
data/amanda-3.5.1/client-src/client_util.c:398:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((include = fopen(inclname, "r")) != NULL) {
data/amanda-3.5.1/client-src/client_util.c:1029:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/client_util.c:1376:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmppath[PATH_MAX];
data/amanda-3.5.1/client-src/client_util.c:1377:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/client_util.c:1465:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((nullfd = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/client-src/client_util.c:1677:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp_realpath[PATH_MAX];
data/amanda-3.5.1/client-src/client_util.c:1756:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp_realpath[PATH_MAX];
data/amanda-3.5.1/client-src/client_util.c:1845:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ruid_str[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/client_util.c:1846:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char euid_str[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/findpass.c:56:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( (fp = fopen("/etc/amandapass", "r")) ) {
data/amanda-3.5.1/client-src/getfsent.c:122:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return (fstabf = fopen(VFSTAB, "r")) != NULL;
data/amanda-3.5.1/client-src/getfsent.c:148:46: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fsent->passno = sys_fsent.vfs_fsckpass? atoi(sys_fsent.vfs_fsckpass) : 0;
data/amanda-3.5.1/client-src/getfsent.c:186:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fstabf3 = fopen(MNTTAB, "r");
data/amanda-3.5.1/client-src/getfsent.c:268:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return (fstabf = fopen(FSTAB, "r")) != NULL;
data/amanda-3.5.1/client-src/getfsent.c:360:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return (fstabf = fopen(MNTTAB, "r")) != NULL;
data/amanda-3.5.1/client-src/getfsent.c:378:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char typebuf[FSTYPSZ];
data/amanda-3.5.1/client-src/runtar.c:116:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char version_buf[80];
data/amanda-3.5.1/client-src/selfcheck.c:748:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((nullfd = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/client-src/selfcheck.c:1315:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
access_result = open(device, O_RDONLY);
data/amanda-3.5.1/client-src/selfcheck.c:1553:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
testfd = open("/etc/amandapass", R_OK);
data/amanda-3.5.1/client-src/sendbackup-dump.c:143:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:142:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmppath[PATH_MAX];
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:148:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dumptimestr[80] = "UNUSED";
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:160:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32768];
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:280:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:312:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((infd = open(inputname, O_RDONLY)) == -1) {
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:330:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((outfd = open(incrname, O_WRONLY|O_CREAT, 0600)) == -1) {
data/amanda-3.5.1/client-src/sendbackup.c:511:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((datafd = open("/dev/null", O_RDWR)) < 0) {
data/amanda-3.5.1/client-src/sendbackup.c:544:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char levelstr[20];
data/amanda-3.5.1/client-src/sendbackup.c:720:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[32770];
data/amanda-3.5.1/client-src/sendbackup.c:735:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port = atoi(str_port);
data/amanda-3.5.1/client-src/sendbackup.c:1233:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1024];
data/amanda-3.5.1/client-src/sendbackup.c:1679:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[BUFSIZ];
data/amanda-3.5.1/client-src/sendsize.c:1043:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/sendsize.c:1056:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmppath[PATH_MAX];
data/amanda-3.5.1/client-src/sendsize.c:1145:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((nullfd = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/client-src/sendsize.c:1421:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/sendsize.c:1452:30: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((stdoutfd = nullfd = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/client-src/sendsize.c:1942:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((nullfd = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/client-src/sendsize.c:2118:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dumptimestr[80];
data/amanda-3.5.1/client-src/sendsize.c:2128:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32768];
data/amanda-3.5.1/client-src/sendsize.c:2132:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmppath[PATH_MAX];
data/amanda-3.5.1/client-src/sendsize.c:2155:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/sendsize.c:2186:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((infd = open(inputname, O_RDONLY)) == -1) {
data/amanda-3.5.1/client-src/sendsize.c:2201:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((outfd = open(incrname, O_WRONLY|O_CREAT, 0600)) == -1) {
data/amanda-3.5.1/client-src/sendsize.c:2309:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((nullfd = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/client-src/sendsize.c:2480:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char levelstr[NUM_STR_SIZE];
data/amanda-3.5.1/client-src/unctime.c:64:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dbuf[26];
data/amanda-3.5.1/client-src/unctime.c:71:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
then.tm_mday = atoi(&dbuf[E_DAY]);
data/amanda-3.5.1/client-src/unctime.c:72:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
then.tm_hour = atoi(&dbuf[E_HOUR]);
data/amanda-3.5.1/client-src/unctime.c:73:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
then.tm_min = atoi(&dbuf[E_MINUTE]);
data/amanda-3.5.1/client-src/unctime.c:74:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
then.tm_sec = atoi(&dbuf[E_SECOND]);
data/amanda-3.5.1/client-src/unctime.c:75:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
then.tm_year = atoi(&dbuf[E_YEAR]) - 1900;
data/amanda-3.5.1/common-src/alloc.c:132:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, *p, l1); /* left hand side */
data/amanda-3.5.1/common-src/alloc.c:135:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s, v, l2); /* right hand side and null */
data/amanda-3.5.1/common-src/amanda.h:367:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
# define FD_COPY(p, q) memcpy((q), (p), sizeof(*(p)))
data/amanda-3.5.1/common-src/amanda.h:663:10: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
# define bcopy(from,to,n) ((void)memmove((to), (from), (n)))
data/amanda-3.5.1/common-src/amanda.h:666:13: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
extern void bcopy(const void *s1, void *s2, size_t n);
data/amanda-3.5.1/common-src/amanda.h:794:12: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
extern int mkstemp(char *template);
data/amanda-3.5.1/common-src/amanda.h:1046:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
# define SIZE_T_ATOI (size_t)atoi
data/amanda-3.5.1/common-src/amanda.h:1051:38: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
# define SIZE_T_ATOI (size_t)atol
data/amanda-3.5.1/common-src/amanda.h:1058:40: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
# define SSIZE_T_ATOI (ssize_t)atoi
data/amanda-3.5.1/common-src/amanda.h:1066:40: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
# define SSIZE_T_ATOI (ssize_t)atol
data/amanda-3.5.1/common-src/amanda.h:1076:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
# define TIME_T_ATOI (time_t)atoi
data/amanda-3.5.1/common-src/amanda.h:1081:38: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
# define TIME_T_ATOI (time_t)atol
data/amanda-3.5.1/common-src/amanda.h:1091:39: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
# define OFF_T_ATOI (off_t)atol
data/amanda-3.5.1/common-src/amanda.h:1100:39: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
# define OFF_T_ATOI (off_t)atol
data/amanda-3.5.1/common-src/amanda.h:1103:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
# define OFF_T_ATOI (off_t)atoi
data/amanda-3.5.1/common-src/ambind.c:51:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmsg_socket[CMSG_SPACE(sizeof(s))];
data/amanda-3.5.1/common-src/ambind.c:52:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmsgbuf[CMSG_SPACE(sizeof(s))];
data/amanda-3.5.1/common-src/ambind.c:59:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sockfd = atoi(argv[1]);
data/amanda-3.5.1/common-src/ambind.c:155:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(CMSG_DATA(cmsg), &s, sizeof(s));
data/amanda-3.5.1/common-src/amflock-lnlock.c:66:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(fn, O_WRONLY | O_CREAT | O_EXCL, 0640);
data/amanda-3.5.1/common-src/amflock-lnlock.c:91:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((f = fopen(fn, "r")) == NULL) {
data/amanda-3.5.1/common-src/amflock-lnlock.c:199:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pid_str[NUM_STR_SIZE];
data/amanda-3.5.1/common-src/amflock-test.c:62:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(TEST_FILENAME, O_RDWR | O_CREAT | O_EXCL, 0600)) == -1) {
data/amanda-3.5.1/common-src/amflock.c:114:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
lock->fd = fd = open(lock->filename, O_CREAT|O_RDWR, 0666);
data/amanda-3.5.1/common-src/amflock.c:126:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
lock->fd = fd = open(lock->filename, O_CREAT|O_RDWR, 0666);
data/amanda-3.5.1/common-src/amflock.c:217:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
lock->fd = fd = open(lock->filename, O_CREAT|O_RDWR, 0666);
data/amanda-3.5.1/common-src/ammessage.c:34:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *errcode[MAX_ERRCODE];
data/amanda-3.5.1/common-src/ammessage.c:1135:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int hostcount = atoi(message_get_argument(message, "hostcount"));
data/amanda-3.5.1/common-src/ammessage.c:1136:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int remote_errors = atoi(message_get_argument(message, "remote_errors"));
data/amanda-3.5.1/common-src/ammessage.c:1577:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char num[NUM_STR_SIZE];
data/amanda-3.5.1/common-src/ammessage.c:1578:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char code[100];
data/amanda-3.5.1/common-src/ammessage.c:2335:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
message->line = atoi(token);
data/amanda-3.5.1/common-src/ammessage.c:2357:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
message->code = atoi(token);
data/amanda-3.5.1/common-src/ammessage.c:2386:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
message->merrno = atoi(token);
data/amanda-3.5.1/common-src/amservice.c:121:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char gfd[32768];
data/amanda-3.5.1/common-src/amservice.c:191:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lstreams[nb_lstream].fd_in = atoi(stream_in);
data/amanda-3.5.1/common-src/amservice.c:192:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lstreams[nb_lstream].fd_out = atoi(coma);
data/amanda-3.5.1/common-src/amservice.c:216:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
input_file = fopen(optarg, "r");
data/amanda-3.5.1/common-src/amservice.c:220:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
input_file = fopen(name, "r");
data/amanda-3.5.1/common-src/amservice.c:398:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rstreams[nb_rstream].port = atoi(port);
data/amanda-3.5.1/common-src/amservice.c:598:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1025];
data/amanda-3.5.1/common-src/amutil.c:179:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmsgbuf[CMSG_SPACE(sizeof(s))];
data/amanda-3.5.1/common-src/amutil.c:242:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(CMSG_DATA(cmsg), &s, sizeof(s));
data/amanda-3.5.1/common-src/amutil.c:344:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/common-src/amutil.c:349:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/common-src/amutil.c:521:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/common-src/amutil.c:526:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/common-src/amutil.c:1394:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32768];
data/amanda-3.5.1/common-src/amutil.c:1397:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((infd = open(src, O_RDONLY)) == -1) {
data/amanda-3.5.1/common-src/amutil.c:1406:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((outfd = open(dst, O_WRONLY|O_CREAT, 0600)) == -1) {
data/amanda-3.5.1/common-src/amutil.c:1556:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rval, base_string + match.rm_so, size);
data/amanda-3.5.1/common-src/amutil.c:2389:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1025];
data/amanda-3.5.1/common-src/amutil.c:2424:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
release = fopen("/etc/redhat-release", "r");
data/amanda-3.5.1/common-src/amutil.c:2436:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
release = fopen("/etc/lsb-release", "r");
data/amanda-3.5.1/common-src/amutil.c:2459:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
release = fopen("/etc/debian_version", "r");
data/amanda-3.5.1/common-src/amutil.c:2479:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *release = fopen("/etc/release", "r");
data/amanda-3.5.1/common-src/amxml.c:728:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data_user->alevel->level = atoi(tt);
data/amanda-3.5.1/common-src/amxml.c:775:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dle->spindle = atoi(tt);
data/amanda-3.5.1/common-src/backup_support_option.c:154:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
bsu->max_level = atoi(line+10);
data/amanda-3.5.1/common-src/bsd-security.c:675:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sync_pkt, bs->databuf, sync_pktlen);
data/amanda-3.5.1/common-src/bsdtcp-security.c:314:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[NI_MAXHOST];
data/amanda-3.5.1/common-src/clock.c:85:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char str[10][NUM_STR_SIZE+10];
data/amanda-3.5.1/common-src/conffile.c:273:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char tkbuf[4096];
data/amanda-3.5.1/common-src/conffile.c:2101:25: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((current_file = fopen(current_filename, "r")) == NULL) {
data/amanda-3.5.1/common-src/conffile.c:10814:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char number[NUM_STR_SIZE];
data/amanda-3.5.1/common-src/conffile.c:10876:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char keyword_str[1024];
data/amanda-3.5.1/common-src/debug.c:71:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *msg_timestamp(char timestamp[128]);
data/amanda-3.5.1/common-src/debug.c:71:28: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *msg_timestamp(char timestamp[128]);
data/amanda-3.5.1/common-src/debug.c:98:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/common-src/debug.c:493:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *
data/amanda-3.5.1/common-src/debug.c:494:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
msg_timestamp(char timestamp[128])
data/amanda-3.5.1/common-src/debug.c:582:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(s, O_WRONLY|O_CREAT|O_EXCL|O_APPEND, 0640)) < 0) {
data/amanda-3.5.1/common-src/debug.c:625:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(s, O_RDWR|O_APPEND)) < 0) {
data/amanda-3.5.1/common-src/debug.c:714:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(s, O_WRONLY|O_APPEND, 0640)) >= 0) {
data/amanda-3.5.1/common-src/debug.c:726:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(s, O_WRONLY|O_CREAT|O_EXCL|O_APPEND, 0640)) < 0) {
data/amanda-3.5.1/common-src/debug.c:736:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(s, O_WRONLY|O_CREAT|O_EXCL|O_APPEND, 0640)) < 0) {
data/amanda-3.5.1/common-src/debug.c:845:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timestamp[128];
data/amanda-3.5.1/common-src/dgram.h:50:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[MAX_DGRAM+1];
data/amanda-3.5.1/common-src/event-test.c:278:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/common-src/event-test.c:303:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/amanda-3.5.1/common-src/event-test.c:458:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/common-src/event-test.c:493:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/common-src/event.c:471:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char name[12];
data/amanda-3.5.1/common-src/file.c:312:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (open("/dev/null", O_RDWR) == -1) {
data/amanda-3.5.1/common-src/file.c:362:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char suffix[2];
data/amanda-3.5.1/common-src/file.c:526:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmpline, line, line_size);
data/amanda-3.5.1/common-src/file.c:578:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmpline, line, loffset+1);
data/amanda-3.5.1/common-src/file.c:644:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new, areads_buffer, size);
data/amanda-3.5.1/common-src/file.c:786:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (newbuf, buffer, ptr->bufsize + 1);
data/amanda-3.5.1/common-src/file.c:827:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
result = open(pathname, flags, mode);
data/amanda-3.5.1/common-src/file.c:829:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
result = open(pathname, flags);
data/amanda-3.5.1/common-src/file.c:1070:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open (file, 0)) < 0) {
data/amanda-3.5.1/common-src/fileheader-test.c:100:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->comp_suffix, ".gz");
data/amanda-3.5.1/common-src/fileheader-test.c:124:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->encrypt_suffix, ".aes");
data/amanda-3.5.1/common-src/fileheader-test.c:139:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->disk, "/usr");
data/amanda-3.5.1/common-src/fileheader-test.c:173:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->application, "MS-PAINT");
data/amanda-3.5.1/common-src/fileheader-test.c:207:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->program, "CHECK");
data/amanda-3.5.1/common-src/fileheader-test.c:225:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->srv_encrypt, "my-enc");
data/amanda-3.5.1/common-src/fileheader-test.c:230:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->srv_encrypt, "my-enc");
data/amanda-3.5.1/common-src/fileheader-test.c:232:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->srv_decrypt_opt, "-foo");
data/amanda-3.5.1/common-src/fileheader-test.c:236:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->clnt_encrypt, "its-enc");
data/amanda-3.5.1/common-src/fileheader-test.c:241:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->clnt_encrypt, "its-enc");
data/amanda-3.5.1/common-src/fileheader-test.c:243:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->clnt_decrypt_opt, "-foo");
data/amanda-3.5.1/common-src/fileheader-test.c:265:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->srvcompprog, "my-comp-prog");
data/amanda-3.5.1/common-src/fileheader-test.c:269:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->clntcompprog, "its-comp-prog");
data/amanda-3.5.1/common-src/fileheader-test.c:290:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->recover_cmd, "get my data back");
data/amanda-3.5.1/common-src/fileheader-test.c:294:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->recover_cmd, "get my data back");
data/amanda-3.5.1/common-src/fileheader-test.c:295:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->uncompress_cmd, "make my data bigger |");
data/amanda-3.5.1/common-src/fileheader-test.c:298:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->recover_cmd, "get my data back");
data/amanda-3.5.1/common-src/fileheader-test.c:299:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->uncompress_cmd, "make my data bigger |");
data/amanda-3.5.1/common-src/fileheader-test.c:300:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->decrypt_cmd, "unscramble it too |");
data/amanda-3.5.1/common-src/fileheader-test.c:317:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->cont_filename, "/next/file");
data/amanda-3.5.1/common-src/fileheader-test.c:351:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->name, "TEST-LABEL");
data/amanda-3.5.1/common-src/fileheader-test.c:353:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr->name, "batcave-web");
data/amanda-3.5.1/common-src/fileheader-test.c:387:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr.datestamp, "20100102030405");
data/amanda-3.5.1/common-src/fileheader-test.c:388:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(hdr.name, "localhost");
data/amanda-3.5.1/common-src/fileheader.c:112:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, buffer, buflen);
data/amanda-3.5.1/common-src/fileheader.c:952:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char totalparts[NUM_STR_SIZE*2];
data/amanda-3.5.1/common-src/fileheader.c:1087:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rval, source, sizeof(dumpfile_t));
data/amanda-3.5.1/common-src/fileheader.c:1097:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dest, source, sizeof(dumpfile_t));
data/amanda-3.5.1/common-src/fileheader.h:42:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char string_t[STRMAX];
data/amanda-3.5.1/common-src/genversion.c:139:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char number[NUM_STR_SIZE];
data/amanda-3.5.1/common-src/krb5-security.c:139:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char myhostname[MAX_HOSTNAME_LENGTH+1];
data/amanda-3.5.1/common-src/krb5-security.c:351:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[NI_MAXHOST];
data/amanda-3.5.1/common-src/krb5-security.c:585:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[256];
data/amanda-3.5.1/common-src/krb5-security.c:789:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ccache[64];
data/amanda-3.5.1/common-src/krb5-security.c:1122:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(ptmp, "r")) == NULL) {
data/amanda-3.5.1/common-src/krb5-security.c:1270:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[101];
data/amanda-3.5.1/common-src/make_security_file.c:23:22: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *sec_file = fopen("amanda-security.conf", "w");
data/amanda-3.5.1/common-src/match.c:64:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char regex_errbuf[STR_SIZE];
data/amanda-3.5.1/common-src/match.c:990:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char firstdate[100], lastdate[100];
data/amanda-3.5.1/common-src/match.c:991:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mydateexp[100];
data/amanda-3.5.1/common-src/match.c:1085:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mylevelexp[100];
data/amanda-3.5.1/common-src/mem-ring.h:42:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char padding1[256 - 2*sizeof(off_t) - sizeof(gboolean)];
data/amanda-3.5.1/common-src/mem-ring.h:45:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char padding2[256 - 2*sizeof(off_t)];
data/amanda-3.5.1/common-src/packet.c:40:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char name[5];
data/amanda-3.5.1/common-src/pipespawn.c:6:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char skip_argument[1];
data/amanda-3.5.1/common-src/pipespawn.c:85:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/common-src/pipespawn.h:8:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char skip_argument[1];
data/amanda-3.5.1/common-src/protocol.c:806:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char name[12];
data/amanda-3.5.1/common-src/protocol.c:832:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char name[12];
data/amanda-3.5.1/common-src/quoting-test.c:190:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *expected[4] = { *iter1, *iter2, *iter3, NULL };
data/amanda-3.5.1/common-src/quoting-test.c:217:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *expected[5];
data/amanda-3.5.1/common-src/security-file.c:35:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
*file = fopen(DEFAULT_SECURITY_FILE, "r");
data/amanda-3.5.1/common-src/security-file.c:55:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[LINE_SIZE];
data/amanda-3.5.1/common-src/security-file.c:131:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[LINE_SIZE];
data/amanda-3.5.1/common-src/security-file.c:132:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char oline[LINE_SIZE];
data/amanda-3.5.1/common-src/security-file.c:192:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[LINE_SIZE];
data/amanda-3.5.1/common-src/security-file.c:193:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char oline[LINE_SIZE];
data/amanda-3.5.1/common-src/security-file.c:229:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*plow = atoi(p);
data/amanda-3.5.1/common-src/security-file.c:230:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
*phigh = atoi(shigh);
data/amanda-3.5.1/common-src/security-file.c:251:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char security_real_path[PATH_MAX];
data/amanda-3.5.1/common-src/security-file.c:272:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ruid_str[NUM_STR_SIZE];
data/amanda-3.5.1/common-src/security-file.c:273:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char euid_str[NUM_STR_SIZE];
data/amanda-3.5.1/common-src/security-util.c:654:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(iov_copy, iov, 3*sizeof(struct iovec));
data/amanda-3.5.1/common-src/security-util.c:694:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(awd->iov, iov, 3*sizeof(struct iovec));
data/amanda-3.5.1/common-src/security-util.c:696:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(awd->copy_iov, iov, 3*sizeof(struct iovec));
data/amanda-3.5.1/common-src/security-util.c:841:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[201];
data/amanda-3.5.1/common-src/security-util.c:1005:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs->shm_ring->data + write_offset , buf, usable);
data/amanda-3.5.1/common-src/security-util.c:1007:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs->shm_ring->data + write_offset, buf, shm_ring_size - write_offset);
data/amanda-3.5.1/common-src/security-util.c:1008:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rs->shm_ring->data, buf + shm_ring_size - write_offset, usable -(shm_ring_size - write_offset));
data/amanda-3.5.1/common-src/security-util.c:1923:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[NI_MAXHOST];
data/amanda-3.5.1/common-src/security-util.c:2284:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sync_pkt, rs->rc->pkt, sync_pktlen);
data/amanda-3.5.1/common-src/security-util.c:2519:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(badbuf, rc->pkt, rc->pktlen);
data/amanda-3.5.1/common-src/security-util.c:2564:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pkt->body, bufp, bufsize);
data/amanda-3.5.1/common-src/security-util.c:2581:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char retbuf[256];
data/amanda-3.5.1/common-src/security-util.c:2650:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
udp->sequence = atoi(tok);
data/amanda-3.5.1/common-src/security-util.c:2784:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((devnull = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/common-src/security-util.c:2871:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET6_ADDRSTRLEN];
data/amanda-3.5.1/common-src/security-util.c:2873:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET_ADDRSTRLEN];
data/amanda-3.5.1/common-src/security-util.c:2884:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(ptmp, "r")) == NULL) {
data/amanda-3.5.1/common-src/security-util.c:3050:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[NI_MAXHOST];
data/amanda-3.5.1/common-src/security-util.c:3359:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port = atoi(service);
data/amanda-3.5.1/common-src/security-util.c:3364:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/common-src/security-util.c:3376:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/common-src/security-util.h:106:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[MAX_HOSTNAME_LENGTH+1];
data/amanda-3.5.1/common-src/security-util.h:191:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char databuf[NETWORK_BLOCK_BYTES];
data/amanda-3.5.1/common-src/shm-ring.h:50:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char padding1[64 - 2*sizeof(uint64_t) - sizeof(gboolean)];
data/amanda-3.5.1/common-src/shm-ring.h:53:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char padding2[64 - 2*sizeof(uint64_t)];
data/amanda-3.5.1/common-src/shm-ring.h:58:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sem_write_name[SHM_RING_NAME_LENGTH];
data/amanda-3.5.1/common-src/shm-ring.h:59:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sem_read_name[SHM_RING_NAME_LENGTH];
data/amanda-3.5.1/common-src/shm-ring.h:60:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sem_ready_name[SHM_RING_NAME_LENGTH];
data/amanda-3.5.1/common-src/shm-ring.h:61:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sem_start_name[SHM_RING_NAME_LENGTH];
data/amanda-3.5.1/common-src/shm-ring.h:62:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char shm_data_name[SHM_RING_NAME_LENGTH];
data/amanda-3.5.1/common-src/sockaddr-util.c:36:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET6_ADDRSTRLEN];
data/amanda-3.5.1/common-src/sockaddr-util.c:38:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET_ADDRSTRLEN];
data/amanda-3.5.1/common-src/sockaddr-util.c:65:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char mystr_sockaddr[INET6_ADDRSTRLEN + 20];
data/amanda-3.5.1/common-src/sockaddr-util.c:67:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char mystr_sockaddr[INET_ADDRSTRLEN + 20];
data/amanda-3.5.1/common-src/sockaddr-util.c:75:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET6_ADDRSTRLEN];
data/amanda-3.5.1/common-src/sockaddr-util.c:77:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET_ADDRSTRLEN];
data/amanda-3.5.1/common-src/sockaddr-util.c:101:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET6_ADDRSTRLEN];
data/amanda-3.5.1/common-src/sockaddr-util.c:103:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET_ADDRSTRLEN];
data/amanda-3.5.1/common-src/sockaddr-util.c:127:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET6_ADDRSTRLEN];
data/amanda-3.5.1/common-src/sockaddr-util.c:129:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET_ADDRSTRLEN];
data/amanda-3.5.1/common-src/sockaddr-util.c:154:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET6_ADDRSTRLEN];
data/amanda-3.5.1/common-src/sockaddr-util.c:156:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ipstr[INET_ADDRSTRLEN];
data/amanda-3.5.1/common-src/sockaddr-util.c:208:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&tmp->sin.sin_addr.s_addr,
data/amanda-3.5.1/common-src/sockaddr-util.h:103:34: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define copy_sockaddr(dest, src) memcpy((dest), (src), SS_LEN((src)))
data/amanda-3.5.1/common-src/ssl-security.c:198:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoi(conf_fn("ssl_check_certificate_host", datap));
data/amanda-3.5.1/common-src/ssl-security.c:278:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fingerprint[32768];
data/amanda-3.5.1/common-src/ssl-security.c:281:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char md5[EVP_MAX_MD_SIZE + 1];
data/amanda-3.5.1/common-src/ssl-security.c:285:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sha1[EVP_MAX_MD_SIZE + 1];
data/amanda-3.5.1/common-src/ssl-security.c:340:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fingers = fopen(ssl_fingerprint_file, "r");
data/amanda-3.5.1/common-src/ssl-security.c:394:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[NI_MAXHOST];
data/amanda-3.5.1/common-src/ssl-security.c:411:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int ssl_check_host = atoi(conf_fn("ssl_check_host", datap));
data/amanda-3.5.1/common-src/ssl-security.c:412:40: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int ssl_check_certificate_host = atoi(conf_fn("ssl_check_certificate_host", datap));
data/amanda-3.5.1/common-src/timestamp.c:77:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char t[5];
data/amanda-3.5.1/common-src/timestamp.c:87:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(t, timestamp, 4);
data/amanda-3.5.1/common-src/timestamp.c:89:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tm.tm_year = atoi(t) - 1900;
data/amanda-3.5.1/common-src/timestamp.c:93:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(t, timestamp+4, 2);
data/amanda-3.5.1/common-src/timestamp.c:95:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tm.tm_mon = atoi(t) - 1;
data/amanda-3.5.1/common-src/timestamp.c:99:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(t, timestamp+6, 2);
data/amanda-3.5.1/common-src/timestamp.c:101:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tm.tm_mday = atoi(t);
data/amanda-3.5.1/common-src/timestamp.c:105:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(t, timestamp+8, 2);
data/amanda-3.5.1/common-src/timestamp.c:107:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tm.tm_hour = atoi(t);
data/amanda-3.5.1/common-src/timestamp.c:111:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(t, timestamp+10, 2);
data/amanda-3.5.1/common-src/timestamp.c:113:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tm.tm_min = atoi(t);
data/amanda-3.5.1/common-src/timestamp.c:117:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(t, timestamp+12, 2);
data/amanda-3.5.1/common-src/timestamp.c:119:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tm.tm_sec = atoi(t);
data/amanda-3.5.1/contrib/gsc/cfggsc.c:75:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sstring[256], bufname[256], conns[NAMESIZE], *ptr, *lname;
data/amanda-3.5.1/contrib/gsc/cfggsc.c:211:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(conns, cusobj.location, NAMESIZE);
data/amanda-3.5.1/contrib/gsc/cfggsc.c:251:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ddsinfo.busid = (dev_t) makedev(atoi(dpr.value1), atoi(dpr.value2));
data/amanda-3.5.1/contrib/gsc/cfggsc.c:251:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ddsinfo.busid = (dev_t) makedev(atoi(dpr.value1), atoi(dpr.value2));
data/amanda-3.5.1/contrib/gsc/cfggsc.c:261:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unit = atoi(ptr);
data/amanda-3.5.1/contrib/gsc/defgsc.c:54:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sstring[256], lname[256];
data/amanda-3.5.1/contrib/gsc/defgsc.c:55:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parent_loc[LOCSIZE];
data/amanda-3.5.1/contrib/gsc/gscdd.c:60:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void memcpy(void *dst, void *src, size_t amt)
data/amanda-3.5.1/contrib/gsc/gscdd.c:62:9: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define bcopy(src, dst, nbytes) memcpy(dst, src, nbytes)
data/amanda-3.5.1/contrib/gsc/gscdd.c:62:33: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define bcopy(src, dst, nbytes) memcpy(dst, src, nbytes)
data/amanda-3.5.1/contrib/gsc/gscdd.c:80:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int icxq; char buf[256]; \
data/amanda-3.5.1/contrib/gsc/gscdd.c:86:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int icxq; char buf[256]; \
data/amanda-3.5.1/contrib/gsc/gscdd.c:92:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int icxq; char buf[256]; \
data/amanda-3.5.1/contrib/gsc/gscdd.c:98:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int icxq; char buf[256]; \
data/amanda-3.5.1/contrib/gsc/gscdd.c:105:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int icxq; char buf[256]; \
data/amanda-3.5.1/contrib/gsc/gscdd.c:112:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int icxq; char buf[256]; \
data/amanda-3.5.1/contrib/gsc/gscdd.c:539:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy(l->cdb, (caddr_t)&usc->scsi_command.scsi_cmd, l->cdblen);
data/amanda-3.5.1/contrib/gsc/gscdd.c:559:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cdbuf[64];
data/amanda-3.5.1/contrib/gsc/gscdd.c:560:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(cdbuf,
data/amanda-3.5.1/contrib/gsc/gscdd.c:680:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
(void) sprintf(log.resource_name, "gsc%d", unit);
data/amanda-3.5.1/contrib/gsc/gscdd.c:681:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&log.scsi_command, &usc->scsi_command, sizeof (struct scsi));
data/amanda-3.5.1/contrib/gsc/tstinq.c:42:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(*v, 0);
data/amanda-3.5.1/contrib/gsc/tstinq.c:57:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sb[32], iqd[256], sbyte, c, dt;
data/amanda-3.5.1/contrib/gsc/tstinq.c:58:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char cdb[6] = { 0x12, 0, 0, 0, 255, 0 };
data/amanda-3.5.1/contrib/gsc/ucfggsc.c:59:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sstring[256];
data/amanda-3.5.1/contrib/gsc/ucfggsc.c:134:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unit = atoi(ptr);
data/amanda-3.5.1/device-src/activate-devpay.c:84:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char curl_error_buffer[CURL_ERROR_SIZE];
data/amanda-3.5.1/device-src/diskflat-device.c:269:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char header_buffer[VFS_DEVICE_LABEL_SIZE];
data/amanda-3.5.1/device-src/ndmp-device.c:833:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(replacement_buffer, data, size);
data/amanda-3.5.1/device-src/ndmp-device.c:1525:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char inet[INET_ADDRSTRLEN];
data/amanda-3.5.1/device-src/rait-device.c:1507:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rval, data + chunk_size * (chunk - 1), chunk_size);
data/amanda-3.5.1/device-src/rait-device.c:1545:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_data, data, size);
data/amanda-3.5.1/device-src/rait-device.c:1888:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)buf + child_blocksize * op->base.child_index, op->buffer,
data/amanda-3.5.1/device-src/s3-device.c:2525:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1025];
data/amanda-3.5.1/device-src/s3-device.c:2542:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = fopen(self->catalog_filename, "r");
data/amanda-3.5.1/device-src/s3-device.c:2579:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = fopen(self->catalog_filename, "w");
data/amanda-3.5.1/device-src/s3-device.c:3396:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf->buffer + buf->buffer_len, data, count_end);
data/amanda-3.5.1/device-src/s3-device.c:3400:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf->buffer, data + count_end, count_begin);
data/amanda-3.5.1/device-src/s3-device.c:3404:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf->buffer + buf->buffer_len, data, size);
data/amanda-3.5.1/device-src/s3-device.c:3465:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)self->s3t[thread].curl_buffer.buffer, data, size);
data/amanda-3.5.1/device-src/s3-device.c:4225:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)data, buf->buffer + buf->buffer_pos, size);
data/amanda-3.5.1/device-src/s3-device.c:4233:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)data, buf->buffer + buf->buffer_pos, count_end);
data/amanda-3.5.1/device-src/s3-device.c:4237:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)data + count_end, buf->buffer, count_begin);
data/amanda-3.5.1/device-src/s3-device.c:4314:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, s3t->curl_buffer.buffer, s3t->curl_buffer.buffer_pos);
data/amanda-3.5.1/device-src/s3-util.c:189:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char hash[SHA256_DIGEST_LENGTH];
data/amanda-3.5.1/device-src/s3-util.c:198:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(ret + (i * 2), "%02x", hash[i]);
data/amanda-3.5.1/device-src/s3-util.c:239:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tk[SHA256_DIGEST_LENGTH];
data/amanda-3.5.1/device-src/s3.c:625:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
year = atoi(date);
data/amanda-3.5.1/device-src/s3.c:626:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
month = atoi(date+5);
data/amanda-3.5.1/device-src/s3.c:627:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
day = atoi(date+8);
data/amanda-3.5.1/device-src/s3.c:628:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
hour = atoi(date+11);
data/amanda-3.5.1/device-src/s3.c:629:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
minute = atoi(date+14);
data/amanda-3.5.1/device-src/s3.c:630:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
seconds = atoi(date+17);
data/amanda-3.5.1/device-src/s3.c:672:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
gint Hour = atoi(atz);
data/amanda-3.5.1/device-src/s3.c:673:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
gint Min = atoi(atz+4);
data/amanda-3.5.1/device-src/s3.c:703:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[101];
data/amanda-3.5.1/device-src/s3.c:734:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return atoi(buf);
data/amanda-3.5.1/device-src/s3.c:2089:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)ptr, data->buffer + data->buffer_pos, bytes_desired);
data/amanda-3.5.1/device-src/s3.c:2097:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)ptr, data->buffer + data->buffer_pos, count_end);
data/amanda-3.5.1/device-src/s3.c:2101:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)ptr + count_end, data->buffer, count_begin);
data/amanda-3.5.1/device-src/s3.c:2115:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)ptr, data->buffer + data->buffer_pos, bytes_desired);
data/amanda-3.5.1/device-src/s3.c:2185:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->buffer + data->buffer_len, ptr, count_end);
data/amanda-3.5.1/device-src/s3.c:2189:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->buffer, ptr + count_end, count_begin);
data/amanda-3.5.1/device-src/s3.c:2193:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->buffer + data->buffer_len, ptr, new_bytes);
data/amanda-3.5.1/device-src/s3.c:2221:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->buffer + data->buffer_pos, ptr, new_bytes);
data/amanda-3.5.1/device-src/s3.c:2428:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char curl_error_buffer[CURL_ERROR_SIZE] = "";
data/amanda-3.5.1/device-src/s3.c:2913:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char regmessage[1024];
data/amanda-3.5.1/device-src/s3.c:3519:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s3_info[256] = "";
data/amanda-3.5.1/device-src/s3.c:3520:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response_info[16] = "";
data/amanda-3.5.1/device-src/s3.c:3521:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char curl_info[32] = "";
data/amanda-3.5.1/device-src/s3.c:3522:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char retries_info[32] = "";
data/amanda-3.5.1/device-src/s3.c:4595:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
hdl->expires = time(NULL) + atoi(expires_in) - 600;
data/amanda-3.5.1/device-src/s3.c:4799:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
thunk->action->days = atoi(thunk->text);
data/amanda-3.5.1/device-src/tape-device.c:1034:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(replacement_buffer, data, size);
data/amanda-3.5.1/device-src/vfs-device.c:1454:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char header_buffer[VFS_DEVICE_LABEL_SIZE];
data/amanda-3.5.1/device-src/xfer-dest-taper-cacher.c:271:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/amanda-3.5.1/device-src/xfer-dest-taper-cacher.c:438:32: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
self->disk_cache_read_fd = open(filename, O_RDONLY);
data/amanda-3.5.1/device-src/xfer-dest-taper-cacher.c:1198:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(self->reader_slab->base+self->reader_slab->size, p, copy_size);
data/amanda-3.5.1/device-src/xfer-dest-taper-directtcp.c:95:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/amanda-3.5.1/device-src/xfer-dest-taper-splitter.c:176:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/amanda-3.5.1/device-src/xfer-dest-taper-splitter.c:289:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
iter->cur_fd = open(iter->slice->filename, O_RDONLY, 0);
data/amanda-3.5.1/device-src/xfer-source-recovery.c:119:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[1024];
data/amanda-3.5.1/gnulib/alloca.c:122:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char align[ALIGN_SIZE]; /* To force sizeof(header). */
data/amanda-3.5.1/gnulib/base64.c:62:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char b64c[64] =
data/amanda-3.5.1/gnulib/base64.c:252:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const signed char b64[0x100] = {
data/amanda-3.5.1/gnulib/base64.h:38:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/amanda-3.5.1/gnulib/btowc.c:31:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1];
data/amanda-3.5.1/gnulib/dup2.c:98:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
tempfd = open ("NUL", O_RDONLY);
data/amanda-3.5.1/gnulib/dup2.c:106:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[_MAX_PATH];
data/amanda-3.5.1/gnulib/dup2.c:110:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return open(path, O_RDONLY);
data/amanda-3.5.1/gnulib/euidaccess.c:213:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mode = atoi (argv[2]);
data/amanda-3.5.1/gnulib/fcntl.in.h:111:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
# undef open
data/amanda-3.5.1/gnulib/fcntl.in.h:112:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
# define open rpl_open
data/amanda-3.5.1/gnulib/fcntl.in.h:114:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_GL_FUNCDECL_RPL (open, int, (const char *filename, int flags, ...)
data/amanda-3.5.1/gnulib/fcntl.in.h:116:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_GL_CXXALIAS_RPL (open, int, (const char *filename, int flags, ...));
data/amanda-3.5.1/gnulib/fcntl.in.h:118:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_GL_CXXALIAS_SYS (open, int, (const char *filename, int flags, ...));
data/amanda-3.5.1/gnulib/fcntl.in.h:123:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_GL_CXXALIASWARN (open);
data/amanda-3.5.1/gnulib/fcntl.in.h:126:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
# undef open
data/amanda-3.5.1/gnulib/fcntl.in.h:128:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_GL_WARN_ON_USE (open, "open is not always POSIX compliant - "
data/amanda-3.5.1/gnulib/fseeko.c:61:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *tmp = fopen ("/dev/null", "r");
data/amanda-3.5.1/gnulib/fsusage.c:187:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (disk, O_RDONLY);
data/amanda-3.5.1/gnulib/ftello.c:76:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *tmp = fopen ("/dev/null", "r");
data/amanda-3.5.1/gnulib/getaddrinfo.c:253:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&sinp->sin6_addr, he->h_addr_list[0], sizeof sinp->sin6_addr);
data/amanda-3.5.1/gnulib/getaddrinfo.c:277:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&sinp->sin_addr, he->h_addr_list[0], sizeof sinp->sin_addr);
data/amanda-3.5.1/gnulib/gettext.h:218:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg_ctxt_id[msgctxt_len + msgid_len];
data/amanda-3.5.1/gnulib/gettext.h:220:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/gnulib/gettext.h:228:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (msg_ctxt_id, msgctxt, msgctxt_len - 1);
data/amanda-3.5.1/gnulib/gettext.h:230:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (msg_ctxt_id + msgctxt_len, msgid, msgid_len);
data/amanda-3.5.1/gnulib/gettext.h:264:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg_ctxt_id[msgctxt_len + msgid_len];
data/amanda-3.5.1/gnulib/gettext.h:266:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/gnulib/gettext.h:274:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (msg_ctxt_id, msgctxt, msgctxt_len - 1);
data/amanda-3.5.1/gnulib/gettext.h:276:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (msg_ctxt_id + msgctxt_len, msgid, msgid_len);
data/amanda-3.5.1/gnulib/group-member.c:113:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
gid = atoi (argv[i]);
data/amanda-3.5.1/gnulib/inet_ntop.c:127:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[sizeof "255.255.255.255"];
data/amanda-3.5.1/gnulib/inet_ntop.c:130:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
len = sprintf (tmp, "%u.%u.%u.%u", src[0], src[1], src[2], src[3]);
data/amanda-3.5.1/gnulib/inet_ntop.c:161:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[sizeof "ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255"], *tp;
data/amanda-3.5.1/gnulib/inet_ntop.c:234:19: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
int len = sprintf (tp, "%x", words[i]);
data/amanda-3.5.1/gnulib/inet_pton.c:116:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tmp[NS_INADDRSZ], *tp;
data/amanda-3.5.1/gnulib/inet_pton.c:152:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dst, tmp, NS_INADDRSZ);
data/amanda-3.5.1/gnulib/inet_pton.c:175:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tmp[NS_IN6ADDRSZ], *tp, *endp, *colonp;
data/amanda-3.5.1/gnulib/inet_pton.c:262:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dst, tmp, NS_IN6ADDRSZ);
data/amanda-3.5.1/gnulib/localcharset.c:150:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (file_name, dir, dir_len);
data/amanda-3.5.1/gnulib/localcharset.c:153:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (file_name + dir_len + add_slash, base, base_len + 1);
data/amanda-3.5.1/gnulib/localcharset.c:171:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (file_name,
data/amanda-3.5.1/gnulib/localcharset.c:196:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[50+1];
data/amanda-3.5.1/gnulib/localcharset.c:197:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[50+1];
data/amanda-3.5.1/gnulib/localcharset.c:412:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[2 + 10 + 1];
data/amanda-3.5.1/gnulib/localcharset.c:438:19: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (buf, dot, modifier - dot);
data/amanda-3.5.1/gnulib/localcharset.c:456:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "CP%u", GetACP ());
data/amanda-3.5.1/gnulib/localcharset.c:493:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[2 + 10 + 1];
data/amanda-3.5.1/gnulib/localcharset.c:521:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "CP%u", GetACP ());
data/amanda-3.5.1/gnulib/localcharset.c:528:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[2 + 10 + 1];
data/amanda-3.5.1/gnulib/localcharset.c:559:15: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (buf, dot, modifier - dot);
data/amanda-3.5.1/gnulib/localcharset.c:577:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "CP%u", cp[0]);
data/amanda-3.5.1/gnulib/mbrtowc.c:36:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char internal_state[4];
data/amanda-3.5.1/gnulib/mbrtowc.c:60:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/amanda-3.5.1/gnulib/nl_langinfo.c:36:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[2 + 10 + 1];
data/amanda-3.5.1/gnulib/nl_langinfo.c:61:29: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
codeset = memcpy (buf, codeset_start, codesetlen);
data/amanda-3.5.1/gnulib/nl_langinfo.c:78:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf + 2, "%u", GetACP ());
data/amanda-3.5.1/gnulib/nl_langinfo.c:79:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
codeset = memcpy (buf, "CP", 2);
data/amanda-3.5.1/gnulib/nl_langinfo.c:153:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char nlbuf[100];
data/amanda-3.5.1/gnulib/nl_langinfo.c:213:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
return (char *) days[item - DAY_1];
data/amanda-3.5.1/gnulib/nl_langinfo.c:229:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
return (char *) abdays[item - ABDAY_1];
data/amanda-3.5.1/gnulib/nl_langinfo.c:251:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
return (char *) months[item - MON_1];
data/amanda-3.5.1/gnulib/nl_langinfo.c:273:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
return (char *) abmonths[item - ABMON_1];
data/amanda-3.5.1/gnulib/printf-parse.c:122:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (memory, a->arg, a->count * sizeof (argument)); \
data/amanda-3.5.1/gnulib/printf-parse.c:599:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (memory, d->dir, d->count * sizeof (DIRECTIVE));
data/amanda-3.5.1/gnulib/regcomp.c:328:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[MB_LEN_MAX];
data/amanda-3.5.1/gnulib/regcomp.c:411:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/amanda-3.5.1/gnulib/regcomp.c:575:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (errbuf, msg, cpy_size);
data/amanda-3.5.1/gnulib/regcomp.c:3195:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char start_name_buf[BRACKET_NAME_BUF_SIZE];
data/amanda-3.5.1/gnulib/regcomp.c:3196:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char end_name_buf[BRACKET_NAME_BUF_SIZE];
data/amanda-3.5.1/gnulib/regcomp.c:3518:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char char_buf[2];
data/amanda-3.5.1/gnulib/regex.h:650:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *_Restrict_ __string, size_t __nmatch,
data/amanda-3.5.1/gnulib/regex_internal.c:205:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[MB_LEN_MAX];
data/amanda-3.5.1/gnulib/regex_internal.c:208:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[64];
data/amanda-3.5.1/gnulib/regex_internal.c:277:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MB_LEN_MAX];
data/amanda-3.5.1/gnulib/regex_internal.c:280:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/amanda-3.5.1/gnulib/regex_internal.c:321:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (pstr->mbs + byte_idx, buf, mbclen);
data/amanda-3.5.1/gnulib/regex_internal.c:329:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (pstr->mbs + byte_idx,
data/amanda-3.5.1/gnulib/regex_internal.c:390:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (pstr->mbs + byte_idx, buf, mbclen);
data/amanda-3.5.1/gnulib/regex_internal.c:415:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (pstr->mbs + byte_idx, buf, mbcdlen);
data/amanda-3.5.1/gnulib/regex_internal.c:434:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (pstr->mbs + byte_idx, p, mbclen);
data/amanda-3.5.1/gnulib/regex_internal.c:437:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (pstr->mbs + byte_idx, p, mbclen);
data/amanda-3.5.1/gnulib/regex_internal.c:733:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[6];
data/amanda-3.5.1/gnulib/regex_internal.c:1037:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest->elems, src->elems, src->nelem * sizeof (Idx));
data/amanda-3.5.1/gnulib/regex_internal.c:1131:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest->elems, dest->elems + sbase, delta * sizeof (Idx));
data/amanda-3.5.1/gnulib/regex_internal.c:1175:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest->elems + id, src1->elems + i1,
data/amanda-3.5.1/gnulib/regex_internal.c:1181:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest->elems + id, src2->elems + i2,
data/amanda-3.5.1/gnulib/regex_internal.c:1212:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest->elems, src->elems, src->nelem * sizeof (Idx));
data/amanda-3.5.1/gnulib/regex_internal.c:1234:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest->elems + sbase, src->elems, (is + 1) * sizeof (Idx));
data/amanda-3.5.1/gnulib/regex_internal.c:1262:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest->elems, dest->elems + sbase,
data/amanda-3.5.1/gnulib/regex_internal.h:810:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest, src, sizeof (bitset_t));
data/amanda-3.5.1/gnulib/regexec.c:388:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (__mempcpy (s, string1, length1), string2, length2);
data/amanda-3.5.1/gnulib/regexec.c:390:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (s, string1, length1);
data/amanda-3.5.1/gnulib/regexec.c:391:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (s + length1, string2, length2);
data/amanda-3.5.1/gnulib/regexec.c:1402:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (fs->stack[num].regs, regs, sizeof (regmatch_t) * nregs);
data/amanda-3.5.1/gnulib/regexec.c:1415:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (regs, fs->stack[num].regs, sizeof (regmatch_t) * nregs);
data/amanda-3.5.1/gnulib/regexec.c:1469:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (prev_idx_match, pmatch, sizeof (regmatch_t) * nmatch);
data/amanda-3.5.1/gnulib/regexec.c:1579:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (prev_idx_match, pmatch, sizeof (regmatch_t) * nmatch);
data/amanda-3.5.1/gnulib/regexec.c:1590:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (pmatch, prev_idx_match, sizeof (regmatch_t) * nmatch);
data/amanda-3.5.1/gnulib/select.c:47:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char in[FD_SETSIZE / CHAR_BIT];
data/amanda-3.5.1/gnulib/select.c:48:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char out[FD_SETSIZE / CHAR_BIT];
data/amanda-3.5.1/gnulib/select.c:253:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char anyfds_in[FD_SETSIZE / CHAR_BIT];
data/amanda-3.5.1/gnulib/select.c:410:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&handle_rfds, rfds, sizeof (fd_set));
data/amanda-3.5.1/gnulib/select.c:411:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&handle_wfds, wfds, sizeof (fd_set));
data/amanda-3.5.1/gnulib/select.c:412:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&handle_xfds, xfds, sizeof (fd_set));
data/amanda-3.5.1/gnulib/select.c:486:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&handle_rfds, rfds, sizeof (fd_set));
data/amanda-3.5.1/gnulib/select.c:487:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&handle_wfds, wfds, sizeof (fd_set));
data/amanda-3.5.1/gnulib/select.c:488:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&handle_xfds, xfds, sizeof (fd_set));
data/amanda-3.5.1/gnulib/snprintf.c:57:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (str, output, pruned_len);
data/amanda-3.5.1/gnulib/stat.c:109:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fixed_name[PATH_MAX + 1] = {0};
data/amanda-3.5.1/gnulib/stdio-impl.h:45:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char _ubuf[3]; \
data/amanda-3.5.1/gnulib/stdio-impl.h:46:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char _nbuf[1]; \
data/amanda-3.5.1/gnulib/stdio.in.h:263:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
# undef fopen
data/amanda-3.5.1/gnulib/stdio.in.h:264:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
# define fopen rpl_fopen
data/amanda-3.5.1/gnulib/stdio.in.h:266:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_GL_FUNCDECL_RPL (fopen, FILE *, (const char *filename, const char *mode)
data/amanda-3.5.1/gnulib/stdio.in.h:268:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_GL_CXXALIAS_RPL (fopen, FILE *, (const char *filename, const char *mode));
data/amanda-3.5.1/gnulib/stdio.in.h:270:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_GL_CXXALIAS_SYS (fopen, FILE *, (const char *filename, const char *mode));
data/amanda-3.5.1/gnulib/stdio.in.h:272:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_GL_CXXALIASWARN (fopen);
data/amanda-3.5.1/gnulib/stdio.in.h:274:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
# undef fopen
data/amanda-3.5.1/gnulib/stdio.in.h:276:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
_GL_WARN_ON_USE (fopen, "fopen on native Windows platforms is not POSIX compliant - "
data/amanda-3.5.1/gnulib/stdio.in.h:1098:12: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
# define tmpfile rpl_tmpfile
data/amanda-3.5.1/gnulib/stdio.in.h:1100:19: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
_GL_FUNCDECL_RPL (tmpfile, FILE *, (void));
data/amanda-3.5.1/gnulib/stdio.in.h:1101:19: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
_GL_CXXALIAS_RPL (tmpfile, FILE *, (void));
data/amanda-3.5.1/gnulib/stdio.in.h:1103:19: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
_GL_CXXALIAS_SYS (tmpfile, FILE *, (void));
data/amanda-3.5.1/gnulib/stdio.in.h:1105:19: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
_GL_CXXALIASWARN (tmpfile);
data/amanda-3.5.1/gnulib/stdio.in.h:1107:9: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
# undef tmpfile
data/amanda-3.5.1/gnulib/stdio.in.h:1109:18: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
_GL_WARN_ON_USE (tmpfile, "tmpfile is not usable on mingw - "
data/amanda-3.5.1/gnulib/stdlib.in.h:398:12: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
# define mkstemp rpl_mkstemp
data/amanda-3.5.1/gnulib/stdlib.in.h:400:19: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
_GL_FUNCDECL_RPL (mkstemp, int, (char * /*template*/) _GL_ARG_NONNULL ((1)));
data/amanda-3.5.1/gnulib/stdlib.in.h:401:19: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
_GL_CXXALIAS_RPL (mkstemp, int, (char * /*template*/));
data/amanda-3.5.1/gnulib/stdlib.in.h:404:19: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
_GL_FUNCDECL_SYS (mkstemp, int, (char * /*template*/) _GL_ARG_NONNULL ((1)));
data/amanda-3.5.1/gnulib/stdlib.in.h:406:19: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
_GL_CXXALIAS_SYS (mkstemp, int, (char * /*template*/));
data/amanda-3.5.1/gnulib/stdlib.in.h:408:19: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
_GL_CXXALIASWARN (mkstemp);
data/amanda-3.5.1/gnulib/stdlib.in.h:410:9: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
# undef mkstemp
data/amanda-3.5.1/gnulib/stdlib.in.h:412:18: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
_GL_WARN_ON_USE (mkstemp, "mkstemp is unportable - "
data/amanda-3.5.1/gnulib/sys_socket.in.h:111:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char __ss_padding[_SS_PADSIZE];
data/amanda-3.5.1/gnulib/sys_stat.in.h:704:44: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
_GL_FUNCDECL_RPL (utimensat, int, (int fd, char const *name,
data/amanda-3.5.1/gnulib/sys_stat.in.h:707:44: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
_GL_CXXALIAS_RPL (utimensat, int, (int fd, char const *name,
data/amanda-3.5.1/gnulib/sys_stat.in.h:711:44: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
_GL_FUNCDECL_SYS (utimensat, int, (int fd, char const *name,
data/amanda-3.5.1/gnulib/sys_stat.in.h:715:44: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
_GL_CXXALIAS_SYS (utimensat, int, (int fd, char const *name,
data/amanda-3.5.1/gnulib/tempname.c:70:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
# define __open open
data/amanda-3.5.1/gnulib/tempname.c:171:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (tmpl, "%.*s/%.*sXXXXXX", (int) dlen, dir, (int) plen, pfx);
data/amanda-3.5.1/gnulib/vasnprintf.c:143:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
# define DCHAR_CPY memcpy
data/amanda-3.5.1/gnulib/vasnprintf.c:284:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pointbuf[5];
data/amanda-3.5.1/gnulib/vasnprintf.c:285:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (pointbuf, "%#.0f", 1.0);
data/amanda-3.5.1/gnulib/vasnprintf.c:509:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (r_ptr, a_ptr, a_len * sizeof (mp_limb_t));
data/amanda-3.5.1/gnulib/vasnprintf.c:645:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (r_ptr, a_ptr, a_len * sizeof (mp_limb_t));
data/amanda-3.5.1/gnulib/vasnprintf.c:2664:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cbuf[64]; /* Assume MB_CUR_MAX <= 64. */
data/amanda-3.5.1/gnulib/vasnprintf.c:2709:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cbuf[64]; /* Assume MB_CUR_MAX <= 64. */
data/amanda-3.5.1/gnulib/vasnprintf.c:2759:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cbuf[64]; /* Assume MB_CUR_MAX <= 64. */
data/amanda-3.5.1/gnulib/vasnprintf.c:2772:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (tmpptr, cbuf, count);
data/amanda-3.5.1/gnulib/vasnprintf.c:2840:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cbuf[64]; /* Assume MB_CUR_MAX <= 64. */
data/amanda-3.5.1/gnulib/vasnprintf.c:2853:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result + length, cbuf, count);
data/amanda-3.5.1/gnulib/vasnprintf.c:2869:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cbuf[64]; /* Assume MB_CUR_MAX <= 64. */
data/amanda-3.5.1/gnulib/vasnprintf.c:2891:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result + length, cbuf, count);
data/amanda-3.5.1/gnulib/vasnprintf.c:3172:35: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf ((char *) p, "%+d", exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:3178:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expbuf[6 + 1];
data/amanda-3.5.1/gnulib/vasnprintf.c:3180:35: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (expbuf, "%+d", exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:3323:35: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf ((char *) p, "%+d", exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:3329:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expbuf[6 + 1];
data/amanda-3.5.1/gnulib/vasnprintf.c:3331:35: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (expbuf, "%+d", exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:3398:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result + length, tmp, count * sizeof (DCHAR_T));
data/amanda-3.5.1/gnulib/vasnprintf.c:3783:37: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf ((char *) p, "%+.2d", exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:3789:37: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expbuf[6 + 1];
data/amanda-3.5.1/gnulib/vasnprintf.c:3791:37: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (expbuf, "%+.2d", exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:3964:45: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf ((char *) p, "%+.2d", exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:3970:45: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expbuf[6 + 1];
data/amanda-3.5.1/gnulib/vasnprintf.c:3972:45: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (expbuf, "%+.2d", exponent);
data/amanda-3.5.1/gnulib/vasnprintf.c:4262:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expbuf[6 + 1];
data/amanda-3.5.1/gnulib/vasnprintf.c:4455:47: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char expbuf[6 + 1];
data/amanda-3.5.1/gnulib/vasnprintf.c:4581:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result + length, tmp, count * sizeof (DCHAR_T));
data/amanda-3.5.1/gnulib/vasnprintf.c:4789:29: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (fbp, dp->width_start, n * sizeof (TCHAR_T));
data/amanda-3.5.1/gnulib/vasnprintf.c:4810:29: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (fbp, dp->precision_start, n * sizeof (TCHAR_T));
data/amanda-3.5.1/gnulib/vasnprintf.c:5509:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result + length, tmp, count * sizeof (DCHAR_T));
data/amanda-3.5.1/ndmp-src/amndma_tape_simulator.c:86:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fd = atoi(drive_name);
data/amanda-3.5.1/ndmp-src/amndma_tape_simulator.c:104:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (drive_name, omode);
data/amanda-3.5.1/ndmp-src/md5.h:65:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buffer[64]; /* input buffer */
data/amanda-3.5.1/ndmp-src/md5c.c:55:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char PADDING[64] = {
data/amanda-3.5.1/ndmp-src/md5c.c:157:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char digest[16]; /* message digest */
data/amanda-3.5.1/ndmp-src/md5c.c:160:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char bits[8];
data/amanda-3.5.1/ndmp-src/md5c.c:186:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char block[64];
data/amanda-3.5.1/ndmp-src/md5c.c:331:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
((char *)output)[i] = (char)value;
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:1887:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reason[100];
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2015:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reason[100];
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2118:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reason[100];
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2229:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reason[100];
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2586:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reason[100];
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2824:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[32];
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2874:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (prefix, "%cLF", ref_conn->chan.name[1]);
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2893:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[32];
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2918:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[32];
data/amanda-3.5.1/ndmp-src/ndma_comm_dispatch.c:2948:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[32];
data/amanda-3.5.1/ndmp-src/ndma_comm_job.c:186:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (errbuf,
data/amanda-3.5.1/ndmp-src/ndma_comm_job.c:199:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (errbuf,
data/amanda-3.5.1/ndmp-src/ndma_comm_job.c:216:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (errbuf,
data/amanda-3.5.1/ndmp-src/ndma_comm_job.c:230:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (errbuf,
data/amanda-3.5.1/ndmp-src/ndma_comm_session.c:98:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ip_addr[100];
data/amanda-3.5.1/ndmp-src/ndma_comm_session.c:110:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ip_addr[100];
data/amanda-3.5.1/ndmp-src/ndma_comm_session.c:140:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ip_addr[100];
data/amanda-3.5.1/ndmp-src/ndma_comm_session.c:158:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/amanda-3.5.1/ndmp-src/ndma_comm_session.c:365:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[80];
data/amanda-3.5.1/ndmp-src/ndma_cops_backreco.c:165:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char estb_buf[64];
data/amanda-3.5.1/ndmp-src/ndma_cops_labels.c:114:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char labbuf[NDMMEDIA_LABEL_MAX];
data/amanda-3.5.1/ndmp-src/ndma_cops_labels.c:115:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[200];
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:180:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:327:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/amanda-3.5.1/ndmp-src/ndma_cops_robot.c:343:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[60];
data/amanda-3.5.1/ndmp-src/ndma_cops_robot.c:371:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (prefix, "drive @%d full", edp->element_address);
data/amanda-3.5.1/ndmp-src/ndma_cops_robot.c:382:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(prefix), ", src @%d",
data/amanda-3.5.1/ndmp-src/ndma_ctrl_calls.c:120:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
addr.ndmp9_addr_u.tcp_addr.port = atoi(port);
data/amanda-3.5.1/ndmp-src/ndma_ctrl_calls.c:446:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy (reply->data_in.data_in_val,
data/amanda-3.5.1/ndmp-src/ndma_ctrl_calls.c:470:4: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy (reply->data_in.data_in_val, buf, *read_count);
data/amanda-3.5.1/ndmp-src/ndma_ctrl_media.c:382:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tape_read_buf[512];
data/amanda-3.5.1/ndmp-src/ndma_ctrl_media.c:427:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/amanda-3.5.1/ndmp-src/ndma_ctrl_media.c:451:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mylabbuf[NDMMEDIA_LABEL_MAX];
data/amanda-3.5.1/ndmp-src/ndma_ctrl_media.c:507:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[80];
data/amanda-3.5.1/ndmp-src/ndma_ctrl_media.c:555:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c:270:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[60];
data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c:295:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (prefix, "drive @%d not empty", edp->element_address);
data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c:303:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(prefix), ", src @%d",
data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c:345:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[111];
data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c:346:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lnbuf[30];
data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c:364:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (lnbuf, " ");
data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c:369:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "PP-ERROR");
data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c:393:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (lnbuf, " %2d ", i+1);
data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c:395:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (lnbuf, " ");
data/amanda-3.5.1/ndmp-src/ndma_ctrl_robot.c:398:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "PP-ERROR");
data/amanda-3.5.1/ndmp-src/ndma_ctst_data.c:331:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[100];
data/amanda-3.5.1/ndmp-src/ndma_ctst_data.c:332:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[256];
data/amanda-3.5.1/ndmp-src/ndma_ctst_data.c:342:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (errbuf, "???");
data/amanda-3.5.1/ndmp-src/ndma_ctst_data.c:356:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (errbuf, "reason != NA");
data/amanda-3.5.1/ndmp-src/ndma_ctst_data.c:365:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (errbuf, "bogus state");
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:504:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[100];
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:505:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[256];
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:515:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (errbuf, "???");
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:529:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (errbuf, "reason(s) != NA");
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:536:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (errbuf, "halt_reason != NA");
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:543:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (errbuf, "pause_reason != NA");
data/amanda-3.5.1/ndmp-src/ndma_ctst_mover.c:549:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (errbuf, "bogus state");
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:214:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[128];
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:308:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[128];
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:330:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char test_name_buf[512];
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:350:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char warn_msg_buf[512];
data/amanda-3.5.1/ndmp-src/ndma_ctst_subr.c:361:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fail_msg_buf[512];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:264:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:348:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:460:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64*1024];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:574:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[80];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:575:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (tmp,
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:619:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char note[128];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:620:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64*1024];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:631:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (note, "Write tape file %d", fileno+1);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:634:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (note, "file #%d, %d records, %d bytes/rec",
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:687:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char note[128];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:688:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pbuf[64*1024];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:689:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64*1024];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:700:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (note, "Read tape file %d", fileno+1);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:703:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (note, "file #%d, %d records, %d bytes/rec",
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:729:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[80];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:730:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (tmp,
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:789:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char note[128];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:790:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pbuf[64*1024];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:791:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64*1024];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:805:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (note, "Seek around tape file %d", fileno+1);
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:808:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (note, "file #%d, %d records, %d bytes/rec",
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:971:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:995:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, " expect file_num=%ld got file_num=%ld",
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:999:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, " expect blockno=%ld got blockno=%ld",
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:1147:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[128];
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:1148:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (tmp,
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:1214:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy (reply->data_in.data_in_val,
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:1231:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy (reply->data_in.data_in_val,
data/amanda-3.5.1/ndmp-src/ndma_ctst_tape.c:1248:5: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy (reply->data_in.data_in_val,
data/amanda-3.5.1/ndmp-src/ndma_data.c:112:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/ndmp-src/ndma_data.c:129:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/amanda-3.5.1/ndmp-src/ndma_data.c:137:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "@%llu", nl->fh_info.value);
data/amanda-3.5.1/ndmp-src/ndma_data.c:154:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[NDMDA_MAX_CMD];
data/amanda-3.5.1/ndmp-src/ndma_data.c:156:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (cmd, "wrap_");
data/amanda-3.5.1/ndmp-src/ndma_data.c:160:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[40];
data/amanda-3.5.1/ndmp-src/ndma_data.c:161:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tmpbuf, "-d%d", sess->param.log_level);
data/amanda-3.5.1/ndmp-src/ndma_data.c:189:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[NDMDA_MAX_CMD];
data/amanda-3.5.1/ndmp-src/ndma_data.c:191:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (cmd, "wrap_");
data/amanda-3.5.1/ndmp-src/ndma_data.c:195:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[40];
data/amanda-3.5.1/ndmp-src/ndma_data.c:196:6: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(tmpbuf, "-d%d", sess->param.log_level);
data/amanda-3.5.1/ndmp-src/ndma_data.c:225:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[NDMDA_MAX_CMD];
data/amanda-3.5.1/ndmp-src/ndma_data.c:227:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (cmd, "wrap_");
data/amanda-3.5.1/ndmp-src/ndma_data.c:549:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy (&from_chan->data[from_chan->beg_ix],
data/amanda-3.5.1/ndmp-src/ndma_data.c:728:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/amanda-3.5.1/ndmp-src/ndma_data_pfe.c:56:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
nullfd = open ("/dev/null", 2);
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:400:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (reason_end, "unknown addr_type");
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:407:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (reason_end, "OK");
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:464:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (reason_end, "unknown addr_type");
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:471:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (reason_end, "OK");
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:511:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (reason_end, "TCP listen() failed");
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:528:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (reason_end, "OK");
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:565:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (reason_end, "TCP connect() failed");
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:722:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (reason_end, "unknown chan_mode");
data/amanda-3.5.1/ndmp-src/ndma_image_stream.c:729:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (reason_end, "OK");
data/amanda-3.5.1/ndmp-src/ndma_noti_calls.c:132:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:155:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pvoltag[32];
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:156:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char avoltag[32];
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:196:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[PATH_MAX];
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:202:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_RDONLY, 0666);
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:220:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[PATH_MAX];
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:226:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_WRONLY|O_TRUNC|O_CREAT, 0666);
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:241:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char src_filename[PATH_MAX];
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:243:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dest_filename[PATH_MAX];
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:246:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pos[PATH_MAX];
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:316:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open(dest_filename, O_CREAT | O_WRONLY, 0666);
data/amanda-3.5.1/ndmp-src/ndma_tape.c:599:2: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy (data, ch->data + ch->end_ix, n_read);
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:92:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(lockfile_name, O_CREAT|O_EXCL, 0666)) < 0) {
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:121:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pos_buf[32];
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:147:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (drive_name, omode);
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:268:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pos_buf[32];
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:271:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (pos_buf, "%ld", (long) cur_pos);
data/amanda-3.5.1/ndmp-src/ndmagents.h:652:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bu_type[32];
data/amanda-3.5.1/ndmp-src/ndmagents.h:667:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt_image_buf[NDMDA_N_FMT_IMAGE_BUF];
data/amanda-3.5.1/ndmp-src/ndmagents.h:668:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt_error_buf[NDMDA_N_FMT_ERROR_BUF];
data/amanda-3.5.1/ndmp-src/ndmagents.h:669:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt_wrap_buf[NDMDA_N_FMT_WRAP_BUF];
data/amanda-3.5.1/ndmp-src/ndmagents.h:823:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tape_buffer[NDMOS_CONST_TAPE_REC_MAX];
data/amanda-3.5.1/ndmp-src/ndmagents.h:943:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NDM_N_IMAGE_STREAM_BUF];
data/amanda-3.5.1/ndmp-src/ndmagents.h:1079:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char md5_challenge[64]; /* CONNECT_AUTH MD5 */
data/amanda-3.5.1/ndmp-src/ndmagents.h:1199:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *name, char digest[16]);
data/amanda-3.5.1/ndmp-src/ndmagents.h:1199:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *name, char digest[16]);
data/amanda-3.5.1/ndmp-src/ndmjob.h:96:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
GLOBAL char * e_exclude_pattern[MAX_EXCLUDE_PATTERN];
data/amanda-3.5.1/ndmp-src/ndmjob.h:121:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
GLOBAL char * file_arg[MAX_FILE_ARG];
data/amanda-3.5.1/ndmp-src/ndmjob.h:122:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
GLOBAL char * file_arg_new[MAX_FILE_ARG];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:149:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char options[100];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:274:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
d_debug = atoi(optarg);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:447:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:451:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[1];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:463:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(o_load_files_file, "r");
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:613:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
o_from_addr = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:617:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
o_to_addr = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:628:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
o_time_limit = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:634:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
o_use_eject = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:637:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
o_tape_addr = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:639:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
o_from_addr = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:641:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
o_to_addr = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:643:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
o_tape_timeout = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:645:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
o_robot_timeout = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:665:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d_agent[1025];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:666:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int fd = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:685:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
o_tape_limit = atoi(value);
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:730:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vbuf[100];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:731:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char abuf[100];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:732:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char obuf[5];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:736:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (vbuf, " NDMPv2");
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:739:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (vbuf, " NDMPv3");
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:742:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (vbuf, " NDMPv4");
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:747:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (abuf, " CONTROL");
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:750:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (abuf, " DATA");
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:753:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (abuf, " TAPE");
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:756:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (abuf, " ROBOT");
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:785:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:896:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char env_name[50];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:929:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:937:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen (argfile, "r");
data/amanda-3.5.1/ndmp-src/ndmjob_args.c:972:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char * tmp_av[100];
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:49:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[100];
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:403:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:413:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(J_index_file, "r");
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:453:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:518:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[40];
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:565:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:620:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:47:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(I_index_file) != 0) {
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:49:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ifp = fdopen(atoi(I_index_file), "w");
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:52:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ifp = fopen (I_index_file, "w");
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:70:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoi(I_index_file) == 0) {
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:71:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:93:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:106:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tagbuf[32];
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:109:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/amanda-3.5.1/ndmp-src/ndmjob_main_util.c:142:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/amanda-3.5.1/ndmp-src/ndmjob_rules.c:50:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reason[100];
data/amanda-3.5.1/ndmp-src/ndmjob_rules.c:53:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (reason, "(no reason given)");
data/amanda-3.5.1/ndmp-src/ndml_agent.c:104:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
agent->port = atoi(port);
data/amanda-3.5.1/ndmp-src/ndml_agent.c:177:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (agent->host, "(resident)");
data/amanda-3.5.1/ndmp-src/ndml_agent.c:208:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy (&addr, &sin->sin_addr, 4);
data/amanda-3.5.1/ndmp-src/ndml_agent.c:213:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy (he->h_addr, &sin->sin_addr, 4);
data/amanda-3.5.1/ndmp-src/ndml_bstf.c:419:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen (av[i], "r");
data/amanda-3.5.1/ndmp-src/ndml_bstf.c:426:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/amanda-3.5.1/ndmp-src/ndml_chan.c:357:3: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
bcopy (&ch->data[ch->beg_ix], ch->data, len);
data/amanda-3.5.1/ndmp-src/ndml_chan.c:511:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (bp, "ready=%d avail=%d ",
data/amanda-3.5.1/ndmp-src/ndml_chan.c:516:17: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
if (ch->ready) strcat (bp, "-rdy");
data/amanda-3.5.1/ndmp-src/ndml_chan.c:517:17: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
if (ch->check) strcat (bp, "-chk");
data/amanda-3.5.1/ndmp-src/ndml_chan.c:518:15: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
if (ch->eof) strcat (bp, "-eof");
data/amanda-3.5.1/ndmp-src/ndml_chan.c:519:17: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
if (ch->error) strcat (bp, "-err");
data/amanda-3.5.1/ndmp-src/ndml_config.c:47:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[CFG_BUF_SIZE];
data/amanda-3.5.1/ndmp-src/ndml_config.c:48:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char * sv[CFG_MAX_SV];
data/amanda-3.5.1/ndmp-src/ndml_config.c:72:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen (filename, "r");
data/amanda-3.5.1/ndmp-src/ndml_conn.c:517:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char challenge[NDMP_MD5_CHALLENGE_LENGTH];
data/amanda-3.5.1/ndmp-src/ndml_conn.c:518:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[NDMP_MD5_DIGEST_LENGTH];
data/amanda-3.5.1/ndmp-src/ndml_conn.c:1044:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char linebuf[16*3+3];
data/amanda-3.5.1/ndmp-src/ndml_conn.c:1052:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (p, " %02x", b);
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:46:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[8];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:47:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char statbuf[100];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:48:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[NDMOS_CONST_PATH_MAX];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:50:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (prefix, "DHf");
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:66:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[8];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:67:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[NDMOS_CONST_PATH_MAX];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:69:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (prefix, "DHd");
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:84:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[8];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:85:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char statbuf[100];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:87:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (prefix, "DHn");
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:101:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[8];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:103:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (prefix, "DHr");
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:180:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[256];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:181:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char linebuf[2048];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:183:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (key, "DHr ");
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:210:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char component[256+128];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:248:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[256+128];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:249:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char linebuf[2048];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:251:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (key, "DHd %llu ", dir_node);
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:256:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (p, " UNIX ");
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:282:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[128];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:283:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char linebuf[2048];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:285:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (key, "DHn %llu UNIX ", node);
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:327:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[2048];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:328:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char linebuf[2048];
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:330:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (key, "DHf ");
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:335:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (p, " UNIX ");
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:382:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (p, " m%04lo", fstat->mode.value & 07777);
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:387:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (p, " u%ld", fstat->uid.value);
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:392:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (p, " g%ld", fstat->gid.value);
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:399:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (p, " s%llu", fstat->size.value);
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:410:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (p, " tm%lu", fstat->mtime.value);
data/amanda-3.5.1/ndmp-src/ndml_fhdb.c:415:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (p, " @%lld", fstat->fh_info.value);
data/amanda-3.5.1/ndmp-src/ndml_log.c:47:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[40];
data/amanda-3.5.1/ndmp-src/ndml_log.c:68:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "%d:%02d:%02d.%03d", hour, min, sec, ms);
data/amanda-3.5.1/ndmp-src/ndml_log.c:77:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/ndmp-src/ndml_log.c:89:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/ndmp-src/ndml_md5.c:72:28: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ndmmd5_generate_challenge (char challenge[NDMP_MD5_CHALLENGE_LENGTH])
data/amanda-3.5.1/ndmp-src/ndml_md5.c:87:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ndmmd5_ok_digest (char challenge[NDMP_MD5_CHALLENGE_LENGTH],
data/amanda-3.5.1/ndmp-src/ndml_md5.c:88:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *clear_text_password,
data/amanda-3.5.1/ndmp-src/ndml_md5.c:89:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[NDMP_MD5_DIGEST_LENGTH])
data/amanda-3.5.1/ndmp-src/ndml_md5.c:91:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char my_digest[16];
data/amanda-3.5.1/ndmp-src/ndml_md5.c:105:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ndmmd5_digest (char challenge[NDMP_MD5_CHALLENGE_LENGTH],
data/amanda-3.5.1/ndmp-src/ndml_md5.c:106:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *clear_text_password,
data/amanda-3.5.1/ndmp-src/ndml_md5.c:107:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[NDMP_MD5_DIGEST_LENGTH])
data/amanda-3.5.1/ndmp-src/ndml_md5.c:111:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char message[128];
data/amanda-3.5.1/ndmp-src/ndml_media.c:137:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (q, "+%d", me->file_mark_offset);
data/amanda-3.5.1/ndmp-src/ndml_media.c:143:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (q, "/0");
data/amanda-3.5.1/ndmp-src/ndml_media.c:145:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (q, "/%lldG", me->n_bytes/(1024*1024*1024));
data/amanda-3.5.1/ndmp-src/ndml_media.c:147:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (q, "/%lldM", me->n_bytes/(1024*1024));
data/amanda-3.5.1/ndmp-src/ndml_media.c:149:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (q, "/%lldK", me->n_bytes/(1024));
data/amanda-3.5.1/ndmp-src/ndml_media.c:151:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (q, "/%lld", me->n_bytes);
data/amanda-3.5.1/ndmp-src/ndml_media.c:156:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (q, "@%d", me->slot_addr);
data/amanda-3.5.1/ndmp-src/ndml_media.c:214:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<INVALID>>");
data/amanda-3.5.1/ndmp-src/ndml_nmb.c:86:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/amanda-3.5.1/ndmp-src/ndml_nmb.c:112:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char combo[3];
data/amanda-3.5.1/ndmp-src/ndml_stzf.c:176:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/amanda-3.5.1/ndmp-src/ndml_stzf.c:177:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char * argv[100];
data/amanda-3.5.1/ndmp-src/ndml_stzf.c:184:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen (av[1], "r");
data/amanda-3.5.1/ndmp-src/ndmlib.h:246:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char frag_hdr_buf[4]; /* see ndmconn_readit() */
data/amanda-3.5.1/ndmp-src/ndmlib.h:476:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char host[NDMAGENT_HOST_MAX+1]; /* name */
data/amanda-3.5.1/ndmp-src/ndmlib.h:478:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char account[NDMAGENT_ACCOUNT_MAX+1]; /* clear text */
data/amanda-3.5.1/ndmp-src/ndmlib.h:479:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char password[NDMAGENT_PASSWORD_MAX+1]; /* clear text */
data/amanda-3.5.1/ndmp-src/ndmlib.h:500:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dev_name[PATH_MAX];
data/amanda-3.5.1/ndmp-src/ndmlib.h:513:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cmd[12];
data/amanda-3.5.1/ndmp-src/ndmlib.h:521:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sense_data[NDMSCSI_MAX_SENSE_DATA];
data/amanda-3.5.1/ndmp-src/ndmlib.h:586:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[NDMMEDIA_LABEL_MAX+1];
data/amanda-3.5.1/ndmp-src/ndmlib.h:690:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern int ndmmd5_digest (char challenge[NDMP_MD5_CHALLENGE_LENGTH],
data/amanda-3.5.1/ndmp-src/ndmlib.h:691:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *clear_text_password,
data/amanda-3.5.1/ndmp-src/ndmlib.h:692:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[NDMP_MD5_DIGEST_LENGTH]);
data/amanda-3.5.1/ndmp-src/ndmlib.h:694:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char challenge[NDMP_MD5_CHALLENGE_LENGTH]);
data/amanda-3.5.1/ndmp-src/ndmlib.h:696:30: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern int ndmmd5_ok_digest (char challenge[NDMP_MD5_CHALLENGE_LENGTH],
data/amanda-3.5.1/ndmp-src/ndmlib.h:697:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *clear_text_password,
data/amanda-3.5.1/ndmp-src/ndmlib.h:698:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digest[NDMP_MD5_DIGEST_LENGTH]);
data/amanda-3.5.1/ndmp-src/ndmos.h:282:38: [2] (buffer) bcopy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
#define NDMOS_API_BCOPY(S,D,N) (void)bcopy((void*)(S),(void*)(D),(N))
data/amanda-3.5.1/ndmp-src/ndmos.h:397:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char drive_name[PATH_MAX]; \
data/amanda-3.5.1/ndmp-src/ndmos.h:404:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sim_dir[PATH_MAX];
data/amanda-3.5.1/ndmp-src/ndmos_common.c:66:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char osbuf[100];
data/amanda-3.5.1/ndmp-src/ndmos_common.c:67:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char idbuf[30];
data/amanda-3.5.1/ndmp-src/ndmos_common.c:68:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char revbuf[100];
data/amanda-3.5.1/ndmp-src/ndmos_common.c:69:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char obuf[5];
data/amanda-3.5.1/ndmp-src/ndmos_common.c:83:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (idbuf, "%lu", gethostid());
data/amanda-3.5.1/ndmp-src/ndmos_common.c:161:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *name, char digest[16])
data/amanda-3.5.1/ndmp-src/ndmos_common.c:161:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *name, char digest[16])
data/amanda-3.5.1/ndmp-src/ndmp0_pp.c:64:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "??? INVALID MESSAGE TYPE");
data/amanda-3.5.1/ndmp-src/ndmp0_pp.c:75:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<INVALID MSG>>");
data/amanda-3.5.1/ndmp-src/ndmp0_pp.c:80:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "version=%d", p->protocol_version);
data/amanda-3.5.1/ndmp-src/ndmp0_pp.c:105:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<INVALID MSG>>");
data/amanda-3.5.1/ndmp-src/ndmp0_pp.c:115:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<ILLEGAL REPLY>>");
data/amanda-3.5.1/ndmp-src/ndmp2.h:170:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char auth_digest[16];
data/amanda-3.5.1/ndmp-src/ndmp2.h:196:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char challenge[64];
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:65:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "??? INVALID MESSAGE TYPE");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:76:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), "(%lx,%d)",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:92:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<INVALID MSG>>");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:97:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "version=%d", p->protocol_version);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:120:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), " ????");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:148:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:181:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 0: sprintf (buf, "flags=0x%lx timeout=%ld datain_len=%ld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:184:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 1: sprintf (buf, "cmd[%d]={", p->cdb.cdb_len);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:186:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), " %02x",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:189:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " }");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:214:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "data_out_len=%d", p->data_out.data_out_len);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:220:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "count=%ld", p->count);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:237:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:268:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:311:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "offset=%lld length=%lld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:340:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "n_paths=%d", p->paths.paths_len);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:353:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:363:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "n_dirs=%d", p->dirs.dirs_len);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:373:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:383:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "n_nodes=%d", p->nodes.nodes_len);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:396:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:413:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "offset=%lld length=%lld", p->offset, p->length);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:419:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "offset=%lld length=%lld", p->offset, p->length);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:425:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "len=%lu", p->len);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:442:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<INVALID MSG>>");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:476:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:489:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 2: sprintf (buf, "auth_type[%d]={", p->auth_type.auth_type_len);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:495:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " }");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:498:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:522:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " }");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:527:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:548:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 1: sprintf (buf, "sense[%d]={", p->ext_sense.ext_sense_len);
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:550:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), " %02x",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:553:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " }");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:567:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 1: sprintf (buf, "soft_errors=%lu block_size=%lu blockno=%lu",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:570:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 2: sprintf (buf, "total_space=%lld space_remain=%lld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:574:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:615:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 3: sprintf (buf, "bytes_processed=%lld est_bytes_remain=%lld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:618:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 4: sprintf (buf, "est_time_remain=%ld mover=",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:622:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 5: sprintf (buf, "read_offset=%lld read_length=%lld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:626:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:646:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:664:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<ILLEGAL REPLY>>");
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:680:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 3: sprintf (buf,"record_size=%lu record_num=%lu data_written=%lld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:683:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 4: sprintf (buf, "seek=%lld to_read=%lld win_off=%lld win_len=%lld",
data/amanda-3.5.1/ndmp-src/ndmp2_pp.c:688:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp3.h:164:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char auth_digest[16];
data/amanda-3.5.1/ndmp-src/ndmp3.h:190:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char challenge[64];
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:65:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "??? INVALID MESSAGE TYPE");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:76:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), "(%lx,%d)",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:92:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<INVALID MSG>>");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:97:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "version=%d", p->protocol_version);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:122:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), " ????");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:155:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:182:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 0: sprintf (buf, "flags=0x%lx timeout=%ld datain_len=%ld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:185:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 1: sprintf (buf, "cmd[%d]={", p->cdb.cdb_len);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:187:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), " %02x",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:190:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " }");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:215:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "data_out_len=%d", p->data_out.data_out_len);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:221:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "count=%ld", p->count);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:237:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:276:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "..... node=%lld fh_info=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:281:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:297:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "addr=");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:337:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "offset=%lld length=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:381:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "n_files=%d total n_names=%d n_stats=%d",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:391:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "[%d] n_names=%d n_stats=%d node=%lld fhinfo=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:450:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, " YIKES n_line=%d lineno=%d", n_line, lineno);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:477:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "n_dirs=%d total n_names=%d",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:487:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "[%ud] n_names=%d node=%lld parent=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:528:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, " YIKES n_line=%d lineno=%d", n_line, lineno);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:555:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "n_nodes=%d total n_stats=%d",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:565:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "[%ud] n_stats=%d node=%lld fhinfo=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:592:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, " YIKES n_line=%d lineno=%d", n_line, lineno);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:607:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "offset=%lld length=%lld", p->offset, p->length);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:613:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "offset=%lld length=%lld", p->offset, p->length);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:619:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "len=%lu", p->len);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:644:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<INVALID MSG>>");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:684:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " }");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:693:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:701:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:715:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:723:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:744:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 1: sprintf (buf, "sense[%d]={", p->ext_sense.ext_sense_len);
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:746:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), " %02x",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:749:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " }");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:764:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 1: sprintf (buf, "soft_errors=%lu block_size=%lu blockno=%lu",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:767:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 2: sprintf (buf, "total_space=%lld space_remain=%lld partition=%lu",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:771:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:813:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 3: sprintf (buf, "bytes_processed=%lld est_bytes_remain=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:816:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 4: sprintf (buf, "est_time_remain=%ld data_conn_addr=",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:821:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 5: sprintf (buf, "read_offset=%lld read_length=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:825:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:845:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:862:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<ILLEGAL REPLY>>");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:878:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 3: sprintf (buf,"record_size=%lu record_num=%lu data_written=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:881:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 4: sprintf (buf, "seek=%lld to_read=%lld win_off=%lld win_len=%lld",
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:885:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 5: sprintf (buf, "data_conn_addr=");
data/amanda-3.5.1/ndmp-src/ndmp3_pp.c:890:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2267:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2332:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/ndmp-src/ndmp4.h:172:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char auth_digest[16];
data/amanda-3.5.1/ndmp-src/ndmp4.h:188:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char challenge[64];
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:65:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "??? INVALID MESSAGE TYPE");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:82:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), " #%d(%lx,%d",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:104:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<INVALID MSG>>");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:109:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "version=%d", p->protocol_version);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:134:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), " ????");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:165:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:194:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 0: sprintf (buf, "flags=0x%lx timeout=%ld datain_len=%ld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:197:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 1: sprintf (buf, "cmd[%d]={", p->cdb.cdb_len);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:199:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), " %02x",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:202:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " }");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:227:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "data_out_len=%d", p->data_out.data_out_len);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:233:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "count=%ld", p->count);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:249:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:288:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "..... node=%lld fh_info=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:293:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:309:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "addr=");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:345:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "offset=%lld length=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:389:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "n_files=%d total n_names=%d n_stats=%d",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:399:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "[%ud] n_names=%d n_stats=%d node=%lld fhinfo=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:458:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, " YIKES n_line=%d lineno=%d", n_line, lineno);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:485:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "n_dirs=%d total n_names=%d",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:495:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "[%ud] n_names=%d node=%lld parent=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:536:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, " YIKES n_line=%d lineno=%d", n_line, lineno);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:563:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "n_nodes=%d total n_stats=%d",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:573:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "[%ud] n_stats=%d node=%lld fhinfo=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:600:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, " YIKES n_line=%d lineno=%d", n_line, lineno);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:615:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "offset=%lld length=%lld", p->offset, p->length);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:621:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "offset=%lld length=%lld", p->offset, p->length);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:627:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "len=%lu", p->len);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:652:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<INVALID MSG>>");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:688:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:702:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:718:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " }");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:726:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:730:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<unimplemented pp>>");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:751:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 1: sprintf (buf, "sense[%d]={", p->ext_sense.ext_sense_len);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:753:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (NDMOS_API_STREND(buf), " %02x",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:756:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " }");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:771:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 1: sprintf (buf, "soft_errors=%lu block_size=%lu blockno=%lu",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:774:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 2: sprintf (buf, "total_space=%lld space_remain=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:778:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:820:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 3: sprintf (buf, "bytes_processed=%lld est_bytes_remain=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:823:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 4: sprintf (buf, "est_time_remain=%ld data_conn_addr=",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:828:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 5: sprintf (buf, "read_offset=%lld read_length=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:832:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:852:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:869:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "<<ILLEGAL REPLY>>");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:885:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 3: sprintf (buf,"record_size=%lu record_num=%lu bytes_moved=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:888:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 4: sprintf (buf, "seek=%lld to_read=%lld win_off=%lld win_len=%lld",
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:892:10: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
case 5: sprintf (buf, "data_conn_addr=");
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:897:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (buf, "--INVALID--");
data/amanda-3.5.1/ndmp-src/ndmp4_translate.c:2300:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/ndmp-src/ndmp9.h:159:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char challenge[64];
data/amanda-3.5.1/ndmp-src/ndmp9.h:172:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char auth_digest[16];
data/amanda-3.5.1/ndmp-src/ndmp_msg_buf.h:89:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char _pad[2];
data/amanda-3.5.1/ndmp-src/ndmprotocol.c:103:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char vbuf[8][32];
data/amanda-3.5.1/ndmp-src/ndmprotocol.c:114:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (vbp, "?0x%x?", val);
data/amanda-3.5.1/ndmp-src/ndmprotocol.c:142:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char yikes_buf[40]; /* non-reentrant */
data/amanda-3.5.1/ndmp-src/ndmprotocol.c:159:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (yikes_buf, "v%dmsg0x%04x", protocol_version, msg);
data/amanda-3.5.1/ndmp-src/ndmprotocol.c:167:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char yikes_buf[40]; /* non-reentrant */
data/amanda-3.5.1/ndmp-src/ndmprotocol.c:185:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (yikes_buf, "v%derr%d", protocol_version, err);
data/amanda-3.5.1/ndmp-src/ndmprotocol.c:222:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "V%d? ", vers);
data/amanda-3.5.1/ndmp-src/ndmprotocol.c:250:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "<<INVALID MSG VERS=%d>>", vers);
data/amanda-3.5.1/ndmp-src/ndmprotocol.c:278:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "<<INVALID MSG VERS=%d>>", vers);
data/amanda-3.5.1/ndmp-src/smc.h:47:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cmd[12];
data/amanda-3.5.1/ndmp-src/smc.h:55:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sense_data[SMC_MAX_SENSE_DATA];
data/amanda-3.5.1/ndmp-src/smc.h:69:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char volume_id[32];
data/amanda-3.5.1/ndmp-src/smc.h:133:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char ident[32];
data/amanda-3.5.1/ndmp-src/smc.h:152:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[64];
data/amanda-3.5.1/ndmp-src/smc_api.c:53:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (smc->errmsg, "SCSI request failed");
data/amanda-3.5.1/ndmp-src/smc_api.c:67:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (smc->errmsg, "SCSI unexpected status");
data/amanda-3.5.1/ndmp-src/smc_api.c:85:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (smc->errmsg,
data/amanda-3.5.1/ndmp-src/smc_api.c:92:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (smc->errmsg, "SCSI check condition");
data/amanda-3.5.1/ndmp-src/smc_api.c:109:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[128];
data/amanda-3.5.1/ndmp-src/smc_api.c:128:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (smc->errmsg, "Not a media changer");
data/amanda-3.5.1/ndmp-src/smc_api.c:170:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[256];
data/amanda-3.5.1/ndmp-src/smc_api.c:194:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (smc->errmsg, "short sense data");
data/amanda-3.5.1/ndmp-src/smc_api.c:202:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (smc->errmsg, "elem_addr_assignment format error");
data/amanda-3.5.1/ndmp-src/smc_api.c:344:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[8192];
data/amanda-3.5.1/ndmp-src/smc_api.c:384:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (smc->errmsg, "elem_status format error");
data/amanda-3.5.1/ndmp-src/smc_pp.c:61:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "slots %d@%d drive %d@%d arm %d@%d i/e %d@%d",
data/amanda-3.5.1/ndmp-src/smc_pp.c:75:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/amanda-3.5.1/ndmp-src/smc_pp.c:85:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " Full ");
data/amanda-3.5.1/ndmp-src/smc_pp.c:87:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " Empty");
data/amanda-3.5.1/ndmp-src/smc_pp.c:93:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " ?access=granted?");
data/amanda-3.5.1/ndmp-src/smc_pp.c:98:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " ?access=denied?");
data/amanda-3.5.1/ndmp-src/smc_pp.c:109:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (strend(buf), " Except(asc=%02x,ascq=%02x)",
data/amanda-3.5.1/ndmp-src/smc_pp.c:139:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (strend(buf), "ID sid=%d", edp->scsi_sid);
data/amanda-3.5.1/ndmp-src/smc_pp.c:141:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, "no-sid-data");
data/amanda-3.5.1/ndmp-src/smc_pp.c:144:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (strend(buf), " lun=%d", edp->scsi_lun);
data/amanda-3.5.1/ndmp-src/smc_pp.c:146:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " no-lun-data");
data/amanda-3.5.1/ndmp-src/smc_pp.c:150:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " not-same-bus");
data/amanda-3.5.1/ndmp-src/smc_pp.c:161:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " can-import");
data/amanda-3.5.1/ndmp-src/smc_pp.c:163:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " can-not-import");
data/amanda-3.5.1/ndmp-src/smc_pp.c:166:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " can-export");
data/amanda-3.5.1/ndmp-src/smc_pp.c:168:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " can-not-export");
data/amanda-3.5.1/ndmp-src/smc_pp.c:171:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " by-oper");
data/amanda-3.5.1/ndmp-src/smc_pp.c:173:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat (buf, " by-mte");
data/amanda-3.5.1/ndmp-src/smc_raw.h:289:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char volume_id[32];
data/amanda-3.5.1/ndmp-src/smc_raw.h:290:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char resv32[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:291:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char volume_seq[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:804:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char first_elem[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:805:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char n_elem[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:807:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char byte_count[3];
data/amanda-3.5.1/ndmp-src/smc_raw.h:815:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char elem_desc_len[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:817:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char byte_count[3];
data/amanda-3.5.1/ndmp-src/smc_raw.h:821:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char element_address[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:847:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char src_se_addr[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:852:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char resv84[4];
data/amanda-3.5.1/ndmp-src/smc_raw.h:853:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char vendor_specific[4];
data/amanda-3.5.1/ndmp-src/smc_raw.h:967:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char mte_addr[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:968:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char mte_count[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:969:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char se_addr[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:970:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char se_count[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:971:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char iee_addr[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:972:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char iee_count[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:973:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char dte_addr[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:974:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char dte_count[2];
data/amanda-3.5.1/ndmp-src/smc_raw.h:975:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char resv18[2];
data/amanda-3.5.1/ndmp-src/wraplib.c:74:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int fd = atoi (filename+1);
data/amanda-3.5.1/ndmp-src/wraplib.c:78:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "bad -I#N");
data/amanda-3.5.1/ndmp-src/wraplib.c:87:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen (filename, "w");
data/amanda-3.5.1/ndmp-src/wraplib.c:130:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fd = atoi (filename+1);
data/amanda-3.5.1/ndmp-src/wraplib.c:134:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "bad -f#N");
data/amanda-3.5.1/ndmp-src/wraplib.c:138:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (filename, o_mode, 0666);
data/amanda-3.5.1/ndmp-src/wraplib.c:154:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/amanda-3.5.1/ndmp-src/wraplib.c:159:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (buf, "%04d ", ++wccb->log_seq_num);
data/amanda-3.5.1/ndmp-src/wraplib.c:210:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "too few arguments");
data/amanda-3.5.1/ndmp-src/wraplib.c:230:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "only one of -c, -x, -t");
data/amanda-3.5.1/ndmp-src/wraplib.c:238:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "only one -B allowed");
data/amanda-3.5.1/ndmp-src/wraplib.c:245:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
wccb->d_debug = atoi(optarg);
data/amanda-3.5.1/ndmp-src/wraplib.c:250:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "-E overflow");
data/amanda-3.5.1/ndmp-src/wraplib.c:266:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "only one -f allowed");
data/amanda-3.5.1/ndmp-src/wraplib.c:274:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "only one -I allowed");
data/amanda-3.5.1/ndmp-src/wraplib.c:282:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "-o overflow");
data/amanda-3.5.1/ndmp-src/wraplib.c:290:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "unknown option");
data/amanda-3.5.1/ndmp-src/wraplib.c:300:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "one of -c, -x, or -t required");
data/amanda-3.5.1/ndmp-src/wraplib.c:305:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "extra args not allowed for -c");
data/amanda-3.5.1/ndmp-src/wraplib.c:324:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "file table overflow");
data/amanda-3.5.1/ndmp-src/wraplib.c:346:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "superfluous args at end");
data/amanda-3.5.1/ndmp-src/wraplib.c:455:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wrap_pipe_fork_exec (char *cmd, int fdmap[3])
data/amanda-3.5.1/ndmp-src/wraplib.c:477:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
nullfd = open ("/dev/null", 2);
data/amanda-3.5.1/ndmp-src/wraplib.c:1295:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg, "EOF on data connection");
data/amanda-3.5.1/ndmp-src/wraplib.c:1298:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (wccb->errmsg, "errno %d on data connection",
data/amanda-3.5.1/ndmp-src/wraplib.c:1402:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (wccb->errmsg, "Can't fstat() data conn rc=%d",
data/amanda-3.5.1/ndmp-src/wraplib.c:1409:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (wccb->errmsg,
data/amanda-3.5.1/ndmp-src/wraplib.c:1416:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (wccb->errmsg, "Unsupported data_conn type %o",
data/amanda-3.5.1/ndmp-src/wraplib.h:55:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern int wrap_pipe_fork_exec (char *cmd, int fdmap[3]);
data/amanda-3.5.1/ndmp-src/wraplib.h:88:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[WRAP_MAX_NAME];
data/amanda-3.5.1/ndmp-src/wraplib.h:97:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char * o_option[WRAP_MAX_O_OPTION]; /* -o OPTION */
data/amanda-3.5.1/ndmp-src/wraplib.h:179:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[WRAP_MAX_PATH];
data/amanda-3.5.1/ndmp-src/wraplib.h:228:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[WRAP_MAX_PATH];
data/amanda-3.5.1/ndmp-src/wraplib.h:240:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[WRAP_MAX_NAME];
data/amanda-3.5.1/ndmp-src/wraplib.h:260:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[WRAP_MAX_NAME];
data/amanda-3.5.1/ndmp-src/wraplib.h:261:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[WRAP_MAX_PATH];
data/amanda-3.5.1/ndmp-src/wraplib.h:312:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[WRAP_MAX_PATH];
data/amanda-3.5.1/oldrecover-src/amrecover.c:61:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dump_date[STR_SIZE]; /* date on which we are restoring */
data/amanda-3.5.1/oldrecover-src/amrecover.c:413:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cwd[STR_SIZE], *dn_guess = NULL, *mpt_guess = NULL;
data/amanda-3.5.1/oldrecover-src/amrecover.h:56:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char dump_date[STR_SIZE]; /* date on which we are restoring */
data/amanda-3.5.1/oldrecover-src/extract_list.c:1204:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(uqfile, "w")) == NULL)
data/amanda-3.5.1/oldrecover-src/extract_list.c:1456:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[32768] = "\0";
data/amanda-3.5.1/oldrecover-src/extract_list.c:1489:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_fsf[100];
data/amanda-3.5.1/oldrecover-src/extract_list.c:1540:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[32768+1];
data/amanda-3.5.1/oldrecover-src/extract_list.c:1651:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[DISK_BLOCK_BYTES];
data/amanda-3.5.1/oldrecover-src/extract_list.c:1884:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[DISK_BLOCK_BYTES];
data/amanda-3.5.1/oldrecover-src/extract_list.c:1967:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desired_tape[MAX_TAPE_LABEL_BUF];
data/amanda-3.5.1/oldrecover-src/extract_list.c:2080:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[STR_SIZE];
data/amanda-3.5.1/oldrecover-src/uparse.c:927:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *yyarg[YYERROR_VERBOSE_ARGS_MAXIMUM];
data/amanda-3.5.1/oldrecover-src/uparse.c:1114:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char yymsgbuf[128];
data/amanda-3.5.1/oldrecover-src/uparse.c:1508:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
{ char buf[STR_SIZE]; puts(getcwd(buf, sizeof(buf))); }
data/amanda-3.5.1/perl/Amanda/Application.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Application.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Application.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Application.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Application.c:1595:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Application.c:2096:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Archive.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Archive.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Archive.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Archive.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Archive.c:2312:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Archive.c:3673:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1778:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2129:38: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->config = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2201:43: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->src_storage = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2273:40: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->src_pool = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2345:41: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->src_label = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2497:46: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->src_labels_str = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2645:44: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->holding_file = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2717:40: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->hostname = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2789:40: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->diskname = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2861:46: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->dump_timestamp = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:3013:43: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->dst_storage = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:3419:46: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
ST(argvi) = SWIG_NewPointerObj((time_t *)memcpy((time_t *)malloc(sizeof(time_t)),&result,sizeof(time_t)), SWIGTYPE_p_time_t, SWIG_POINTER_OWN | 0); argvi++ ;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:3488:46: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
ST(argvi) = SWIG_NewPointerObj((time_t *)memcpy((time_t *)malloc(sizeof(time_t)),&result,sizeof(time_t)), SWIGTYPE_p_time_t, SWIG_POINTER_OWN | 0); argvi++ ;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:3907:49: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
ST(argvi) = SWIG_NewPointerObj((cmdfile_t *)memcpy((cmdfile_t *)malloc(sizeof(cmdfile_t)),&result,sizeof(cmdfile_t)), SWIGTYPE_p_cmdfile_t, SWIG_POINTER_OWN | 0); argvi++ ;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:4784:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Cmdline.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1627:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1836:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[100];
data/amanda-3.5.1/perl/Amanda/Cmdline.c:2729:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Config.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Config.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Config.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Config.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Config.c:2292:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Config.c:2921:51: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
ST(argvi) = SWIG_NewPointerObj((data_path_t *)memcpy((data_path_t *)malloc(sizeof(data_path_t)),&result,sizeof(data_path_t)), SWIGTYPE_p_data_path_t, SWIG_POINTER_OWN | 0); argvi++ ;
data/amanda-3.5.1/perl/Amanda/Config.c:7848:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Debug.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Debug.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Debug.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Debug.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Debug.c:1595:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Debug.c:2656:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Device.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Device.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Device.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Device.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Device.c:1836:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Device.c:2989:57: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
ST(argvi) = SWIG_NewPointerObj((DeviceWriteResult *)memcpy((DeviceWriteResult *)malloc(sizeof(DeviceWriteResult)),&result,sizeof(DeviceWriteResult)), SWIGTYPE_p_DeviceWriteResult, SWIG_POINTER_OWN | 0); argvi++ ;
data/amanda-3.5.1/perl/Amanda/Device.c:5232:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Disklist.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Disklist.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Disklist.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Disklist.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Disklist.c:1804:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Disklist.c:2551:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Feature.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Feature.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Feature.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Feature.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Feature.c:1805:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Feature.c:2520:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Header.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Header.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Header.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Header.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Header.c:1777:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:1812:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (csize) memcpy(val, cptr, csize*sizeof(char));
data/amanda-3.5.1/perl/Amanda/Header.c:2085:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:2400:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:2475:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:2550:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:2625:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:2700:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:2775:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:2850:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:2925:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:3000:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:3075:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:3150:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:3225:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:3300:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:3375:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:3450:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:3525:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp2[STRMAX] ;
data/amanda-3.5.1/perl/Amanda/Header.c:3622:39: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->dle_str = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:4532:36: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->disk = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:4604:38: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->device = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:4756:39: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->program = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:4859:54: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
ST(argvi) = SWIG_NewPointerObj((estimatelist_t *)memcpy((estimatelist_t *)malloc(sizeof(estimatelist_t)),&result,sizeof(estimatelist_t)), SWIGTYPE_p_estimatelist_t, SWIG_POINTER_OWN | 0); argvi++ ;
data/amanda-3.5.1/perl/Amanda/Header.c:5248:51: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
ST(argvi) = SWIG_NewPointerObj((levellist_t *)memcpy((levellist_t *)malloc(sizeof(levellist_t)),&result,sizeof(levellist_t)), SWIGTYPE_p_levellist_t, SWIG_POINTER_OWN | 0); argvi++ ;
data/amanda-3.5.1/perl/Amanda/Header.c:5366:40: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->dumpdate = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:5438:40: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->compprog = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:5510:43: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->srv_encrypt = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:5582:44: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->clnt_encrypt = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:5654:47: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->srv_decrypt_opt = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:5726:48: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->clnt_decrypt_opt = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:5958:36: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
arg1->auth = (char *)(char *)memcpy((char *)malloc((size)*sizeof(char)), (const char *)(arg2), sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Header.c:6481:50: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
ST(argvi) = SWIG_NewPointerObj((proplist_t *)memcpy((proplist_t *)malloc(sizeof(proplist_t)),&result,sizeof(proplist_t)), SWIGTYPE_p_proplist_t, SWIG_POINTER_OWN | 0); argvi++ ;
data/amanda-3.5.1/perl/Amanda/Header.c:6550:52: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
ST(argvi) = SWIG_NewPointerObj((scriptlist_t *)memcpy((scriptlist_t *)malloc(sizeof(scriptlist_t)),&result,sizeof(scriptlist_t)), SWIGTYPE_p_scriptlist_t, SWIG_POINTER_OWN | 0); argvi++ ;
data/amanda-3.5.1/perl/Amanda/Header.c:6619:51: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
ST(argvi) = SWIG_NewPointerObj((data_path_t *)memcpy((data_path_t *)malloc(sizeof(data_path_t)),&result,sizeof(data_path_t)), SWIGTYPE_p_data_path_t, SWIG_POINTER_OWN | 0); argvi++ ;
data/amanda-3.5.1/perl/Amanda/Header.c:7323:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:2742:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Logfile.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Logfile.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Logfile.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Logfile.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Logfile.c:1775:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return fopen(filename, "r");
data/amanda-3.5.1/perl/Amanda/Logfile.c:1807:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Logfile.c:4443:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/MainLoop.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/MainLoop.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/MainLoop.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/MainLoop.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/MainLoop.c:2681:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/NDMP.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/NDMP.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/NDMP.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/NDMP.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/NDMP.c:1605:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/NDMP.c:3061:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Tapelist.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1614:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Tapelist.c:2778:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Tests.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Tests.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Tests.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Tests.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Tests.c:1725:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Tests.c:1766:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10240];
data/amanda-3.5.1/perl/Amanda/Tests.c:1770:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_CREAT|O_WRONLY|O_TRUNC, 0666);
data/amanda-3.5.1/perl/Amanda/Tests.c:1800:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10240];
data/amanda-3.5.1/perl/Amanda/Tests.c:1804:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_RDONLY, 0666);
data/amanda-3.5.1/perl/Amanda/Tests.c:3125:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Util.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Util.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Util.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Util.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Util.c:1661:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Util.c:1980:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ip_addr[100];
data/amanda-3.5.1/perl/Amanda/Util.c:4706:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/Xfer.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/Xfer.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/Xfer.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/Xfer.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/Xfer.c:1973:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/Xfer.c:4059:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/Amanda/XferServer.c:618:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hex[17] = "0123456789abcdef";
data/amanda-3.5.1/perl/Amanda/XferServer.c:1249:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[1024];
data/amanda-3.5.1/perl/Amanda/XferServer.c:1473:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#ifdef open
data/amanda-3.5.1/perl/Amanda/XferServer.c:1474:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#undef open
data/amanda-3.5.1/perl/Amanda/XferServer.c:1757:20: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
*cptr = (char *)memcpy((char *)malloc((size)*sizeof(char)), cstr, sizeof(char)*(size));
data/amanda-3.5.1/perl/Amanda/XferServer.c:3111:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
sv_setpv(sv, (const char *) swig_constants[i].pvalue);
data/amanda-3.5.1/perl/amglue/bigint.c:88:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char numstr[25];
data/amanda-3.5.1/perl/amglue/bigint.c:97:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char numstr[25];
data/amanda-3.5.1/recover-src/amrecover.c:77:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dump_date[STR_SIZE]; /* date on which we are restoring */
data/amanda-3.5.1/recover-src/amrecover.c:137:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newbuf+strlen(mesg_buffer), buf, (size_t)size);
data/amanda-3.5.1/recover-src/amrecover.h:63:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char dump_date[STR_SIZE]; /* date on which we are restoring */
data/amanda-3.5.1/recover-src/extract_list.c:138:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char header_buf[32768];
data/amanda-3.5.1/recover-src/extract_list.c:1553:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(uqfile, "w")) == NULL)
data/amanda-3.5.1/recover-src/extract_list.c:1817:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v_fsf[100];
data/amanda-3.5.1/recover-src/extract_list.c:2275:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char desired_tape[MAX_TAPE_LABEL_BUF];
data/amanda-3.5.1/recover-src/extract_list.c:2328:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
header_send_size = atoi(amidxtaped_line+17);
data/amanda-3.5.1/recover-src/extract_list.c:2952:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newbuf+strlen(ctl_buffer), buf, (size_t)size);
data/amanda-3.5.1/recover-src/extract_list.c:3162:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((ctl_state->fd = open(state_filename, O_WRONLY | O_CREAT | O_EXCL, 0600)) == -1) {
data/amanda-3.5.1/recover-src/extract_list.c:3245:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(header_buf+header_size, buf, to_move);
data/amanda-3.5.1/recover-src/extract_list.c:3339:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data_cookie.buf, buf, size);
data/amanda-3.5.1/recover-src/extract_list.c:3467:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[3];
data/amanda-3.5.1/recover-src/extract_list.c:3497:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[3];
data/amanda-3.5.1/recover-src/uparse.c:1027:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *yyarg[YYERROR_VERBOSE_ARGS_MAXIMUM];
data/amanda-3.5.1/recover-src/uparse.c:1214:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char yymsgbuf[128];
data/amanda-3.5.1/recover-src/uparse.c:1731:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char result[DATE_ALLOC_SIZE];
data/amanda-3.5.1/server-src/amadmin.c:222:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 4: opt_days = atoi(optarg);
data/amanda-3.5.1/server-src/amadmin.c:331:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char str[16];
data/amanda-3.5.1/server-src/amadmin.c:332:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *dow[7] = {
data/amanda-3.5.1/server-src/amadmin.c:350:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(str, "BAD DATE");
data/amanda-3.5.1/server-src/amadmin.c:1508:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[MAX_HOSTNAME_LENGTH+1];
data/amanda-3.5.1/server-src/amcheck.c:185:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[BUFFER_SIZE];
data/amanda-3.5.1/server-src/amcheck.c:187:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pid_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/amcheck.c:458:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((tempfd = fopen(tempfname, "w+")) == NULL) {
data/amanda-3.5.1/server-src/amcheck.c:471:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((mainfd = fopen(mainfname, "w+")) == NULL) {
data/amanda-3.5.1/server-src/amcheck.c:525:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1025];
data/amanda-3.5.1/server-src/amcheck.c:527:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
tempfdr = fopen(tempfname, "r");
data/amanda-3.5.1/server-src/amcheck.c:612:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((nullfd = open("/dev/null", O_RDWR)) < 0) {
data/amanda-3.5.1/server-src/amcheck.c:828:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((nullfd = open("/dev/null", O_RDWR)) == -1) {
data/amanda-3.5.1/server-src/amcheck.c:2095:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/amindex.c:48:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/amindex.c:49:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[14 + 1];
data/amanda-3.5.1/server-src/amindex.c:105:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/amindex.c:106:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[14 + 1];
data/amanda-3.5.1/server-src/amindex.c:162:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/amindex.c:163:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[14 + 1];
data/amanda-3.5.1/server-src/amindex.c:219:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/amindex.c:220:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[14 + 1];
data/amanda-3.5.1/server-src/amindex.c:276:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/amindex.c:277:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[14 + 1];
data/amanda-3.5.1/server-src/amindex.c:333:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/amindex.c:334:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[14 + 1];
data/amanda-3.5.1/server-src/amindex.c:390:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/amindex.c:391:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[14 + 1];
data/amanda-3.5.1/server-src/amindex.c:447:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/amindex.c:448:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[14 + 1];
data/amanda-3.5.1/server-src/amindexd.c:78:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char local_hostname[MAX_HOSTNAME_LENGTH+1]; /* me! */
data/amanda-3.5.1/server-src/amindexd.c:236:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[STR_SIZE], old_line[STR_SIZE];
data/amanda-3.5.1/server-src/amindexd.c:259:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp = fopen(filename,"r")) == NULL) {
data/amanda-3.5.1/server-src/amindexd.c:518:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char myhostname[MAX_HOSTNAME_LENGTH+1];
data/amanda-3.5.1/server-src/amindexd.c:749:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[20];
data/amanda-3.5.1/server-src/amindexd.c:803:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[STR_SIZE];
data/amanda-3.5.1/server-src/amindexd.c:860:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(filename, "r")) == NULL) {
data/amanda-3.5.1/server-src/amindexd.c:997:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[20];
data/amanda-3.5.1/server-src/amindexd.c:1150:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char his_hostname[MAX_HOSTNAME_LENGTH];
data/amanda-3.5.1/server-src/amindexd.c:1750:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char nice[20];
data/amanda-3.5.1/server-src/amindexd.c:1753:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[9], atime[7];
data/amanda-3.5.1/server-src/amindexd.c:1758:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numdate = atoi(date);
data/amanda-3.5.1/server-src/amindexd.c:1770:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numtime = atoi(atime);
data/amanda-3.5.1/server-src/amindexd.c:1989:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[STR_SIZE];
data/amanda-3.5.1/server-src/amindexd.c:2037:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
indexfd = open(new_filename, O_WRONLY|O_CREAT, 0600);
data/amanda-3.5.1/server-src/amindexd.c:2057:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
nullfd = open("/dev/null", O_RDONLY);
data/amanda-3.5.1/server-src/amindexd.c:2087:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pipe_stream = fopen(filename, "r");
data/amanda-3.5.1/server-src/amtrmidx.c:298:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_names, names, name_length * sizeof(char *));
data/amanda-3.5.1/server-src/amtrmidx.c:725:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_fd = open(source_filename, O_RDONLY);
data/amanda-3.5.1/server-src/amtrmidx.c:731:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
out_fd = open(dest_filename, O_WRONLY|O_CREAT, S_IRUSR);
data/amanda-3.5.1/server-src/amtrmidx.c:762:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_fd = open(source_filename, O_RDONLY);
data/amanda-3.5.1/server-src/amtrmidx.c:768:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
out_fd = open(dest_filename, O_WRONLY|O_CREAT, S_IRUSR);
data/amanda-3.5.1/server-src/amtrmidx.c:800:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
in_fd = open(source_filename, O_RDONLY);
data/amanda-3.5.1/server-src/amtrmidx.c:806:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
out_fd = open(dest_filename, O_WRONLY|O_CREAT, S_IRUSR);
data/amanda-3.5.1/server-src/cmdfile.c:233:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cmddata->src_fileno = atoi(fp);
data/amanda-3.5.1/server-src/cmdfile.c:282:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cmddata->src_fileno = atoi(fp);
data/amanda-3.5.1/server-src/cmdfile.c:310:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cmddata->level = atoi(fp);
data/amanda-3.5.1/server-src/disk_history.h:39:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[20];
data/amanda-3.5.1/server-src/disk_history.h:43:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char storage[256];
data/amanda-3.5.1/server-src/disk_history.h:44:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tape[256];
data/amanda-3.5.1/server-src/diskfile.c:78:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((diskf = fopen(filename, "r")) == NULL) {
data/amanda-3.5.1/server-src/diskfile.c:816:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
disk->spindle = atoi(fp);
data/amanda-3.5.1/server-src/driver.c:221:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[1025];
data/amanda-3.5.1/server-src/driver.c:2625:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dumper->output_port = atoi(result_argv[3]);
data/amanda-3.5.1/server-src/driver.c:3583:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int delay = atoi(result_argv[2]);
data/amanda-3.5.1/server-src/driver.c:3584:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int level = atoi(result_argv[3]);
data/amanda-3.5.1/server-src/driver.c:3813:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dumper->output_port = atoi(result_argv[2]);
data/amanda-3.5.1/server-src/driver.c:4180:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
id = atoi(*one_id);
data/amanda-3.5.1/server-src/driver.c:4965:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lvl[64];
data/amanda-3.5.1/server-src/driver.c:4984:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_holdp, sp->holdp, j * sizeof(*new_holdp));
data/amanda-3.5.1/server-src/driver.c:5122:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[DISK_BLOCK_BYTES];
data/amanda-3.5.1/server-src/driver.c:5128:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dirname[1000], *ch;
data/amanda-3.5.1/server-src/driver.c:5168:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fd = open(filename,O_RDONLY)) == -1) {
data/amanda-3.5.1/server-src/driver.c:5674:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[DISK_BLOCK_BYTES];
data/amanda-3.5.1/server-src/driverio.c:91:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[NUM_STR_SIZE + 32];
data/amanda-3.5.1/server-src/driverio.c:351:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/driverio.c:559:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/driverio.c:560:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char orig_kb[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/driverio.c:561:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n_crc[NUM_STR_SIZE+11];
data/amanda-3.5.1/server-src/driverio.c:562:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c_crc[NUM_STR_SIZE+11];
data/amanda-3.5.1/server-src/driverio.c:563:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s_crc[NUM_STR_SIZE+11];
data/amanda-3.5.1/server-src/driverio.c:963:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char number[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/driverio.c:964:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char chunksize[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/driverio.c:965:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char use[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/driverio.c:966:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c_crc[NUM_STR_SIZE+11];
data/amanda-3.5.1/server-src/driverio.c:1239:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/dumper.c:554:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
header_port = (in_port_t)atoi(cmdargs->argv[a++]);
data/amanda-3.5.1/server-src/dumper.c:609:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
level = atoi(cmdargs->argv[a++]);
data/amanda-3.5.1/server-src/dumper.c:719:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
max_warnings = atoi(cmdargs->argv[a++]);
data/amanda-3.5.1/server-src/dumper.c:1142:28: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
statefile_in_mesg = open(state_filename_gz,
data/amanda-3.5.1/server-src/dumper.c:1206:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
retry_delay = atoi(tok);
data/amanda-3.5.1/server-src/dumper.c:1213:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
retry_level = atoi(tok);
data/amanda-3.5.1/server-src/dumper.c:1539:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/dumper.c:1578:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((errf = fopen(errfname, "w+")) == NULL) {
data/amanda-3.5.1/server-src/dumper.c:1606:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
indexout = open(indexfile_tmp, O_WRONLY | O_CREAT | O_TRUNC, 0600);
data/amanda-3.5.1/server-src/dumper.c:1818:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
a = fopen(f,"w");
data/amanda-3.5.1/server-src/dumper.c:2091:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data_port = atoi(s);
data/amanda-3.5.1/server-src/dumper.c:2376:28: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
statefile_in_stream = open(state_filename_gz,
data/amanda-3.5.1/server-src/dumper.c:2572:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data_port = atoi(s);
data/amanda-3.5.1/server-src/dumper.c:2585:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[32770];
data/amanda-3.5.1/server-src/dumper.c:2639:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data_port = atoi(s);
data/amanda-3.5.1/server-src/dumper.c:3437:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
retry_delay = atoi(tok);
data/amanda-3.5.1/server-src/dumper.c:3444:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
retry_level = atoi(tok);
data/amanda-3.5.1/server-src/find.c:92:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seq_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/find.c:166:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seq_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/find.c:630:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char nice[20];
data/amanda-3.5.1/server-src/find.c:633:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[9], atime[7];
data/amanda-3.5.1/server-src/find.c:638:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numdate = atoi(date);
data/amanda-3.5.1/server-src/find.c:650:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numtime = atoi(atime);
data/amanda-3.5.1/server-src/find.c:777:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((logf = fopen(logfile, "r")) == NULL) {
data/amanda-3.5.1/server-src/find.c:893:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((logf = fopen(logfile, "r")) == NULL) {
data/amanda-3.5.1/server-src/find.c:1046:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fileno = atoi(number);
data/amanda-3.5.1/server-src/find.c:1105:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
level = atoi(date);
data/amanda-3.5.1/server-src/find.c:1530:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/find.c:1540:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(curmatch, cur_result, sizeof(find_result_t));
data/amanda-3.5.1/server-src/find.c:1587:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/find.c:1596:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zeropad_ts, cur_result->timestamp, strlen(cur_result->timestamp));
data/amanda-3.5.1/server-src/find.c:1601:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zeropad_w_ts, cur_result->write_timestamp, strlen(cur_result->write_timestamp));
data/amanda-3.5.1/server-src/find.c:1619:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(curmatch, cur_result, sizeof(find_result_t));
data/amanda-3.5.1/server-src/holding.c:100:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ymd[9], hms[7];
data/amanda-3.5.1/server-src/holding.c:116:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
num = atoi(ymd);
data/amanda-3.5.1/server-src/holding.c:129:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
num = atoi(hms);
data/amanda-3.5.1/server-src/holding.c:701:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[DISK_BLOCK_BYTES];
data/amanda-3.5.1/server-src/holding.c:913:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[DISK_BLOCK_BYTES];
data/amanda-3.5.1/server-src/holding.c:949:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[DISK_BLOCK_BYTES];
data/amanda-3.5.1/server-src/holding.c:1059:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pid_FILE = fopen(pid_file, "wx");
data/amanda-3.5.1/server-src/holding.c:1085:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pid_FILE = fopen(pid_file, "r");
data/amanda-3.5.1/server-src/holding.c:1087:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1000];
data/amanda-3.5.1/server-src/holding.c:1090:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pid = atoi(line);
data/amanda-3.5.1/server-src/holding.c:1134:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pid_FILE = fopen(pid_file, "wx");
data/amanda-3.5.1/server-src/infofile.c:89:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
infof = fopen(newinfofile, mode);
data/amanda-3.5.1/server-src/infofile.c:94:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
infof = fopen(infofile, mode);
data/amanda-3.5.1/server-src/infofile.c:539:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char stamp[20]; /* YYYY:MM:DD:hh:mm:ss */
data/amanda-3.5.1/server-src/infofile.h:54:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[MAX_LABEL]; /* tape label */
data/amanda-3.5.1/server-src/logfile.c:106:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char linebuf[STR_SIZE];
data/amanda-3.5.1/server-src/logfile.c:213:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(logfile, O_EXCL | O_CREAT | O_WRONLY, 0600);
data/amanda-3.5.1/server-src/logfile.c:222:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file = fopen(logfile, "r");
data/amanda-3.5.1/server-src/logfile.c:224:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1000];
data/amanda-3.5.1/server-src/logfile.c:303:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seq_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/logfile.c:339:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
logfd = open(logfile, O_WRONLY|O_CREAT|O_APPEND, 0600);
data/amanda-3.5.1/server-src/planner.c:2819:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char est_kb[20]; /* Text formatted dump size */
data/amanda-3.5.1/server-src/planner.c:2820:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tape_kb[20]; /* Text formatted tape size */
data/amanda-3.5.1/server-src/planner.c:3473:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dump_priority_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/planner.c:3474:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dump_level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/planner.c:3475:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dump_nsize_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/planner.c:3476:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dump_csize_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/planner.c:3477:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dump_time_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/planner.c:3478:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dump_kps_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/planner.c:3479:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char degr_level_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/planner.c:3480:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char degr_nsize_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/planner.c:3481:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char degr_csize_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/planner.c:3482:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char degr_time_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/planner.c:3483:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char degr_kps_str[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/server_util.c:314:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char level_number[NUM_STR_SIZE];
data/amanda-3.5.1/server-src/server_util.c:592:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *amcleanup_options[4];
data/amanda-3.5.1/server-src/server_util.c:621:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[1024];
data/amanda-3.5.1/server-src/server_util.c:625:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
log = fopen(logfile, "r");
data/amanda-3.5.1/server-src/tapefile.c:90:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((tapef = fopen(tapefile,"r")) == NULL) {
data/amanda-3.5.1/server-src/tapefile.c:141:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((tapef = fopen(newtapefile,"w")) == NULL) {
data/amanda-3.5.1/server-src/tapefile.c:597:18: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tp->blocksize = atol(s1);
data/amanda-3.5.1/server-src/tapefile.c:689:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[9];
data/amanda-3.5.1/server-src/tapefile.c:695:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dateint = atoi(date);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:248:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port_write_data = atoi(A);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:361:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port_open_header = atoi(A);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:372:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(tmp_filename, O_RDWR|O_CREAT|O_TRUNC, 0600);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:396:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port_write_header = atoi(A);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:572:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
shm_write_data = atoi(A);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:686:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
shm_open_header = atoi(A);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:697:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(tmp_filename, O_RDWR|O_CREAT|O_TRUNC, 0600);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:721:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
shm_write_header = atoi(A);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:965:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
close_chunk_close = atoi(A);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:1138:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fake_enospc_at_byte = (off_t)atoi(env); /* these values are never > MAXINT */
data/amanda-3.5.1/server-src/xfer-source-holding.c:285:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
self->fd = open(self->next_filename, O_RDONLY);
data/amanda-3.5.1/xfer-src/element-glue.c:234:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strsockaddr[INET6_ADDRSTRLEN + 20];
data/amanda-3.5.1/xfer-src/element-glue.c:236:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strsockaddr[INET_ADDRSTRLEN + 20];
data/amanda-3.5.1/xfer-src/element-glue.c:255:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[32770];
data/amanda-3.5.1/xfer-src/element-glue.c:293:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
data_port = atoi(s);
data/amanda-3.5.1/xfer-src/source-file.c:138:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(filename, O_RDONLY);
data/amanda-3.5.1/xfer-src/xfer-element.c:434:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/amanda-3.5.1/xfer-src/xfer-test.c:79:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[TEST_XFER_SIZE];
data/amanda-3.5.1/xfer-src/xfer-test.c:190:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[TEST_XFER_SIZE];
data/amanda-3.5.1/xfer-src/xfer-test.c:761:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[TEST_XFER_SIZE];
data/amanda-3.5.1/xfer-src/xfer-test.c:870:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[TEST_XFER_SIZE];
data/amanda-3.5.1/xfer-src/xfer-test.c:1007:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(self->buf + self->bufpos, buf, size);
data/amanda-3.5.1/xfer-src/xfer-test.c:1089:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullbuf[TEST_XFER_SIZE];
data/amanda-3.5.1/xfer-src/xfer-test.c:1096:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fullbuf + bufpos, buf, size);
data/amanda-3.5.1/xfer-src/xfer-test.c:1510:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
rfd = open(in_filename, O_RDONLY, 0);
data/amanda-3.5.1/xfer-src/xfer-test.c:1516:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
wfd = open(out_filename, O_WRONLY|O_CREAT, 0777);
data/amanda-3.5.1/xfer-src/xfer.c:413:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(st->best, st->cur, st->nlinks * sizeof(linkage));
data/amanda-3.5.1/amandad-src/amandad.c:308:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
argv[i] += strlen("-auth=");
data/amanda-3.5.1/amandad-src/amandad.c:346:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
argv[i] += strlen("-udp=");
data/amanda-3.5.1/amandad-src/amandad.c:392:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
argv[i] += strlen("-tcp=");
data/amanda-3.5.1/amandad-src/amandad.c:735:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (writebuf(as, arguments, strlen(arguments)) < 0) {
data/amanda-3.5.1/amandad-src/amandad.c:984:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(as->repfd, as->repbuf + as->repbufsize,
data/amanda-3.5.1/amandad-src/amandad.c:1049:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
expand_reply_buffer(as, strlen(msg));
data/amanda-3.5.1/amandad-src/amandad.c:1051:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
as->repbufsize += strlen(msg);
data/amanda-3.5.1/amandad-src/amandad.c:1357:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(as->errfd, buf, NETWORK_BLOCK_BYTES);
data/amanda-3.5.1/amandad-src/amandad.c:1398:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(s);
data/amanda-3.5.1/amandad-src/amandad.c:1477:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(dh->fd_read, as->databuf, sizeof(as->databuf));
data/amanda-3.5.1/amandad-src/amandad.c:2193:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (result && strlen(result) == 0)
data/amanda-3.5.1/amar-src/amar-test.c:57:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen((str)); \
data/amanda-3.5.1/amar-src/amar-test.c:94:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
{ EXP_START_FILE, (filenum), 0, (filename), strlen((filename)), 0, 0, 0, (should_ignore), 1 }
data/amanda-3.5.1/amar-src/amar-test.c:103:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
{ EXP_ATTRDATA, (filenum), (attrid), (datastr), strlen((datastr)), 0, (eoa), (truncated), 0, 1 }
data/amanda-3.5.1/amar-src/amar.c:339:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
filename_len = strlen(filename_buf);
data/amanda-3.5.1/amar-src/amar.c:1025:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
count = read(archive->fd, hp->buf + hp->buf_offset + hp->buf_len,
data/amanda-3.5.1/amar-src/amarchiver.c:88:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file = amar_new_file(archive, argv[i], strlen(argv[i]), NULL, &gerror);
data/amanda-3.5.1/amar-src/amarchiver.c:142:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ud->argv[i]) == filename_len
data/amanda-3.5.1/application-src/ambsdtar.c:224:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *result = malloc(4*strlen(str)+1);
data/amanda-3.5.1/application-src/ambsdtar.c:529:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (state_dir && strlen(state_dir) == 0)
data/amanda-3.5.1/application-src/ambsdtar.c:768:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (state_dir && strlen(state_dir) == 0)
data/amanda-3.5.1/application-src/ambsdtar.c:840:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (state_dir && strlen(state_dir) == 0)
data/amanda-3.5.1/application-src/ambsdtar.c:947:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/ambsdtar.c:947:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/ambsdtar.c:949:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/application-src/ambsdtar.c:1118:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(filter->fd, filter->buffer, 32768);
data/amanda-3.5.1/application-src/ambsdtar.c:1170:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(filter->fd, filter->buffer + filter->first + filter->size,
data/amanda-3.5.1/application-src/ambsdtar.c:1299:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (state_dir && strlen(state_dir) == 0)
data/amanda-3.5.1/application-src/ambsdtar.c:1331:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_timestamps[strlen(new_timestamps)-1] = '\0';
data/amanda-3.5.1/application-src/ambsdtar.c:1484:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(filter->fd, filter->buffer + filter->first + filter->size,
data/amanda-3.5.1/application-src/ambsdtar.c:1516:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(filter->fd, filter->buffer, filter->allocated_size);
data/amanda-3.5.1/application-src/ambsdtar.c:1711:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0'; /* remove '\n' */
data/amanda-3.5.1/application-src/ambsdtar.c:1766:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0'; /* remove '\n' */
data/amanda-3.5.1/application-src/ambsdtar.c:1908:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(0, buf, 32768) > 0) {
data/amanda-3.5.1/application-src/ambsdtar.c:1931:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(0, line, 32768) > 0) {
data/amanda-3.5.1/application-src/ambsdtar.c:1954:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/ambsdtar.c:1954:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/ambsdtar.c:1956:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/application-src/amgtar.c:265:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *result = malloc(4*strlen(str)+1);
data/amanda-3.5.1/application-src/amgtar.c:743:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(gnutar_listdir) == 0)
data/amanda-3.5.1/application-src/amgtar.c:893:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
path_len = strlen(argument->dle.disk);
data/amanda-3.5.1/application-src/amgtar.c:898:6: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(full_path, "/");
data/amanda-3.5.1/application-src/amgtar.c:906:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while (path_len + strlen(dp->d_name) + 1 > path_alloc) {
data/amanda-3.5.1/application-src/amgtar.c:1057:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (gnutar_listdir && strlen(gnutar_listdir) == 0)
data/amanda-3.5.1/application-src/amgtar.c:1222:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amgtar.c:1222:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amgtar.c:1224:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/application-src/amgtar.c:1439:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amgtar.c:1439:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amgtar.c:1441:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/application-src/amgtar.c:1455:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
guint a = full_write(argument->state_stream, s, strlen(s));
data/amanda-3.5.1/application-src/amgtar.c:1456:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (a < strlen(s)) {
data/amanda-3.5.1/application-src/amgtar.c:1530:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!errmsg && strlen(incrname) > 4) {
data/amanda-3.5.1/application-src/amgtar.c:1534:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nodotnew[strlen(nodotnew)-4] = '\0';
data/amanda-3.5.1/application-src/amgtar.c:1682:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0'; /* remove '\n' */
data/amanda-3.5.1/application-src/amgtar.c:1742:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0'; /* remove '\n' */
data/amanda-3.5.1/application-src/amgtar.c:1836:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (filename[strlen(filename)-1] == '\n')
data/amanda-3.5.1/application-src/amgtar.c:1837:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
filename[strlen(filename)-1] = '\0';
data/amanda-3.5.1/application-src/amgtar.c:1847:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlenii = strlen(ii);
data/amanda-3.5.1/application-src/amgtar.c:1849:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strlenii < strlen(filename) &&
data/amanda-3.5.1/application-src/amgtar.c:1974:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(0, buf, 32768) > 0) {
data/amanda-3.5.1/application-src/amgtar.c:1997:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(0, line, 32768) > 0) {
data/amanda-3.5.1/application-src/amgtar.c:2020:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amgtar.c:2020:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amgtar.c:2022:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/application-src/amgtar.c:2173:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((nb = read(infd, &buf, sizeof(buf))) > 0) {
data/amanda-3.5.1/application-src/amgtar.c:2274:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
size = read(outf, buf, 32767);
data/amanda-3.5.1/application-src/amstar.c:241:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(filter->fd, filter->buffer + filter->first + filter->size,
data/amanda-3.5.1/application-src/amstar.c:907:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amstar.c:907:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amstar.c:909:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/application-src/amstar.c:1121:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amstar.c:1121:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amstar.c:1123:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/application-src/amstar.c:1278:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0'; /* remove '\n' */
data/amanda-3.5.1/application-src/amstar.c:1397:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(0, buf, 32768) > 0) {
data/amanda-3.5.1/application-src/amstar.c:1420:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(0, line, 32768) > 0) {
data/amanda-3.5.1/application-src/amstar.c:1443:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amstar.c:1443:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n') {
data/amanda-3.5.1/application-src/amstar.c:1445:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/client-src/calcsize.c:427:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
parent_len = strlen(parent_dir);
data/amanda-3.5.1/client-src/calcsize.c:440:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen(dirname);
data/amanda-3.5.1/client-src/calcsize.c:722:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(pattern)>0 && pattern[strlen(pattern)-1] == '\n')
data/amanda-3.5.1/client-src/calcsize.c:722:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(pattern)>0 && pattern[strlen(pattern)-1] == '\n')
data/amanda-3.5.1/client-src/calcsize.c:723:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pattern[strlen(pattern)-1] = '\0';
data/amanda-3.5.1/client-src/client_util.c:137:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
match_len = strlen(get_pname()) + strlen(diskname) + 2;
data/amanda-3.5.1/client-src/client_util.c:137:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
match_len = strlen(get_pname()) + strlen(diskname) + 2;
data/amanda-3.5.1/client-src/client_util.c:142:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d_name_len = strlen(entry->d_name);
data/amanda-3.5.1/client-src/client_util.c:205:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen(aexc);
data/amanda-3.5.1/client-src/client_util.c:212:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file[strlen(file) - 1] = '\0';
data/amanda-3.5.1/client-src/client_util.c:236:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen(ainc);
data/amanda-3.5.1/client-src/client_util.c:256:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file[strlen(file) - 1] = '\0';
data/amanda-3.5.1/client-src/client_util.c:285:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file[strlen(file) - 1] = '\0';
data/amanda-3.5.1/client-src/client_util.c:824:3: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(dle->application_client_name) > 0) {
data/amanda-3.5.1/client-src/client_util.c:854:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (script->client_name && strlen(script->client_name) > 0) {
data/amanda-3.5.1/client-src/client_util.c:1482:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(qdisk);
data/amanda-3.5.1/client-src/client_util.c:1485:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (line[0] == '\0' || (int)strlen(line) <= len)
data/amanda-3.5.1/client-src/findpass.c:114:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffer_size = 2 * strlen(disk) + 1; /* worst case */
data/amanda-3.5.1/client-src/getfsent.c:392:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ep = fsent->fstype = malloc(strlen(typebuf)+2);
data/amanda-3.5.1/client-src/killpgrp.c:118:7: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ch = getchar();
data/amanda-3.5.1/client-src/noop.c:83:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(0, &ch, 1);
data/amanda-3.5.1/client-src/noop.c:94:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(1, options, strlen(options)) < strlen(options)) {
data/amanda-3.5.1/client-src/noop.c:94:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(1, options, strlen(options)) < strlen(options)) {
data/amanda-3.5.1/client-src/selfcheck.c:725:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lpass = strlen(user_and_password);
data/amanda-3.5.1/client-src/selfcheck.c:736:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pwtext_len = (size_t)strlen(pwtext);
data/amanda-3.5.1/client-src/selfcheck.c:1200:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0) {
data/amanda-3.5.1/client-src/selfcheck.c:1238:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0) {
data/amanda-3.5.1/client-src/selfcheck.c:1515:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(gnutar_list_dir) == 0)
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:270:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(gnutar_list_dir) == 0)
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:335:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((nb = read(infd, &buf, sizeof(buf))) > 0) {
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:450:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(domain, '\0', strlen(domain));
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:458:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lpass = strlen(user_and_password);
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:463:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(domain, '\0', strlen(domain));
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:472:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pwtext_len = strlen(pwtext);
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:477:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(domain, '\0', strlen(domain));
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:537:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(domain, '\0', strlen(domain));
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:702:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (incrname != NULL && strlen(incrname) > 4) {
data/amanda-3.5.1/client-src/sendbackup-gnutar.c:706:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nodotnew[strlen(nodotnew)-4] = '\0';
data/amanda-3.5.1/client-src/sendbackup.c:121:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r = full_write(fd, s, strlen(s));
data/amanda-3.5.1/client-src/sendbackup.c:914:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0) {
data/amanda-3.5.1/client-src/sendbackup.c:1236:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1236:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1242:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1242:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1248:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1248:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1261:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1261:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1268:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1268:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1276:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1276:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1283:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1283:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(mesgfd, line, strlen(line)) != strlen(line)) {
data/amanda-3.5.1/client-src/sendbackup.c:1684:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bytes_read = read(0, buffer, sizeof(buffer));
data/amanda-3.5.1/client-src/senddiscover.c:433:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0) {
data/amanda-3.5.1/client-src/sendsize.c:1162:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(est->qamname);
data/amanda-3.5.1/client-src/sendsize.c:1165:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (line[0] == '\0' || (int)strlen(line) <= len)
data/amanda-3.5.1/client-src/sendsize.c:1907:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(domain, '\0', strlen(domain));
data/amanda-3.5.1/client-src/sendsize.c:1915:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lpass = strlen(user_and_password);
data/amanda-3.5.1/client-src/sendsize.c:1920:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(domain, '\0', strlen(domain));
data/amanda-3.5.1/client-src/sendsize.c:1929:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pwtext_len = strlen(pwtext);
data/amanda-3.5.1/client-src/sendsize.c:1934:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(domain, '\0', strlen(domain));
data/amanda-3.5.1/client-src/sendsize.c:1946:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(domain, '\0', strlen(domain));
data/amanda-3.5.1/client-src/sendsize.c:1994:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(domain, '\0', strlen(domain));
data/amanda-3.5.1/client-src/sendsize.c:2152:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(gnutar_list_dir) == 0)
data/amanda-3.5.1/client-src/sendsize.c:2208:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((nb = read(infd, &buf, sizeof(buf))) > 0) {
data/amanda-3.5.1/client-src/sendsize.c:2336:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(errmsg);
data/amanda-3.5.1/client-src/sendsize.c:2352:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(errmsg);
data/amanda-3.5.1/client-src/sendsize.c:2668:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0) {
data/amanda-3.5.1/client-src/unctime.c:66:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(dbuf, str, sizeof(dbuf) - 1);
data/amanda-3.5.1/common-src/alloc.c:126:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l1 = strlen(*p); /* variable name w/o null */
data/amanda-3.5.1/common-src/alloc.c:127:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l2 = strlen(v) + 1; /* include null byte here */
data/amanda-3.5.1/common-src/amanda.h:96:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define NAMLEN(dirent) strlen((dirent)->d_name)
data/amanda-3.5.1/common-src/amflock-lnlock.c:65:9: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
mask = umask(0027);
data/amanda-3.5.1/common-src/amflock-lnlock.c:67:2: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(mask);
data/amanda-3.5.1/common-src/amflock-test.c:125:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
(read((fd), (cp), 1) == 1)
data/amanda-3.5.1/common-src/amjson.c:285:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(s);
data/amanda-3.5.1/common-src/amjson.c:377:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(s);
data/amanda-3.5.1/common-src/amjson.c:490:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(s);
data/amanda-3.5.1/common-src/amjson.c:572:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str)*2;
data/amanda-3.5.1/common-src/ammessage.c:519:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str)*2;
data/amanda-3.5.1/common-src/ammessage.c:1587:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = g_string_sized_new(strlen(msg)*2);
data/amanda-3.5.1/common-src/ammessage.c:2064:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
full_write(fd, msg, strlen(msg));
data/amanda-3.5.1/common-src/ammessage.c:2077:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(s);
data/amanda-3.5.1/common-src/ammessage.c:2152:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(s);
data/amanda-3.5.1/common-src/ammessage.c:2246:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(s);
data/amanda-3.5.1/common-src/amservice.c:513:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(lstream->fd_in, buf, 65536);
data/amanda-3.5.1/common-src/amservice.c:600:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(0, buf, 1024);
data/amanda-3.5.1/common-src/amutil.c:741:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = s = g_malloc((strlen(str) * 2) + 2 + 1);
data/amanda-3.5.1/common-src/amutil.c:803:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = strlen(str);
data/amanda-3.5.1/common-src/amutil.c:1016:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(tok);
data/amanda-3.5.1/common-src/amutil.c:1027:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(tok);
data/amanda-3.5.1/common-src/amutil.c:1071:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_len = orig_len = strlen(str);
data/amanda-3.5.1/common-src/amutil.c:1102:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_len = orig_len = strlen(str);
data/amanda-3.5.1/common-src/amutil.c:1231:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *local = g_malloc(strlen(*str)+1);
data/amanda-3.5.1/common-src/amutil.c:1270:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *local = g_malloc(strlen(*str)+1);
data/amanda-3.5.1/common-src/amutil.c:1355:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
qstr = d = g_malloc(strlen(str)*2+1);
data/amanda-3.5.1/common-src/amutil.c:1416:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((nb=read(infd, &buf, sizeof(buf))) > 0) {
data/amanda-3.5.1/common-src/amutil.c:1822:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t in_len = strlen(in);
data/amanda-3.5.1/common-src/amutil.c:2403:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p[strlen(p)-1] = '\0';
data/amanda-3.5.1/common-src/amutil.c:2417:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p[strlen(p)-1] = '\0';
data/amanda-3.5.1/common-src/amutil.c:2491:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (strlen(uname) >= 3 &&
data/amanda-3.5.1/common-src/amutil.c:2492:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_strcasecmp(uname+strlen(uname)-3, "bsd") == 0) {
data/amanda-3.5.1/common-src/amutil.c:2533:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (platform[strlen(platform) -1] == '\n') {
data/amanda-3.5.1/common-src/amutil.c:2534:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
platform[strlen(platform) -1] = '\0';
data/amanda-3.5.1/common-src/amutil.h:45:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define BSTRNCMP(a,b) strncmp(a, b, strlen(b))
data/amanda-3.5.1/common-src/amxml.c:570:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tt,text,text_len);
data/amanda-3.5.1/common-src/amxml.c:582:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (strlen(tt) > 0) {
data/amanda-3.5.1/common-src/amxml.c:584:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *ttt = tt + strlen(tt) - 1;
data/amanda-3.5.1/common-src/amxml.c:630:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while (strlen(ttt) > 0) {
data/amanda-3.5.1/common-src/amxml.c:634:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ttt += strlen("client");
data/amanda-3.5.1/common-src/amxml.c:639:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ttt += strlen("calcsize");
data/amanda-3.5.1/common-src/amxml.c:643:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ttt += strlen("server");
data/amanda-3.5.1/common-src/amxml.c:1013:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_markup_parse_context_parse(context, txt, strlen(txt), &gerror);
data/amanda-3.5.1/common-src/amxml.c:1044:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_markup_parse_context_parse(context, line, strlen(line), &gerror);
data/amanda-3.5.1/common-src/amxml.c:1071:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
quoted_value = malloc(strlen(value)+1);
data/amanda-3.5.1/common-src/amxml.c:1097:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
base64_encode_alloc(value, strlen(value), &b64value);
data/amanda-3.5.1/common-src/backup_support_option.c:205:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0) {
data/amanda-3.5.1/common-src/bsd-security.c:304:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!service || strlen(service) <= 1)
data/amanda-3.5.1/common-src/bsd-security.c:667:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(bs->fd, bs->databuf, sizeof(bs->databuf));
data/amanda-3.5.1/common-src/bsd-security.c:724:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(bs->fd, bs->shm_ring->data + write_offset,
data/amanda-3.5.1/common-src/bsd-security.c:729:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(bs->fd, bs->shm_ring->data + write_offset,
data/amanda-3.5.1/common-src/bsd-security.c:735:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rval1 = read(bs->fd, bs->shm_ring->data,
data/amanda-3.5.1/common-src/bsd-security.c:891:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(bs->fd, bs->databuf, sizeof(bs->databuf));
data/amanda-3.5.1/common-src/bsdtcp-security.c:179:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!service || strlen(service) <= 1)
data/amanda-3.5.1/common-src/bsdtcp-security.c:350:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(errmsg);
data/amanda-3.5.1/common-src/bsdudp-security.c:280:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!service || strlen(service) <= 1)
data/amanda-3.5.1/common-src/conffile.c:2041:6: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getc(current_file);
data/amanda-3.5.1/common-src/conffile.c:2384:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncasecmp(key_ovr, key, strlen(key_ovr)) != 0)
data/amanda-3.5.1/common-src/conffile.c:2387:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(key) <= strlen(key_ovr) + 1)
data/amanda-3.5.1/common-src/conffile.c:2387:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(key) <= strlen(key_ovr) + 1)
data/amanda-3.5.1/common-src/conffile.c:2390:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
keyword = key + strlen(key_ovr) + 1;
data/amanda-3.5.1/common-src/conffile.c:4164:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tokenval.v.s) == 0) {
data/amanda-3.5.1/common-src/conffile.c:4238:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ds->tag_type == TAG_NAME && strlen(ds->tag) == 0) {
data/amanda-3.5.1/common-src/conffile.c:4795:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tokenval.v.s) != 0) {
data/amanda-3.5.1/common-src/conffile.c:4826:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tokenval.v.s) != 0) {
data/amanda-3.5.1/common-src/conffile.c:4858:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tokenval.v.s) != 0) {
data/amanda-3.5.1/common-src/conffile.c:4890:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tokenval.v.s) != 0) {
data/amanda-3.5.1/common-src/conffile.c:4953:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tokenval.v.s) == 0) {
data/amanda-3.5.1/common-src/conffile.c:5789:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(s) == 1) {
data/amanda-3.5.1/common-src/conffile.c:6813:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new_cf = g_malloc(strlen(changerfile)+strlen(changern)-1);
data/amanda-3.5.1/common-src/conffile.c:6813:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new_cf = g_malloc(strlen(changerfile)+strlen(changern)-1);
data/amanda-3.5.1/common-src/conffile.c:6815:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(new_cf, changerfile, len);
data/amanda-3.5.1/common-src/conffile.c:6817:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(new_cf+len+strlen(changern), cf+2);
data/amanda-3.5.1/common-src/conffile.c:6818:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(new_cf+len+strlen(changern)+strlen(cf+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6818:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(new_cf+len+strlen(changern)+strlen(cf+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6818:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(new_cf+len+strlen(changern)+strlen(cf+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6824:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new_tp = g_malloc(strlen(tpchanger)+strlen(changern)-1);
data/amanda-3.5.1/common-src/conffile.c:6824:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new_tp = g_malloc(strlen(tpchanger)+strlen(changern)-1);
data/amanda-3.5.1/common-src/conffile.c:6826:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(new_tp, tpchanger, len);
data/amanda-3.5.1/common-src/conffile.c:6828:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(new_tp+len+strlen(changern), cf+2);
data/amanda-3.5.1/common-src/conffile.c:6829:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(new_tp+len+strlen(changern)+strlen(cf+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6829:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(new_tp+len+strlen(changern)+strlen(cf+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6829:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(new_tp+len+strlen(changern)+strlen(cf+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6946:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new_pool = g_malloc(strlen(pool)+strlen(org)-1);
data/amanda-3.5.1/common-src/conffile.c:6946:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new_pool = g_malloc(strlen(pool)+strlen(org)-1);
data/amanda-3.5.1/common-src/conffile.c:6948:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(new_pool, pool, len);
data/amanda-3.5.1/common-src/conffile.c:6950:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(new_pool+len+strlen(org), p+2);
data/amanda-3.5.1/common-src/conffile.c:6951:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(new_pool+len+strlen(org)+strlen(p+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6951:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(new_pool+len+strlen(org)+strlen(p+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6951:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(new_pool+len+strlen(org)+strlen(p+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6958:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new_pool = g_malloc(strlen(pool)+strlen(conf_name)-1);
data/amanda-3.5.1/common-src/conffile.c:6958:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new_pool = g_malloc(strlen(pool)+strlen(conf_name)-1);
data/amanda-3.5.1/common-src/conffile.c:6960:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(new_pool, pool, len);
data/amanda-3.5.1/common-src/conffile.c:6962:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(new_pool+len+strlen(conf_name), p+2);
data/amanda-3.5.1/common-src/conffile.c:6963:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(new_pool+len+strlen(conf_name)+strlen(p+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6963:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(new_pool+len+strlen(conf_name)+strlen(p+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6963:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(new_pool+len+strlen(conf_name)+strlen(p+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6973:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new_pool = g_malloc(strlen(pool)+strlen(storagen)-1);
data/amanda-3.5.1/common-src/conffile.c:6973:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *new_pool = g_malloc(strlen(pool)+strlen(storagen)-1);
data/amanda-3.5.1/common-src/conffile.c:6975:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(new_pool, pool, len);
data/amanda-3.5.1/common-src/conffile.c:6977:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(new_pool+len+strlen(storagen), p+2);
data/amanda-3.5.1/common-src/conffile.c:6978:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(new_pool+len+strlen(storagen)+strlen(p+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6978:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(new_pool+len+strlen(storagen)+strlen(p+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:6978:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(new_pool+len+strlen(storagen)+strlen(p+2),"\0",1);
data/amanda-3.5.1/common-src/conffile.c:8405:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen((*argv)[i]) > 2) {
data/amanda-3.5.1/common-src/conffile.c:8460:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (key_ovr && strncasecmp(key_ovr, key, strlen(key_ovr)) != 0) {
data/amanda-3.5.1/common-src/conffile.c:9225:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (result && strlen(result) == 0)
data/amanda-3.5.1/common-src/conffile.c:9298:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (result && strlen(result) == 0)
data/amanda-3.5.1/common-src/conffile.c:9708:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(buf[0]) - 1;
data/amanda-3.5.1/common-src/conffile.c:9718:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(buf[0]) - 1;
data/amanda-3.5.1/common-src/conffile.c:9728:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(buf[0]) - 1;
data/amanda-3.5.1/common-src/conffile.c:10328:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (config_dir[strlen(config_dir)-1] == '/') {
data/amanda-3.5.1/common-src/conffile.c:10862:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = g_malloc0(strlen(name)+1);
data/amanda-3.5.1/common-src/debug.c:346:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pname_len = strlen(pname);
data/amanda-3.5.1/common-src/debug.c:354:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
test_name_len = strlen(test_name);
data/amanda-3.5.1/common-src/debug.c:359:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d_name_len = strlen(entry->d_name);
data/amanda-3.5.1/common-src/debug.c:515:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(timestamp);
data/amanda-3.5.1/common-src/debug.c:568:20: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
mask = (mode_t)umask((mode_t)0037); /* Allow the group read bit through */
data/amanda-3.5.1/common-src/debug.c:591:11: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
(void)umask(mask); /* Restore mask */
data/amanda-3.5.1/common-src/debug.c:670:20: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
mask = (mode_t)umask((mode_t)0037);
data/amanda-3.5.1/common-src/debug.c:756:11: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
(void)umask(mask); /* Restore mask */
data/amanda-3.5.1/common-src/event-test.c:283:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
len = read(cb_fd, buf, sizeof(buf));
data/amanda-3.5.1/common-src/event-test.c:384:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (write(fd, buf, strlen(buf)+1) == -1) {
data/amanda-3.5.1/common-src/event-test.c:497:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
len = read(fd, buf, sizeof(buf));
data/amanda-3.5.1/common-src/file.c:178:12: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
(void) umask(0077);
data/amanda-3.5.1/common-src/file.c:418:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_size = 2*strlen(inp) + 1; /* worst case */
data/amanda-3.5.1/common-src/file.c:443:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(result_buf, pathname, PATH_MAX-1);
data/amanda-3.5.1/common-src/file.c:485:18: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((ch = fgetc(stream)) != EOF) {
data/amanda-3.5.1/common-src/file.c:489:11: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ch = fgetc(stream);
data/amanda-3.5.1/common-src/file.c:491:8: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ch = fgetc(stream);
data/amanda-3.5.1/common-src/file.c:571:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
loffset = strlen(line);
data/amanda-3.5.1/common-src/file.c:584:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
loffset += strlen(pline);
data/amanda-3.5.1/common-src/file.c:795:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((r = read(fd, endptr, buflen)) <= 0) {
data/amanda-3.5.1/common-src/fileheader-test.c:93:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->comp_suffix, "");
data/amanda-3.5.1/common-src/fileheader-test.c:97:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->comp_suffix, "");
data/amanda-3.5.1/common-src/fileheader-test.c:113:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->encrypt_suffix, "");
data/amanda-3.5.1/common-src/fileheader-test.c:117:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->encrypt_suffix, "");
data/amanda-3.5.1/common-src/fileheader-test.c:136:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->disk, "");
data/amanda-3.5.1/common-src/fileheader-test.c:141:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->disk, ""); /* should be quoted */
data/amanda-3.5.1/common-src/fileheader-test.c:170:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->application, "");
data/amanda-3.5.1/common-src/fileheader-test.c:185:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->dle_str, "");
data/amanda-3.5.1/common-src/fileheader-test.c:204:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->program, "");
data/amanda-3.5.1/common-src/fileheader-test.c:220:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srv_encrypt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:221:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clnt_encrypt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:222:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srv_decrypt_opt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:223:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clnt_decrypt_opt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:226:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clnt_encrypt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:227:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srv_decrypt_opt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:228:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clnt_decrypt_opt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:231:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clnt_encrypt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:233:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clnt_decrypt_opt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:235:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srv_encrypt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:237:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srv_decrypt_opt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:238:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clnt_decrypt_opt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:240:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srv_encrypt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:242:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srv_decrypt_opt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:246:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srv_encrypt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:247:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clnt_encrypt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:248:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srv_decrypt_opt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:249:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clnt_decrypt_opt, "");
data/amanda-3.5.1/common-src/fileheader-test.c:262:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srvcompprog, "");
data/amanda-3.5.1/common-src/fileheader-test.c:263:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clntcompprog, "");
data/amanda-3.5.1/common-src/fileheader-test.c:266:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clntcompprog, "");
data/amanda-3.5.1/common-src/fileheader-test.c:268:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srvcompprog, "");
data/amanda-3.5.1/common-src/fileheader-test.c:272:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->srvcompprog, "");
data/amanda-3.5.1/common-src/fileheader-test.c:273:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->clntcompprog, "");
data/amanda-3.5.1/common-src/fileheader-test.c:286:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->recover_cmd, "");
data/amanda-3.5.1/common-src/fileheader-test.c:287:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->uncompress_cmd, "");
data/amanda-3.5.1/common-src/fileheader-test.c:288:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->decrypt_cmd, "");
data/amanda-3.5.1/common-src/fileheader-test.c:291:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->uncompress_cmd, "");
data/amanda-3.5.1/common-src/fileheader-test.c:292:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->decrypt_cmd, "");
data/amanda-3.5.1/common-src/fileheader-test.c:296:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->decrypt_cmd, "");
data/amanda-3.5.1/common-src/fileheader-test.c:303:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->recover_cmd, "");
data/amanda-3.5.1/common-src/fileheader-test.c:304:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->uncompress_cmd, "");
data/amanda-3.5.1/common-src/fileheader-test.c:305:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->decrypt_cmd, "");
data/amanda-3.5.1/common-src/fileheader-test.c:320:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->cont_filename, "");
data/amanda-3.5.1/common-src/fileheader-test.c:349:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(hdr->name, "");
data/amanda-3.5.1/common-src/fileheader.c:86:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(str, s, strlen(s)+1);
data/amanda-3.5.1/common-src/fileheader.c:90:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (s = str+strlen(str)-1; s >= str; s--) {
data/amanda-3.5.1/common-src/fileheader.c:132:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(line1, buf, lsize);
data/amanda-3.5.1/common-src/fileheader.c:170:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->datestamp, tok, sizeof(file->datestamp) - 1);
data/amanda-3.5.1/common-src/fileheader.c:184:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->name, tok, sizeof(file->name) - 1);
data/amanda-3.5.1/common-src/fileheader.c:196:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->datestamp, tok, sizeof(file->datestamp) - 1);
data/amanda-3.5.1/common-src/fileheader.c:204:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->name, tok, sizeof(file->name) - 1);
data/amanda-3.5.1/common-src/fileheader.c:213:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->disk, uqname, sizeof(file->disk) - 1);
data/amanda-3.5.1/common-src/fileheader.c:270:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->comp_suffix, tok, sizeof(file->comp_suffix) - 1);
data/amanda-3.5.1/common-src/fileheader.c:276:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(file->comp_suffix, ".Z", sizeof(file->comp_suffix) - 1);
data/amanda-3.5.1/common-src/fileheader.c:278:6: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(file->comp_suffix, "");
data/amanda-3.5.1/common-src/fileheader.c:293:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->program, tok, sizeof(file->program) - 1);
data/amanda-3.5.1/common-src/fileheader.c:306:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->encrypt_suffix, tok,
data/amanda-3.5.1/common-src/fileheader.c:315:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(file->encrypt_suffix, "");
data/amanda-3.5.1/common-src/fileheader.c:330:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->srvcompprog, tok, sizeof(file->srvcompprog) - 1);
data/amanda-3.5.1/common-src/fileheader.c:344:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->clntcompprog, tok, sizeof(file->clntcompprog) - 1);
data/amanda-3.5.1/common-src/fileheader.c:358:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->srv_encrypt, tok, sizeof(file->srv_encrypt) - 1);
data/amanda-3.5.1/common-src/fileheader.c:372:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->clnt_encrypt, tok, sizeof(file->clnt_encrypt) - 1);
data/amanda-3.5.1/common-src/fileheader.c:386:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->srv_decrypt_opt, tok,
data/amanda-3.5.1/common-src/fileheader.c:401:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->clnt_decrypt_opt, tok,
data/amanda-3.5.1/common-src/fileheader.c:419:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->datestamp, tok, sizeof(file->datestamp) - 1);
data/amanda-3.5.1/common-src/fileheader.c:446:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->cont_filename, line,
data/amanda-3.5.1/common-src/fileheader.c:463:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->application, line,
data/amanda-3.5.1/common-src/fileheader.c:518:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(file->recover_cmd, "BUG\0",
data/amanda-3.5.1/common-src/fileheader.c:547:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->recover_cmd, cmd1,
data/amanda-3.5.1/common-src/fileheader.c:552:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->recover_cmd, cmd2,
data/amanda-3.5.1/common-src/fileheader.c:560:8: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->recover_cmd, cmd3,
data/amanda-3.5.1/common-src/fileheader.c:619:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(val) == 0) {
data/amanda-3.5.1/common-src/fileheader.c:651:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cmd) && cmd[strlen(cmd)-1] != '|') {
data/amanda-3.5.1/common-src/fileheader.c:651:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cmd) && cmd[strlen(cmd)-1] != '|') {
data/amanda-3.5.1/common-src/fileheader.c:680:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(datestamp) == 8) && match("^[0-9]{8}$", datestamp)) {
data/amanda-3.5.1/common-src/fileheader.c:683:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(datestamp) == 14) && match("^[0-9]{14}$", datestamp)) {
data/amanda-3.5.1/common-src/fileheader.c:748:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
program[strlen(program) - strlen(".exe")] = '\0';
data/amanda-3.5.1/common-src/fileheader.c:748:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
program[strlen(program) - strlen(".exe")] = '\0';
data/amanda-3.5.1/common-src/fileheader.c:832:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (file->dle_str && strlen(file->dle_str) < max_size-2048) {
data/amanda-3.5.1/common-src/fileheader.c:1118:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int delimiter_len = strlen(delimiter);
data/amanda-3.5.1/common-src/fileheader.c:1146:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
delimiter_len = strlen(delimiter);
data/amanda-3.5.1/common-src/genversion.c:65:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(string) + 1;
data/amanda-3.5.1/common-src/genversion.c:90:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_len = strlen(var)
data/amanda-3.5.1/common-src/genversion.c:92:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen(val)
data/amanda-3.5.1/common-src/genversion.c:116:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_len = strlen(var)
data/amanda-3.5.1/common-src/genversion.c:143:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_len = strlen(var)
data/amanda-3.5.1/common-src/genversion.c:145:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen(number)
data/amanda-3.5.1/common-src/genversion.c:187:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
v_len = sizeof("Amanda-") + strlen(v) + 1;
data/amanda-3.5.1/common-src/glib-util.c:493:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
((common_prefix_len = strlen(common_prefix))) > 0) {
data/amanda-3.5.1/common-src/ipc-binary.c:254:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size = strlen((gchar *)data);
data/amanda-3.5.1/common-src/ipc-binary.c:299:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bytes = read(fd, chan->in.buf + chan->in.offset + chan->in.length, 32768);
data/amanda-3.5.1/common-src/krb5-security.c:478:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
send_tok.length = strlen(send_tok.value) + 1;
data/amanda-3.5.1/common-src/krb5-security.c:605:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
send_tok.length = strlen(send_tok.value) + 1;
data/amanda-3.5.1/common-src/krb5-security.c:667:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(errbuf, rc->errmsg, sizeof(errbuf) - 1);
data/amanda-3.5.1/common-src/krb5-security.c:769:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(myhostname, myfqhostname, sizeof(myhostname)-1);
data/amanda-3.5.1/common-src/krb5-security.c:1239:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
switch (net_read(rc->read, &netint, sizeof(netint), timeout)) {
data/amanda-3.5.1/common-src/krb5-security.c:1282:23: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
switch(net_read(rc->read, &s[i], 1, 0)) {
data/amanda-3.5.1/common-src/krb5-security.c:1312:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
switch (net_read(rc->read, *buf, (size_t)*size, timeout)) {
data/amanda-3.5.1/common-src/local-security.c:213:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (client_username && strlen(client_username) > 1) {
data/amanda-3.5.1/common-src/local-security.c:267:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!xamandad_path || strlen(xamandad_path) <= 1)
data/amanda-3.5.1/common-src/match.c:200:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = g_malloc(2 * strlen(str) + 3);
data/amanda-3.5.1/common-src/match.c:395:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = g_malloc(2 * strlen(str) + 3);
data/amanda-3.5.1/common-src/match.c:461:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
worst_case = strlen(table->question_mark);
data/amanda-3.5.1/common-src/match.c:463:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (worst_case < strlen(table->star))
data/amanda-3.5.1/common-src/match.c:464:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
worst_case = strlen(table->star);
data/amanda-3.5.1/common-src/match.c:466:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (double_star && worst_case < strlen(table->double_star))
data/amanda-3.5.1/common-src/match.c:467:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
worst_case = strlen(table->double_star);
data/amanda-3.5.1/common-src/match.c:469:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = g_malloc(strlen(begin) + strlen(str) * worst_case + strlen(end) + 1);
data/amanda-3.5.1/common-src/match.c:469:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = g_malloc(strlen(begin) + strlen(str) * worst_case + strlen(end) + 1);
data/amanda-3.5.1/common-src/match.c:469:66: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = g_malloc(strlen(begin) + strlen(str) * worst_case + strlen(end) + 1);
data/amanda-3.5.1/common-src/match.c:684:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(glob);
data/amanda-3.5.1/common-src/match.c:720:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(word);
data/amanda-3.5.1/common-src/match.c:721:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len_glob = strlen(glob);
data/amanda-3.5.1/common-src/match.c:832:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = &(glob_copy[strlen(glob_copy) - 1]);
data/amanda-3.5.1/common-src/match.c:912:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = g_malloc(strlen(glob) + 1);
data/amanda-3.5.1/common-src/match.c:994:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(dateexp) >= 100 || strlen(dateexp) < 1) {
data/amanda-3.5.1/common-src/match.c:994:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(dateexp) >= 100 || strlen(dateexp) < 1) {
data/amanda-3.5.1/common-src/match.c:1013:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(mydateexp, dateexp+1, sizeof(mydateexp)-1);
data/amanda-3.5.1/common-src/match.c:1017:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(mydateexp, dateexp, sizeof(mydateexp)-1);
data/amanda-3.5.1/common-src/match.c:1021:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(dateexp) < 1) {
data/amanda-3.5.1/common-src/match.c:1025:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(mydateexp[strlen(mydateexp)-1] == '$') {
data/amanda-3.5.1/common-src/match.c:1027:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mydateexp[strlen(mydateexp)-1] = '\0'; /* strip the trailing $ */
data/amanda-3.5.1/common-src/match.c:1041:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len_suffix = strlen(dash) - 1; /* length of ZZZZ */
data/amanda-3.5.1/common-src/match.c:1050:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(firstdate, mydateexp, len);
data/amanda-3.5.1/common-src/match.c:1052:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(lastdate, mydateexp, len_prefix);
data/amanda-3.5.1/common-src/match.c:1053:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(&(lastdate[len_prefix]), dash, len_suffix);
data/amanda-3.5.1/common-src/match.c:1057:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(firstdate, lastdate, strlen(firstdate)) > 0)
data/amanda-3.5.1/common-src/match.c:1059:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return ((strncmp(datestamp, firstdate, strlen(firstdate)) >= 0) &&
data/amanda-3.5.1/common-src/match.c:1060:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strncmp(datestamp, lastdate , strlen(lastdate)) <= 0));
data/amanda-3.5.1/common-src/match.c:1088:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(levelexp) >= 100 || strlen(levelexp) < 1) {
data/amanda-3.5.1/common-src/match.c:1088:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(levelexp) >= 100 || strlen(levelexp) < 1) {
data/amanda-3.5.1/common-src/match.c:1098:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(mylevelexp, levelexp+1, strlen(levelexp)-1);
data/amanda-3.5.1/common-src/match.c:1098:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(mylevelexp, levelexp+1, strlen(levelexp)-1);
data/amanda-3.5.1/common-src/match.c:1099:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mylevelexp[strlen(levelexp)-1] = '\0';
data/amanda-3.5.1/common-src/match.c:1100:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(levelexp) == 0) {
data/amanda-3.5.1/common-src/match.c:1106:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(mylevelexp, levelexp, strlen(levelexp));
data/amanda-3.5.1/common-src/match.c:1106:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(mylevelexp, levelexp, strlen(levelexp));
data/amanda-3.5.1/common-src/match.c:1107:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mylevelexp[strlen(levelexp)] = '\0';
data/amanda-3.5.1/common-src/match.c:1110:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(mylevelexp[strlen(mylevelexp)-1] == '$') {
data/amanda-3.5.1/common-src/match.c:1112:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mylevelexp[strlen(mylevelexp)-1] = '\0';
data/amanda-3.5.1/common-src/match.c:1170:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
t += strlen(get_config_name());
data/amanda-3.5.1/common-src/match.c:1174:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
t += strlen(getconf_str(CNF_ORG));
data/amanda-3.5.1/common-src/match.c:1179:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
t += strlen(barcode);
data/amanda-3.5.1/common-src/match.c:1185:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
t += strlen(meta);
data/amanda-3.5.1/common-src/match.c:1191:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
t += strlen(storage);
data/amanda-3.5.1/common-src/packet.c:65:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pkt->size = strlen(pkt->body);
data/amanda-3.5.1/common-src/packet.c:91:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pkt->size = strlen(pkt->body);
data/amanda-3.5.1/common-src/packet.c:107:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(pkt->body);
data/amanda-3.5.1/common-src/packet.c:117:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(pktbody, pkt->body, len);
data/amanda-3.5.1/common-src/packet.c:122:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pkt->size = strlen(pkt->body);
data/amanda-3.5.1/common-src/quoting-test.c:35:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *result = malloc(3 + strlen(str) * 3);
data/amanda-3.5.1/common-src/rsh-security.c:279:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!xamandad_path || strlen(xamandad_path) <= 1)
data/amanda-3.5.1/common-src/rsh-security.c:281:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!xclient_username || strlen(xclient_username) <= 1)
data/amanda-3.5.1/common-src/security-file.c:79:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(line);
data/amanda-3.5.1/common-src/security-file.c:151:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(line);
data/amanda-3.5.1/common-src/security-file.c:214:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(line);
data/amanda-3.5.1/common-src/security-util.c:219:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(pkt->body) + strlen(s) + 2;
data/amanda-3.5.1/common-src/security-util.c:219:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(pkt->body) + strlen(s) + 2;
data/amanda-3.5.1/common-src/security-util.c:222:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(&buf[1], s, len - 1);
data/amanda-3.5.1/common-src/security-util.c:223:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(&buf[1 + strlen(s)], pkt->body, (len - strlen(s) - 1));
data/amanda-3.5.1/common-src/security-util.c:223:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(&buf[1 + strlen(s)], pkt->body, (len - strlen(s) - 1));
data/amanda-3.5.1/common-src/security-util.c:223:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(&buf[1 + strlen(s)], pkt->body, (len - strlen(s) - 1));
data/amanda-3.5.1/common-src/security-util.c:228:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pkt_type2str(pkt->type), pkt->type, strlen(pkt->body), pkt->body);
data/amanda-3.5.1/common-src/security-util.c:557:48: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc->ev_read = event_create((event_id_t)rc->read, EV_READFD,
data/amanda-3.5.1/common-src/security-util.c:1134:33: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (rh && rh->rc && rh->rc->read >= 0) {
data/amanda-3.5.1/common-src/security-util.c:1225:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (rs->rc->read < 0) {
data/amanda-3.5.1/common-src/security-util.c:1402:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (rh->rc->read < 0) {
data/amanda-3.5.1/common-src/security-util.c:1409:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rh->rc->write = rh->rc->read;
data/amanda-3.5.1/common-src/security-util.c:1475:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = g_malloc(16+strlen(pwd->pw_name));
data/amanda-3.5.1/common-src/security-util.c:1476:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(buf, "SECURITY USER ", (16 + strlen(pwd->pw_name)));
data/amanda-3.5.1/common-src/security-util.c:1476:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(buf, "SECURITY USER ", (16 + strlen(pwd->pw_name)));
data/amanda-3.5.1/common-src/security-util.c:1477:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(&buf[14], pwd->pw_name, (16 + strlen(pwd->pw_name) - 14));
data/amanda-3.5.1/common-src/security-util.c:1477:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(&buf[14], pwd->pw_name, (16 + strlen(pwd->pw_name) - 14));
data/amanda-3.5.1/common-src/security-util.c:1478:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[14 + strlen(pwd->pw_name)] = '\n';
data/amanda-3.5.1/common-src/security-util.c:1479:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[15 + strlen(pwd->pw_name)] = '\0';
data/amanda-3.5.1/common-src/security-util.c:1517:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
security = pkt->body + strlen("SECURITY ");
data/amanda-3.5.1/common-src/security-util.c:1630:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(pkt->body, body, strlen(body) + 1);
data/amanda-3.5.1/common-src/security-util.c:1683:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pkt_type2str(pkt->type), pkt->type, strlen(pkt->body), pkt->body);
data/amanda-3.5.1/common-src/security-util.c:2065:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rc->hostname, hostname, sizeof(rc->hostname) - 1);
data/amanda-3.5.1/common-src/security-util.c:2105:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (rc->read != -1)
data/amanda-3.5.1/common-src/security-util.c:2106:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
aclose(rc->read);
data/amanda-3.5.1/common-src/security-util.c:2176:48: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc->ev_read = event_create((event_id_t)rc->read, EV_READFD,
data/amanda-3.5.1/common-src/security-util.c:2432:80: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
auth_debug(6, _("sec: conn_read_callback %d %d\n"), (int)rc->event_id, rc->read);
data/amanda-3.5.1/common-src/security-util.c:2567:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pkt->size = strlen(pkt->body);
data/amanda-3.5.1/common-src/security-util.c:2593:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert(retbuf[strlen(retbuf) - 1] == '\n');
data/amanda-3.5.1/common-src/security-util.c:3213:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(fd, buf, size);
data/amanda-3.5.1/common-src/security-util.c:3315:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncasecmp(hostname, canonname, strlen(hostname)) != 0) {
data/amanda-3.5.1/common-src/security-util.c:3469:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read(rc->read, (char *)vbuf, sizebuf);
data/amanda-3.5.1/common-src/security-util.c:3469:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read(rc->read, (char *)vbuf, sizebuf);
data/amanda-3.5.1/common-src/security-util.h:97:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int read, write; /* pipes to sec */
data/amanda-3.5.1/common-src/ssh-security.c:163:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (port_str && strlen(port_str) >= 1) {
data/amanda-3.5.1/common-src/ssh-security.c:347:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!xamandad_path || strlen(xamandad_path) <= 1)
data/amanda-3.5.1/common-src/ssh-security.c:349:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!xclient_username || strlen(xclient_username) <= 1)
data/amanda-3.5.1/common-src/ssh-security.c:351:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!xclient_port || strlen(xclient_port) <= 1)
data/amanda-3.5.1/common-src/ssh-security.c:365:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ssh_keys && strlen(ssh_keys) > 1) {
data/amanda-3.5.1/common-src/ssl-security.c:188:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!service || strlen(service) <= 1)
data/amanda-3.5.1/common-src/ssl-security.c:294:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t md5_const_len = strlen(md5_const);
data/amanda-3.5.1/common-src/ssl-security.c:295:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t sha1_const_len = strlen(sha1_const);
data/amanda-3.5.1/common-src/ssl-security.c:351:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(fingerprint)-1;
data/amanda-3.5.1/common-src/ssl-security.c:612:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(rc->hostname, cert_hostname, sizeof(rc->hostname)-1);
data/amanda-3.5.1/common-src/tapelist.c:183:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp_str = g_malloc(strlen(label) * 2);
data/amanda-3.5.1/common-src/tapelist.c:215:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
temp_str = g_malloc(strlen(label)+1);
data/amanda-3.5.1/common-src/tapelist.c:313:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
input_length = strlen(tapelist_str);
data/amanda-3.5.1/common-src/timestamp.c:86:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(timestamp) >= 4) {
data/amanda-3.5.1/common-src/timestamp.c:92:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(timestamp) >= 6) {
data/amanda-3.5.1/common-src/timestamp.c:98:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(timestamp) >= 8) {
data/amanda-3.5.1/common-src/timestamp.c:104:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(timestamp) >= 10) {
data/amanda-3.5.1/common-src/timestamp.c:110:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(timestamp) >= 12) {
data/amanda-3.5.1/common-src/timestamp.c:116:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(timestamp) >= 14) {
data/amanda-3.5.1/contrib/gsc/cfggsc.c:260:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr += strlen(preobj.prefix);
data/amanda-3.5.1/contrib/gsc/defgsc.c:157:12: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
(void) strncpy(parent_loc, CuDv.location, sizeof CuDv.location);
data/amanda-3.5.1/contrib/gsc/defgsc.c:214:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(parent_loc) <= 5) {
data/amanda-3.5.1/contrib/gsc/gscdd.c:57:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
static int strlen(char *s) { char *p = s; while (*p) p++; return p - s; }
data/amanda-3.5.1/contrib/gsc/gscdd.c:71:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
var = strlen(b); trcgenk(0, HKWD_GSC_DD, var, var, b)
data/amanda-3.5.1/contrib/gsc/ucfggsc.c:133:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr += strlen(pddvobj.prefix);
data/amanda-3.5.1/device-src/ndmp-device.c:1534:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(conn_sock, addrspec, strlen(addrspec)) < strlen(addrspec)) {
data/amanda-3.5.1/device-src/ndmp-device.c:1534:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(conn_sock, addrspec, strlen(addrspec)) < strlen(addrspec)) {
data/amanda-3.5.1/device-src/s3-device.c:622:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_assert(strlen(prefix) <= S3_MAX_KEY_LENGTH);
data/amanda-3.5.1/device-src/s3-device.c:633:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_assert(strlen(s3_key) <= S3_MAX_KEY_LENGTH);
data/amanda-3.5.1/device-src/s3-device.c:642:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_assert(strlen(s3_key) <= S3_MAX_KEY_LENGTH);
data/amanda-3.5.1/device-src/s3-device.c:744:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(key) <= prefix_len)
data/amanda-3.5.1/device-src/s3-device.c:815:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unsigned int prefix_len = strlen(self->prefix);
data/amanda-3.5.1/device-src/s3-device.c:847:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unsigned int prefix_len = strlen(self->prefix);
data/amanda-3.5.1/device-src/s3-device.c:2554:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (line[strlen(line)-1] == '\n')
data/amanda-3.5.1/device-src/s3-device.c:2555:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/device-src/s3-device.c:2562:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (line[strlen(line)-1] == '\n')
data/amanda-3.5.1/device-src/s3-device.c:2563:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/device-src/s3-device.c:2638:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (self->host && strlen(self->host) > 14 &&
data/amanda-3.5.1/device-src/s3-device.c:2639:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_strncasecmp(self->host+strlen(self->host)-14, ".amazonaws.com", 14) == 0) {
data/amanda-3.5.1/device-src/s3-device.c:2993:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(header_buf) > 0) {
data/amanda-3.5.1/device-src/s3-device.c:2994:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
parse_file_header(header_buf, amanda_header, strlen(header_buf));
data/amanda-3.5.1/device-src/s3-device.c:2997:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pself->header_block_size = strlen(header_buf);
data/amanda-3.5.1/device-src/s3-device.c:3613:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
data.buffer_len = strlen(buf->str);
data/amanda-3.5.1/device-src/s3-util.c:211:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len_s = strlen(s);
data/amanda-3.5.1/device-src/s3.c:622:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(date) < 19)
data/amanda-3.5.1/device-src/s3.c:722:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
full_write(fd[1], buf, strlen(buf));
data/amanda-3.5.1/device-src/s3.c:822:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (url->str[strlen(url->str)-1] == '/') {
data/amanda-3.5.1/device-src/s3.c:823:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_string_truncate(url, strlen(url->str)-1);
data/amanda-3.5.1/device-src/s3.c:1129:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
signkey1 = EncodeHMACSHA256(strSecretKey, strlen((char *)strSecretKey),
data/amanda-3.5.1/device-src/s3.c:1130:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
szS3Date, strlen(szS3Date));
data/amanda-3.5.1/device-src/s3.c:1132:66: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
signkey2 = EncodeHMACSHA256(signkey1, 32, hdl->bucket_location, strlen(hdl->bucket_location));
data/amanda-3.5.1/device-src/s3.c:1266:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HMAC_Init_ex(&ctx, hdl->secret_key, (int) strlen(hdl->secret_key),
data/amanda-3.5.1/device-src/s3.c:1274:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HMAC_Init_ex(ctx, hdl->secret_key, (int) strlen(hdl->secret_key),
data/amanda-3.5.1/device-src/s3.c:1454:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (g_str_equal(*att_name, "expires") && strlen(*att_value) >= 19) {
data/amanda-3.5.1/device-src/s3.c:2808:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (header[strlen(header)-1] == '\n')
data/amanda-3.5.1/device-src/s3.c:2809:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
header[strlen(header)-1] = '\0';
data/amanda-3.5.1/device-src/s3.c:2810:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (header[strlen(header)-1] == '\r')
data/amanda-3.5.1/device-src/s3.c:2811:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
header[strlen(header)-1] = '\0';
data/amanda-3.5.1/device-src/s3.c:2851:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(header) == 0)
data/amanda-3.5.1/device-src/s3.c:3093:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf.buffer_len = strlen(buf.buffer);
data/amanda-3.5.1/device-src/s3.c:3142:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf.buffer_len = strlen(buf.buffer);
data/amanda-3.5.1/device-src/s3.c:3295:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(service_path) == 0 ||
data/amanda-3.5.1/device-src/s3.c:3296:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strlen(service_path) == 1 && service_path[0] == '/')) {
data/amanda-3.5.1/device-src/s3.c:3305:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(hdl->service_path) - 1;
data/amanda-3.5.1/device-src/s3.c:4114:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
data.buffer_len = strlen(data.buffer);
data/amanda-3.5.1/device-src/s3.c:4451:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf.buffer_len = (guint) strlen(buf.buffer);
data/amanda-3.5.1/device-src/s3.c:4512:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncmp(loc_content, hdl->bucket_location, strlen(hdl->bucket_location)) :
data/amanda-3.5.1/device-src/s3.c:4978:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf.buffer_len = strlen(buf.buffer);
data/amanda-3.5.1/device-src/tape-device.c:1797:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = read(self->fd, buf, *count);
data/amanda-3.5.1/device-src/tape-device.c:1989:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = read(self->fd, buffer, buffer_size);
data/amanda-3.5.1/device-src/vfs-device.c:1770:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = read(fd, buf + got, want - got);
data/amanda-3.5.1/gnulib/getopt.c:268:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = d->__nonoption_flags_max_len = strlen (orig_str);
data/amanda-3.5.1/gnulib/getopt.c:516:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (namelen == (unsigned int) strlen (p->name))
data/amanda-3.5.1/gnulib/getopt.c:622:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen (d->__nextchar);
data/amanda-3.5.1/gnulib/getopt.c:698:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen (d->__nextchar);
data/amanda-3.5.1/gnulib/getopt.c:738:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen (d->__nextchar);
data/amanda-3.5.1/gnulib/getopt.c:743:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen (d->__nextchar);
data/amanda-3.5.1/gnulib/getopt.c:936:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((unsigned int) (nameend - d->__nextchar) == strlen (p->name))
data/amanda-3.5.1/gnulib/getopt.c:984:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen (d->__nextchar);
data/amanda-3.5.1/gnulib/getopt.c:1028:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen (d->__nextchar);
data/amanda-3.5.1/gnulib/getopt.c:1066:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen (d->__nextchar);
data/amanda-3.5.1/gnulib/getopt.c:1072:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen (d->__nextchar);
data/amanda-3.5.1/gnulib/gettext.h:214:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t msgctxt_len = strlen (msgctxt) + 1;
data/amanda-3.5.1/gnulib/gettext.h:215:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t msgid_len = strlen (msgid) + 1;
data/amanda-3.5.1/gnulib/gettext.h:260:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t msgctxt_len = strlen (msgctxt) + 1;
data/amanda-3.5.1/gnulib/gettext.h:261:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t msgid_len = strlen (msgid) + 1;
data/amanda-3.5.1/gnulib/inet_ntop.c:230:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tp += strlen (tp);
data/amanda-3.5.1/gnulib/localcharset.c:104:9: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# undef getc
data/amanda-3.5.1/gnulib/localcharset.c:105:10: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# define getc getc_unlocked
data/amanda-3.5.1/gnulib/localcharset.c:144:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dir_len = strlen (dir);
data/amanda-3.5.1/gnulib/localcharset.c:145:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t base_len = strlen (base);
data/amanda-3.5.1/gnulib/localcharset.c:201:27: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getc (fp);
data/amanda-3.5.1/gnulib/localcharset.c:210:33: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getc (fp);
data/amanda-3.5.1/gnulib/localcharset.c:217:27: [1] (buffer) fscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (fscanf (fp, "%50s %50s", buf1, buf2) < 2)
data/amanda-3.5.1/gnulib/localcharset.c:219:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l1 = strlen (buf1);
data/amanda-3.5.1/gnulib/localcharset.c:220:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l2 = strlen (buf2);
data/amanda-3.5.1/gnulib/localcharset.c:591:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
aliases += strlen (aliases) + 1, aliases += strlen (aliases) + 1)
data/amanda-3.5.1/gnulib/localcharset.c:591:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
aliases += strlen (aliases) + 1, aliases += strlen (aliases) + 1)
data/amanda-3.5.1/gnulib/localcharset.c:595:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
codeset = aliases + strlen (aliases) + 1;
data/amanda-3.5.1/gnulib/lstat.c:80:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen (file);
data/amanda-3.5.1/gnulib/nl_langinfo.c:74:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
codesetlen = strlen (codeset);
data/amanda-3.5.1/gnulib/read.c:34:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# undef read
data/amanda-3.5.1/gnulib/read.c:44:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = read (fd, buf, count);
data/amanda-3.5.1/gnulib/read.c:56:24: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# define read_nothrow read
data/amanda-3.5.1/gnulib/regcomp.c:510:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = re_compile_internal (preg, pattern, strlen (pattern), syntax);
data/amanda-3.5.1/gnulib/regcomp.c:565:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg_size = strlen (msg) + 1; /* Includes the null. */
data/amanda-3.5.1/gnulib/regcomp.c:738:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = re_compile_internal (&re_comp_buf, s, strlen (s), re_syntax_options);
data/amanda-3.5.1/gnulib/regcomp.c:806:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (dfa->re_str, pattern, length + 1);
data/amanda-3.5.1/gnulib/regcomp.c:2745:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strlen ((char *) start_elem->opr.name) > 1)
data/amanda-3.5.1/gnulib/regcomp.c:2747:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strlen ((char *) end_elem->opr.name) > 1), 0))
data/amanda-3.5.1/gnulib/regcomp.c:2854:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t name_len = strlen ((const char *) name);
data/amanda-3.5.1/gnulib/regcomp.c:2935:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t sym_name_len = strlen ((char *) br_elem->opr.name);
data/amanda-3.5.1/gnulib/regcomp.c:3066:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t name_len = strlen ((const char *) name);
data/amanda-3.5.1/gnulib/regcomp.c:3584:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (BE (strlen ((const char *) name) != 1, 0))
data/amanda-3.5.1/gnulib/regexec.c:244:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length = strlen (string);
data/amanda-3.5.1/gnulib/safe-read.c:47:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# define rw read
data/amanda-3.5.1/gnulib/select.c:115:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
BOOL read, write, except;
data/amanda-3.5.1/gnulib/select.c:222:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read && (rbits->in[fd / CHAR_BIT] & (1 << (fd & (CHAR_BIT - 1)))))
data/amanda-3.5.1/gnulib/stat.c:88:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen (name);
data/amanda-3.5.1/gnulib/stat.c:110:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen (name);
data/amanda-3.5.1/gnulib/stdio.in.h:234:11: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# undef fgetc
data/amanda-3.5.1/gnulib/stdio.in.h:235:12: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# define fgetc rpl_fgetc
data/amanda-3.5.1/gnulib/stdio.in.h:237:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_FUNCDECL_RPL (fgetc, int, (FILE *stream) _GL_ARG_NONNULL ((1)));
data/amanda-3.5.1/gnulib/stdio.in.h:238:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIAS_RPL (fgetc, int, (FILE *stream));
data/amanda-3.5.1/gnulib/stdio.in.h:240:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIAS_SYS (fgetc, int, (FILE *stream));
data/amanda-3.5.1/gnulib/stdio.in.h:242:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIASWARN (fgetc);
data/amanda-3.5.1/gnulib/stdio.in.h:621:11: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# undef getc
data/amanda-3.5.1/gnulib/stdio.in.h:622:12: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# define getc rpl_fgetc
data/amanda-3.5.1/gnulib/stdio.in.h:624:19: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_FUNCDECL_RPL (fgetc, int, (FILE *stream) _GL_ARG_NONNULL ((1)));
data/amanda-3.5.1/gnulib/stdio.in.h:625:21: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIAS_RPL_1 (getc, rpl_fgetc, int, (FILE *stream));
data/amanda-3.5.1/gnulib/stdio.in.h:627:19: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIAS_SYS (getc, int, (FILE *stream));
data/amanda-3.5.1/gnulib/stdio.in.h:629:19: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIASWARN (getc);
data/amanda-3.5.1/gnulib/stdio.in.h:635:11: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# undef getchar
data/amanda-3.5.1/gnulib/stdio.in.h:636:12: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# define getchar rpl_getchar
data/amanda-3.5.1/gnulib/stdio.in.h:638:19: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_FUNCDECL_RPL (getchar, int, (void));
data/amanda-3.5.1/gnulib/stdio.in.h:639:19: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIAS_RPL (getchar, int, (void));
data/amanda-3.5.1/gnulib/stdio.in.h:641:19: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIAS_SYS (getchar, int, (void));
data/amanda-3.5.1/gnulib/stdio.in.h:643:19: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIASWARN (getchar);
data/amanda-3.5.1/gnulib/string.in.h:394:11: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
# undef strncat
data/amanda-3.5.1/gnulib/string.in.h:395:12: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
# define strncat rpl_strncat
data/amanda-3.5.1/gnulib/string.in.h:397:19: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
_GL_FUNCDECL_RPL (strncat, char *, (char *dest, const char *src, size_t n)
data/amanda-3.5.1/gnulib/string.in.h:399:19: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
_GL_CXXALIAS_RPL (strncat, char *, (char *dest, const char *src, size_t n));
data/amanda-3.5.1/gnulib/string.in.h:401:19: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
_GL_CXXALIAS_SYS (strncat, char *, (char *dest, const char *src, size_t n));
data/amanda-3.5.1/gnulib/string.in.h:403:19: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
_GL_CXXALIASWARN (strncat);
data/amanda-3.5.1/gnulib/string.in.h:405:9: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
# undef strncat
data/amanda-3.5.1/gnulib/string.in.h:407:18: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
_GL_WARN_ON_USE (strncat, "strncat is unportable - "
data/amanda-3.5.1/gnulib/tempname.c:132:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
plen = strlen (pfx);
data/amanda-3.5.1/gnulib/tempname.c:160:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dlen = strlen (dir);
data/amanda-3.5.1/gnulib/tempname.c:208:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen (tmpl);
data/amanda-3.5.1/gnulib/unistd.in.h:1245:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# undef read
data/amanda-3.5.1/gnulib/unistd.in.h:1246:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
# define read rpl_read
data/amanda-3.5.1/gnulib/unistd.in.h:1248:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_FUNCDECL_RPL (read, ssize_t, (int fd, void *buf, size_t count)
data/amanda-3.5.1/gnulib/unistd.in.h:1250:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIAS_RPL (read, ssize_t, (int fd, void *buf, size_t count));
data/amanda-3.5.1/gnulib/unistd.in.h:1255:24: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIAS_SYS_CAST (read, ssize_t, (int fd, void *buf, size_t count));
data/amanda-3.5.1/gnulib/unistd.in.h:1257:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_GL_CXXALIASWARN (read);
data/amanda-3.5.1/gnulib/unistd.in.h:1540:11: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
# undef usleep
data/amanda-3.5.1/gnulib/unistd.in.h:1541:12: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
# define usleep rpl_usleep
data/amanda-3.5.1/gnulib/unistd.in.h:1543:19: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
_GL_FUNCDECL_RPL (usleep, int, (useconds_t n));
data/amanda-3.5.1/gnulib/unistd.in.h:1544:19: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
_GL_CXXALIAS_RPL (usleep, int, (useconds_t n));
data/amanda-3.5.1/gnulib/unistd.in.h:1547:19: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
_GL_FUNCDECL_SYS (usleep, int, (useconds_t n));
data/amanda-3.5.1/gnulib/unistd.in.h:1549:19: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
_GL_CXXALIAS_SYS (usleep, int, (useconds_t n));
data/amanda-3.5.1/gnulib/unistd.in.h:1551:19: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
_GL_CXXALIASWARN (usleep);
data/amanda-3.5.1/gnulib/unistd.in.h:1553:9: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
# undef usleep
data/amanda-3.5.1/gnulib/unistd.in.h:1555:18: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
_GL_WARN_ON_USE (usleep, "usleep is unportable - "
data/amanda-3.5.1/gnulib/vasnprintf.c:229:24: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define local_wcslen wcslen
data/amanda-3.5.1/gnulib/vasnprintf.c:1731:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmp_length = strlen (arg);
data/amanda-3.5.1/gnulib/vasnprintf.c:2563:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
arg_end = arg + strlen (arg);
data/amanda-3.5.1/gnulib/vasnprintf.c:3650:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ndigits = strlen (digits);
data/amanda-3.5.1/gnulib/vasnprintf.c:3710:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ndigits = strlen (digits);
data/amanda-3.5.1/gnulib/vasnprintf.c:3746:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (digits2) == precision + 1)
data/amanda-3.5.1/gnulib/vasnprintf.c:3846:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ndigits = strlen (digits);
data/amanda-3.5.1/gnulib/vasnprintf.c:3882:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (digits2) == precision)
data/amanda-3.5.1/gnulib/vasnprintf.c:4112:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ndigits = strlen (digits);
data/amanda-3.5.1/gnulib/vasnprintf.c:4169:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ndigits = strlen (digits);
data/amanda-3.5.1/gnulib/vasnprintf.c:4204:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (digits2) == precision + 1)
data/amanda-3.5.1/gnulib/vasnprintf.c:4317:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ndigits = strlen (digits);
data/amanda-3.5.1/gnulib/vasnprintf.c:4352:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (digits2) == precision)
data/amanda-3.5.1/gnulib/wchar.in.h:572:19: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_GL_FUNCDECL_SYS (wcslen, size_t, (const wchar_t *s) _GL_ATTRIBUTE_PURE);
data/amanda-3.5.1/gnulib/wchar.in.h:574:19: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_GL_CXXALIAS_SYS (wcslen, size_t, (const wchar_t *s));
data/amanda-3.5.1/gnulib/wchar.in.h:575:19: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_GL_CXXALIASWARN (wcslen);
data/amanda-3.5.1/gnulib/wchar.in.h:577:9: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# undef wcslen
data/amanda-3.5.1/gnulib/wchar.in.h:579:18: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_GL_WARN_ON_USE (wcslen, "wcslen is unportable - "
data/amanda-3.5.1/gnulib/wchar.in.h:637:19: [1] (buffer) wcsncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
_GL_FUNCDECL_SYS (wcsncpy, wchar_t *,
data/amanda-3.5.1/gnulib/wchar.in.h:640:19: [1] (buffer) wcsncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
_GL_CXXALIAS_SYS (wcsncpy, wchar_t *,
data/amanda-3.5.1/gnulib/wchar.in.h:642:19: [1] (buffer) wcsncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
_GL_CXXALIASWARN (wcsncpy);
data/amanda-3.5.1/gnulib/wchar.in.h:644:9: [1] (buffer) wcsncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
# undef wcsncpy
data/amanda-3.5.1/gnulib/wchar.in.h:646:18: [1] (buffer) wcsncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
_GL_WARN_ON_USE (wcsncpy, "wcsncpy is unportable - "
data/amanda-3.5.1/gnulib/wchar.in.h:690:19: [1] (buffer) wcsncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or
automatically resizing strings.
_GL_FUNCDECL_SYS (wcsncat, wchar_t *,
data/amanda-3.5.1/gnulib/wchar.in.h:693:19: [1] (buffer) wcsncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or
automatically resizing strings.
_GL_CXXALIAS_SYS (wcsncat, wchar_t *,
data/amanda-3.5.1/gnulib/wchar.in.h:695:19: [1] (buffer) wcsncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or
automatically resizing strings.
_GL_CXXALIASWARN (wcsncat);
data/amanda-3.5.1/gnulib/wchar.in.h:697:9: [1] (buffer) wcsncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or
automatically resizing strings.
# undef wcsncat
data/amanda-3.5.1/gnulib/wchar.in.h:699:18: [1] (buffer) wcsncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, or
automatically resizing strings.
_GL_WARN_ON_USE (wcsncat, "wcsncat is unportable - "
data/amanda-3.5.1/ndmp-src/ndma_comm_session.c:161:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(0, buf, sizeof(buf)) <= 0) {
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:209:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (buf, " ");
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:258:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (buf, " ");
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:306:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (buf, " ");
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:350:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (buf, " ");
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:378:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (buf, " ");
data/amanda-3.5.1/ndmp-src/ndma_cops_query.c:405:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (buf, " ");
data/amanda-3.5.1/ndmp-src/ndma_data.c:117:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (buf, "=");
data/amanda-3.5.1/ndmp-src/ndma_data_fh.c:99:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int nlen = strlen (name) + 1;
data/amanda-3.5.1/ndmp-src/ndma_data_fh.c:119:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int nlen = strlen (name) + 1;
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:79:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!name || strlen(name) > sizeof(ra->sim_dir)-1)
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:88:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ra->sim_dir, name, sizeof(ra->sim_dir)-1);
data/amanda-3.5.1/ndmp-src/ndma_robot_simulator.c:207:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(fd, (void *)rs, sizeof(*rs)) < sizeof(*rs)) {
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:177:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (fd, &gap, sizeof gap);
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:204:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (fd, &gap, sizeof gap);
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:326:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (ta->tape_fd, &gap, sizeof gap);
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:341:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (ta->tape_fd, &gap, sizeof gap);
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:396:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (ta->tape_fd, &gap, sizeof gap);
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:599:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (ta->tape_fd, &gap, sizeof gap);
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:684:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (ta->tape_fd, &gap, sizeof gap);
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:760:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (ta->tape_fd, &gap, sizeof gap);
data/amanda-3.5.1/ndmp-src/ndma_tape_simulator.c:774:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (ta->tape_fd, buf, nb);
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:303:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
prefix_len = strlen (C_chdir) + 2;
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:310:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen (file_arg_new[i]) + prefix_len + 1;
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:318:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (dest, "/");
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:329:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen (file_arg[i]) + prefix_len + 1;
data/amanda-3.5.1/ndmp-src/ndmjob_job.c:337:4: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (dest, "/");
data/amanda-3.5.1/ndmp-src/ndml_agent.c:101:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (agent->host, str, NDMAGENT_HOST_MAX-1);
data/amanda-3.5.1/ndmp-src/ndml_agent.c:162:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (agent->account, acct, NDMAGENT_ACCOUNT_MAX-1);
data/amanda-3.5.1/ndmp-src/ndml_agent.c:164:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (agent->password, pass,
data/amanda-3.5.1/ndmp-src/ndml_bstf.c:281:14: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((c = getc(fp)) != EOF) {
data/amanda-3.5.1/ndmp-src/ndml_bstf.c:327:14: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((c = getc(fp)) != EOF) {
data/amanda-3.5.1/ndmp-src/ndml_chan.c:294:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (ch->fd, &ch->data[ch->end_ix], len);
data/amanda-3.5.1/ndmp-src/ndml_conn.c:930:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (conn->chan.fd, buf, len);
data/amanda-3.5.1/ndmp-src/ndml_md5.c:109:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int pwlength = strlen (clear_text_password);
data/amanda-3.5.1/ndmp-src/ndml_scsi.c:68:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (str) >= PATH_MAX) {
data/amanda-3.5.1/ndmp-src/ndml_stzf.c:52:6: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getc (fp);
data/amanda-3.5.1/ndmp-src/ndml_stzf.c:64:15: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((c = getc(fp)) != EOF && c != '\n')
data/amanda-3.5.1/ndmp-src/ndml_stzf.c:71:14: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((c = getc(fp)) != EOF && c != '\n') {
data/amanda-3.5.1/ndmp-src/ndml_stzf.c:86:6: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getc (fp);
data/amanda-3.5.1/ndmp-src/ndml_stzf.c:95:15: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((c = getc(fp)) != EOF && c != '\n')
data/amanda-3.5.1/ndmp-src/ndml_stzf.c:101:14: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((c = getc(fp)) != EOF && c != '\n' && c != ']') {
data/amanda-3.5.1/ndmp-src/ndml_stzf.c:109:15: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((c = getc(fp)) != EOF && c != '\n')
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2272:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (buf, "/");
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2293:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf, "/");
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2303:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf, "/");
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2309:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buf, "/");
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2343:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
olen = strlen(name9->original_path);
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2344:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dlen = strlen(name9->destination_path);
data/amanda-3.5.1/ndmp-src/ndmp3_translate.c:2351:3: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(buf, name9->destination_path, offset);
data/amanda-3.5.1/ndmp-src/ndmp4_pp.c:89:3: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf (NDMOS_API_STREND(buf), ")");
data/amanda-3.5.1/ndmp-src/ndmp4_translate.c:2305:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (buf, "/");
data/amanda-3.5.1/ndmp-src/wraplib.c:1287:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rc = read (wccb->data_conn_fd, have_end, n_read);
data/amanda-3.5.1/oldrecover-src/amrecover.c:108:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((len = strlen(line)) > 0 && line[len-1] == '\r') {
data/amanda-3.5.1/oldrecover-src/amrecover.c:193:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg[0].iov_len = strlen(msg[0].iov_base);
data/amanda-3.5.1/oldrecover-src/amrecover.c:195:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
msg[1].iov_len = strlen(msg[1].iov_base);
data/amanda-3.5.1/oldrecover-src/amrecover.c:256:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length = strlen(s);
data/amanda-3.5.1/oldrecover-src/amrecover.c:299:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cwd_length = strlen(cwd);
data/amanda-3.5.1/oldrecover-src/amrecover.c:309:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
current_length = fsent.mntdir ? strlen(fsent.mntdir) : (size_t)0;
data/amanda-3.5.1/oldrecover-src/amrecover.c:322:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strncmp(fsent.fsname,DEV_PREFIX,(strlen(DEV_PREFIX))))
data/amanda-3.5.1/oldrecover-src/amrecover.c:330:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fsname = g_strdup(fsent.fsname + strlen(DEV_PREFIX));
data/amanda-3.5.1/oldrecover-src/amrecover.c:599:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(line, '\0', strlen(line));
data/amanda-3.5.1/oldrecover-src/display_commands.c:312:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(disk_path);
data/amanda-3.5.1/oldrecover-src/extract_list.c:196:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
size = read(datafd, dataptr, (size_t)spaceleft);
data/amanda-3.5.1/oldrecover-src/extract_list.c:338:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
((strlen(fn2->path) > strlen(fn1->path) &&
data/amanda-3.5.1/oldrecover-src/extract_list.c:338:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
((strlen(fn2->path) > strlen(fn1->path) &&
data/amanda-3.5.1/oldrecover-src/extract_list.c:339:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fn2->path[strlen(fn1->path)] == '/') ||
data/amanda-3.5.1/oldrecover-src/extract_list.c:340:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(fn1->path[strlen(fn1->path)-1] == '/'))) {
data/amanda-3.5.1/oldrecover-src/extract_list.c:343:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
((strlen(fn1->path) > strlen(fn2->path) &&
data/amanda-3.5.1/oldrecover-src/extract_list.c:343:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
((strlen(fn1->path) > strlen(fn2->path) &&
data/amanda-3.5.1/oldrecover-src/extract_list.c:344:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fn1->path[strlen(fn2->path)] == '/') ||
data/amanda-3.5.1/oldrecover-src/extract_list.c:345:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(fn2->path[strlen(fn2->path)-1] == '/'))) {
data/amanda-3.5.1/oldrecover-src/extract_list.c:556:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
regex_path[strlen(regex_path) - 1] = '\0';
data/amanda-3.5.1/oldrecover-src/extract_list.c:616:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = (ssize_t)(strlen(regex) - 1);
data/amanda-3.5.1/oldrecover-src/extract_list.c:653:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = (ssize_t)strlen(ditem->path);
data/amanda-3.5.1/oldrecover-src/extract_list.c:878:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
regex_path[strlen(regex_path) - 1] = '\0';
data/amanda-3.5.1/oldrecover-src/extract_list.c:940:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = (ssize_t)(strlen(regex) - 1);
data/amanda-3.5.1/oldrecover-src/extract_list.c:978:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = (ssize_t)strlen(ditem->path);
data/amanda-3.5.1/oldrecover-src/extract_list.c:1327:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(tss, msg, strlen(msg)) < strlen(msg))
data/amanda-3.5.1/oldrecover-src/extract_list.c:1327:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(tss, msg, strlen(msg)) < strlen(msg))
data/amanda-3.5.1/oldrecover-src/extract_list.c:1393:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(line, '\0', strlen(line));
data/amanda-3.5.1/oldrecover-src/extract_list.c:1396:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
disk_regex = g_malloc(strlen(disk_name) * 2 + 3);
data/amanda-3.5.1/oldrecover-src/extract_list.c:1420:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
host_regex = g_malloc(strlen(dump_hostname) * 2 + 3);
data/amanda-3.5.1/oldrecover-src/extract_list.c:1462:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(tape_control_sock, buffer, sizeof(buffer)) <= 0) {
data/amanda-3.5.1/oldrecover-src/extract_list.c:1545:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(tape_control_sock, buffer, sizeof(buffer)-1);
data/amanda-3.5.1/oldrecover-src/extract_list.c:1583:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(line, '\0', strlen(line));
data/amanda-3.5.1/oldrecover-src/extract_list.c:1687:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len_program = strlen(file.program);
data/amanda-3.5.1/oldrecover-src/extract_list.c:1950:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bytes_read = read(ctl_fd, buffer, sizeof(buffer)-1);
data/amanda-3.5.1/oldrecover-src/extract_list.c:1971:20: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if(sscanf(buffer, "FEEDME %132s\n", desired_tape) == 1) {
data/amanda-3.5.1/oldrecover-src/extract_list.c:2006:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bytes_read = read(data_fd, buffer, sizeof(buffer)-1);
data/amanda-3.5.1/oldrecover-src/set_commands.c:322:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(regex_path[strlen(regex_path) - 2] != '/' ) {
data/amanda-3.5.1/oldrecover-src/set_commands.c:323:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
regex_path[strlen(regex_path) - 1] = '\0';
data/amanda-3.5.1/oldrecover-src/set_commands.c:403:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(ditem->path);
data/amanda-3.5.1/oldrecover-src/set_commands.c:411:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(dir[strlen(dir)-1] == '/')
data/amanda-3.5.1/oldrecover-src/set_commands.c:412:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dir[strlen(dir)-1] = '\0'; /* remove last / */
data/amanda-3.5.1/oldrecover-src/set_commands.c:473:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(mount_point, ldir, strlen(mount_point)) != 0)
data/amanda-3.5.1/oldrecover-src/set_commands.c:481:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_dir = g_strdup(ldir+strlen(mount_point));
data/amanda-3.5.1/oldrecover-src/set_commands.c:482:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(new_dir) == 0) {
data/amanda-3.5.1/oldrecover-src/uparse.c:827:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define yystrlen strlen
data/amanda-3.5.1/oldrecover-src/uscan.c:722:14: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
(c = getc( yyin )) != EOF && c != '\n'; ++n ) \
data/amanda-3.5.1/oldrecover-src/uscan.c:1891:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return yy_scan_bytes(yystr,strlen(yystr) );
data/amanda-3.5.1/perl/Amanda/Application.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Application.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Application.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Application.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Application.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Application.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Application.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Application.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Application.c:1610:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Archive.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Archive.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Archive.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Archive.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Archive.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Archive.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Archive.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Archive.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Archive.c:1649:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ign) == len && 0 == strncmp(ign, rvstr, len))
data/amanda-3.5.1/perl/Amanda/Archive.c:2327:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1793:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:1822:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2128:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2200:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2272:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2344:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2496:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2644:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2716:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2788:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:2860:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Cmdfile.c:3012:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Cmdline.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Cmdline.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Cmdline.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Cmdline.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1595:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Cmdline.c:1642:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Config.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Config.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Config.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Config.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Config.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Config.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Config.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Config.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Config.c:1765:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, "tag", strlen("tag"), newSVpv(ds->tag, 0), 0);
data/amanda-3.5.1/perl/Amanda/Config.c:1767:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, "tag_type", strlen("tag_type"), newSViv(ds->tag_type), 0);
data/amanda-3.5.1/perl/Amanda/Config.c:1768:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, "level", strlen("level"), newSViv(ds->level), 0);
data/amanda-3.5.1/perl/Amanda/Config.c:1786:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, "storage", strlen("storage"), newSVpv(v->storage, 0), 0);
data/amanda-3.5.1/perl/Amanda/Config.c:1787:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, "days", strlen("says"), newSViv(v->days), 0);
data/amanda-3.5.1/perl/Amanda/Config.c:2176:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, "tag", strlen("tag"), newSVpv(ds->tag, 0), 0);
data/amanda-3.5.1/perl/Amanda/Config.c:2179:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
case TAG_NAME: hv_store(hv, "tag_type", strlen("tag_type"), newSVpv("TAG",0), 0); break;
data/amanda-3.5.1/perl/Amanda/Config.c:2180:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
case TAG_ALL: hv_store(hv, "tag_type", strlen("tag_type"), newSVpv("ALL",0), 0); break;
data/amanda-3.5.1/perl/Amanda/Config.c:2181:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
case TAG_OTHER: hv_store(hv, "tag_type", strlen("tag_type"), newSVpv("OTHER",0), 0); break;
data/amanda-3.5.1/perl/Amanda/Config.c:2184:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
case LEVEL_ALL : hv_store(hv, "level", strlen("level"), newSVpv("ALL",0), 0); break;
data/amanda-3.5.1/perl/Amanda/Config.c:2185:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
case LEVEL_FULL: hv_store(hv, "level", strlen("level"), newSVpv("FULL",0), 0); break;
data/amanda-3.5.1/perl/Amanda/Config.c:2186:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
case LEVEL_INCR: hv_store(hv, "level", strlen("level"), newSVpv("INCR",0), 0); break;
data/amanda-3.5.1/perl/Amanda/Config.c:2205:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, "storage", strlen("storage"), newSVpv(v->storage, 0), 0);
data/amanda-3.5.1/perl/Amanda/Config.c:2206:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, "days", strlen("days"), newSViv(v->days), 0);
data/amanda-3.5.1/perl/Amanda/Config.c:2307:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Config.c:2488:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Debug.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Debug.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Debug.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Debug.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Debug.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Debug.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Debug.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Debug.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Debug.c:1610:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Debug.c:1818:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Device.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Device.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Device.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Device.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Device.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Device.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Device.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Device.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Device.c:1804:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Device.c:1851:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Disklist.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Disklist.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Disklist.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Disklist.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Disklist.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Disklist.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Disklist.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Disklist.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Disklist.c:1585:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
svp = hv_fetch(ifaces, name, strlen(name), TRUE);
data/amanda-3.5.1/perl/Amanda/Disklist.c:1627:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
svp = hv_fetch(hosts, dp->hostname, strlen(dp->hostname), TRUE);
data/amanda-3.5.1/perl/Amanda/Disklist.c:1751:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
svp = hv_fetch(disks, dp->hostname, strlen(dp->hostname), 1);
data/amanda-3.5.1/perl/Amanda/Disklist.c:1767:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(h, dp->name, strlen(dp->name), diskref, 0);
data/amanda-3.5.1/perl/Amanda/Disklist.c:1819:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Disklist.c:1854:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Feature.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Feature.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Feature.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Feature.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Feature.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Feature.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Feature.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Feature.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Feature.c:1773:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Feature.c:1820:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Header.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Header.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Header.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Header.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Header.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Header.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Header.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Header.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Header.c:1792:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Header.c:1856:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Header.c:1927:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
parse_file_header(string, df, strlen(string));
data/amanda-3.5.1/perl/Amanda/Header.c:2104:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->datestamp, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:2419:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->comp_suffix, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:2494:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->encrypt_suffix, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:2569:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->name, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:2644:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->disk, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:2719:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->program, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:2794:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->application, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:2869:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->srvcompprog, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:2944:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->clntcompprog, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:3019:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->srv_encrypt, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:3094:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->clnt_encrypt, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:3169:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->recover_cmd, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:3244:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->uncompress_cmd, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:3319:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->decrypt_cmd, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:3394:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->srv_decrypt_opt, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:3469:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->clnt_decrypt_opt, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:3544:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(arg1->cont_filename, arg2, STRMAX);
data/amanda-3.5.1/perl/Amanda/Header.c:3621:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Header.c:4531:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Header.c:4603:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Header.c:4755:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Header.c:5365:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Header.c:5437:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Header.c:5509:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Header.c:5581:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Header.c:5653:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Header.c:5725:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/Header.c:5957:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen((const char *)(arg2)) + 1;
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/IPC/Binary.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Logfile.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Logfile.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Logfile.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Logfile.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Logfile.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Logfile.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Logfile.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Logfile.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Logfile.c:1767:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Logfile.c:1822:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/MainLoop.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/MainLoop.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/MainLoop.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/MainLoop.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/MainLoop.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/MainLoop.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/MainLoop.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/MainLoop.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/NDMP.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/NDMP.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/NDMP.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/NDMP.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/NDMP.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/NDMP.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/NDMP.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/NDMP.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/NDMP.c:1620:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/NDMP.c:1662:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Tapelist.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Tapelist.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Tapelist.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Tapelist.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1629:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Tapelist.c:1810:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Tests.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Tests.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Tests.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Tests.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Tests.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Tests.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Tests.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Tests.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Tests.c:1693:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Tests.c:1740:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Tests.c:1831:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (read(fd, buf, 1)) {
data/amanda-3.5.1/perl/Amanda/Util.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Util.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Util.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Util.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Util.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Util.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Util.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Util.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Util.c:1610:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Util.c:1676:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/Util.c:3549:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv = *hv_fetch(hv, "match_autolabel", strlen("match_autolabel"), TRUE);
data/amanda-3.5.1/perl/Amanda/Util.c:3552:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv = *hv_fetch(hv, "template", strlen("template"), TRUE);
data/amanda-3.5.1/perl/Amanda/Util.c:3568:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv = *hv_fetch(hv, "other_config", strlen("other_config"), TRUE);
data/amanda-3.5.1/perl/Amanda/Util.c:3572:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv = *hv_fetch(hv, "non_amanda", strlen("non_amanda"), TRUE);
data/amanda-3.5.1/perl/Amanda/Util.c:3576:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv = *hv_fetch(hv, "volume_error", strlen("volume_error"), TRUE);
data/amanda-3.5.1/perl/Amanda/Util.c:3580:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv = *hv_fetch(hv, "empty", strlen("empty"), TRUE);
data/amanda-3.5.1/perl/Amanda/Util.c:3584:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv = *hv_fetch(hv, "template", strlen("template"), TRUE);
data/amanda-3.5.1/perl/Amanda/Xfer.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/Xfer.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/Xfer.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/Xfer.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/Xfer.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/Xfer.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/Xfer.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/Xfer.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/Xfer.c:1849:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/Amanda/Xfer.c:1988:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/XferServer.c:382:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char* te = tb + strlen(tb);
data/amanda-3.5.1/perl/Amanda/XferServer.c:666:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(name) + 1 > (bsz - (r - buff))) return 0;
data/amanda-3.5.1/perl/Amanda/XferServer.c:687:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t lname = (name ? strlen(name) : 0);
data/amanda-3.5.1/perl/Amanda/XferServer.c:692:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(r,name,lname+1);
data/amanda-3.5.1/perl/Amanda/XferServer.c:1251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((2*sz + 1 + strlen(SWIG_Perl_TypeProxyName(type))) > 1000) return;
data/amanda-3.5.1/perl/Amanda/XferServer.c:1343:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sv_magic(sv,sv,'U',name,strlen(name));
data/amanda-3.5.1/perl/Amanda/XferServer.c:1440:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#ifdef read
data/amanda-3.5.1/perl/Amanda/XferServer.c:1441:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#undef read
data/amanda-3.5.1/perl/Amanda/XferServer.c:1772:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (psize) *psize = vptr ? (strlen(vptr) + 1) : 0;
data/amanda-3.5.1/perl/Amanda/XferServer.c:1859:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return SWIG_FromCharPtrAndSize(cptr, (cptr ? strlen(cptr) : 0));
data/amanda-3.5.1/perl/amglue/ghashtable.c:37:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, key, strlen(key), newSVpv(value, 0), 0);
data/amanda-3.5.1/perl/amglue/ghashtable.c:63:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, key, strlen(key), newRV_noinc((SV*)list), 0);
data/amanda-3.5.1/perl/amglue/ghashtable.c:87:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(property_hv, "append", strlen("append"), newSViv(property->append), 0);
data/amanda-3.5.1/perl/amglue/ghashtable.c:88:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(property_hv, "visible", strlen("visible"), newSViv(property->visible), 0);
data/amanda-3.5.1/perl/amglue/ghashtable.c:89:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(property_hv, "priority", strlen("priority"), newSViv(property->priority), 0);
data/amanda-3.5.1/perl/amglue/ghashtable.c:93:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(property_hv, "values", strlen("values"), newRV_noinc((SV*)list), 0);
data/amanda-3.5.1/perl/amglue/ghashtable.c:96:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
hv_store(hv, key, strlen(key), val, 0);
data/amanda-3.5.1/recover-src/amrecover.c:135:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newbuf = g_malloc(strlen(mesg_buffer)+size+1);
data/amanda-3.5.1/recover-src/amrecover.c:136:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(newbuf, mesg_buffer, (size_t)(strlen(mesg_buffer) + size));
data/amanda-3.5.1/recover-src/amrecover.c:136:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(newbuf, mesg_buffer, (size_t)(strlen(mesg_buffer) + size));
data/amanda-3.5.1/recover-src/amrecover.c:137:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(newbuf+strlen(mesg_buffer), buf, (size_t)size);
data/amanda-3.5.1/recover-src/amrecover.c:138:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newbuf[strlen(mesg_buffer)+size] = '\0';
data/amanda-3.5.1/recover-src/amrecover.c:231:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffer = g_malloc(strlen(cmd)+3);
data/amanda-3.5.1/recover-src/amrecover.c:232:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer, cmd, strlen(cmd));
data/amanda-3.5.1/recover-src/amrecover.c:232:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(buffer, cmd, strlen(cmd));
data/amanda-3.5.1/recover-src/amrecover.c:233:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffer[strlen(cmd)] = '\r';
data/amanda-3.5.1/recover-src/amrecover.c:234:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffer[strlen(cmd)+1] = '\n';
data/amanda-3.5.1/recover-src/amrecover.c:235:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffer[strlen(cmd)+2] = '\0';
data/amanda-3.5.1/recover-src/amrecover.c:238:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(security_stream_write(streams[MESGFD].fd, buffer, strlen(buffer)) < 0) {
data/amanda-3.5.1/recover-src/amrecover.c:299:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length = strlen(s);
data/amanda-3.5.1/recover-src/amrecover.c:508:2: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(tape_device_name) == 0 ||
data/amanda-3.5.1/recover-src/amrecover.c:779:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tok_end = tok + strlen(tok);
data/amanda-3.5.1/recover-src/display_commands.c:323:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(disk_tpath);
data/amanda-3.5.1/recover-src/extract_list.c:285:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
size = read(datafd, dataptr, (size_t)spaceleft);
data/amanda-3.5.1/recover-src/extract_list.c:428:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
((strlen(fn2->path) > strlen(fn1->path) &&
data/amanda-3.5.1/recover-src/extract_list.c:428:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
((strlen(fn2->path) > strlen(fn1->path) &&
data/amanda-3.5.1/recover-src/extract_list.c:429:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fn2->path[strlen(fn1->path)] == '/') ||
data/amanda-3.5.1/recover-src/extract_list.c:430:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(fn1->path[strlen(fn1->path)-1] == '/'))) {
data/amanda-3.5.1/recover-src/extract_list.c:433:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
((strlen(fn1->path) > strlen(fn2->path) &&
data/amanda-3.5.1/recover-src/extract_list.c:433:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
((strlen(fn1->path) > strlen(fn2->path) &&
data/amanda-3.5.1/recover-src/extract_list.c:434:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fn1->path[strlen(fn2->path)] == '/') ||
data/amanda-3.5.1/recover-src/extract_list.c:435:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(fn2->path[strlen(fn2->path)-1] == '/'))) {
data/amanda-3.5.1/recover-src/extract_list.c:582:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (path[strlen(path)-1] == '/') {
data/amanda-3.5.1/recover-src/extract_list.c:583:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
path[strlen(path)-1] = '\0';
data/amanda-3.5.1/recover-src/extract_list.c:586:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = path + strlen(dir) + 1;
data/amanda-3.5.1/recover-src/extract_list.c:609:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (filename[strlen(filename)-1] == '/') {
data/amanda-3.5.1/recover-src/extract_list.c:610:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
filename[strlen(filename)-1] = '\0';
data/amanda-3.5.1/recover-src/extract_list.c:780:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(path1);
data/amanda-3.5.1/recover-src/extract_list.c:830:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
regex_path[strlen(regex_path) - 1] = '\0';
data/amanda-3.5.1/recover-src/extract_list.c:921:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = (ssize_t)(strlen(regex) - 1);
data/amanda-3.5.1/recover-src/extract_list.c:955:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = (ssize_t)strlen(ditem->tpath);
data/amanda-3.5.1/recover-src/extract_list.c:1198:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
regex_path[strlen(regex_path) - 1] = '\0';
data/amanda-3.5.1/recover-src/extract_list.c:1291:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = (ssize_t)(strlen(regex) - 1);
data/amanda-3.5.1/recover-src/extract_list.c:1326:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
j = (ssize_t)strlen(ditem->tpath);
data/amanda-3.5.1/recover-src/extract_list.c:1711:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (security_stream_write(stream, msg, strlen(msg)) < 0)
data/amanda-3.5.1/recover-src/extract_list.c:1970:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len_program = strlen(ctl_data->file.program);
data/amanda-3.5.1/recover-src/extract_list.c:2279:5: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if(sscanf(amidxtaped_line, "FEEDME %132s\n", desired_tape) == 1) {
data/amanda-3.5.1/recover-src/extract_list.c:2950:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newbuf = g_malloc(strlen(ctl_buffer)+size+1);
data/amanda-3.5.1/recover-src/extract_list.c:2951:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(newbuf, ctl_buffer, (size_t)(strlen(ctl_buffer) + size + 1));
data/amanda-3.5.1/recover-src/extract_list.c:2951:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(newbuf, ctl_buffer, (size_t)(strlen(ctl_buffer) + size + 1));
data/amanda-3.5.1/recover-src/extract_list.c:2952:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(newbuf+strlen(ctl_buffer), buf, (size_t)size);
data/amanda-3.5.1/recover-src/extract_list.c:2953:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newbuf[strlen(ctl_buffer)+size] = '\0';
data/amanda-3.5.1/recover-src/extract_list.c:2995:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(cdata->fd, cdata->buffer + cdata->first + cdata->size,
data/amanda-3.5.1/recover-src/extract_list.c:3063:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(cdata->fd, cdata->buffer + cdata->first + cdata->size,
data/amanda-3.5.1/recover-src/extract_list.c:3510:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(ctl_data->file.clntcompprog) > 0) {
data/amanda-3.5.1/recover-src/set_commands.c:477:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(regex_path[strlen(regex_path) - 2] != '/' ) {
data/amanda-3.5.1/recover-src/set_commands.c:478:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
regex_path[strlen(regex_path) - 1] = '\0';
data/amanda-3.5.1/recover-src/set_commands.c:522:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len_uqregex = strlen(uqregex);
data/amanda-3.5.1/recover-src/set_commands.c:583:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(ditem->tpath);
data/amanda-3.5.1/recover-src/set_commands.c:591:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(dir[strlen(dir)-1] == '/')
data/amanda-3.5.1/recover-src/set_commands.c:592:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dir[strlen(dir)-1] = '\0'; /* remove last / */
data/amanda-3.5.1/recover-src/set_commands.c:658:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(mount_point, ldir, strlen(mount_point)) != 0)
data/amanda-3.5.1/recover-src/set_commands.c:666:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_dir = g_strdup(ldir+strlen(mount_point));
data/amanda-3.5.1/recover-src/set_commands.c:667:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(new_dir) == 0) {
data/amanda-3.5.1/recover-src/uparse.c:927:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define yystrlen strlen
data/amanda-3.5.1/recover-src/uscan.c:774:14: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
(c = getc( yyin )) != EOF && c != '\n'; ++n ) \
data/amanda-3.5.1/recover-src/uscan.c:1985:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return yy_scan_bytes(yystr,strlen(yystr) );
data/amanda-3.5.1/server-src/amadmin.c:1024:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i = strlen(opt_sort); i > 0; i--) {
data/amanda-3.5.1/server-src/amadmin.c:1843:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(onestat.label, s - 1, sizeof(onestat.label)-1);
data/amanda-3.5.1/server-src/amcheck.c:155:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(prefix);
data/amanda-3.5.1/server-src/amcheck.c:391:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(getconf_seen(CNF_MAILTO)==0 || strlen(getconf_str(CNF_MAILTO)) == 0)) {
data/amanda-3.5.1/server-src/amcheck.c:406:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(getconf_str(CNF_MAILTO)) > 0) {
data/amanda-3.5.1/server-src/amcheck.c:626:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(*b) > 0) {
data/amanda-3.5.1/server-src/amcheck.c:2174:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
req_len = strlen(req);
data/amanda-3.5.1/server-src/amcheck.c:2371:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (client_name && strlen(client_name) > 0 &&
data/amanda-3.5.1/server-src/amcheck.c:2395:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (client_name && strlen(client_name) > 0 &&
data/amanda-3.5.1/server-src/amcheck.c:2419:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l_len = strlen(l);
data/amanda-3.5.1/server-src/amindexd.c:266:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len_dir_slash=strlen(dir_slash);
data/amanda-3.5.1/server-src/amindexd.c:270:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(line) > 0 && line[strlen(line)-1] == '\n')
data/amanda-3.5.1/server-src/amindexd.c:270:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(line) > 0 && line[strlen(line)-1] == '\n')
data/amanda-3.5.1/server-src/amindexd.c:271:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/server-src/amindexd.c:771:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(date, item->date, 20);
data/amanda-3.5.1/server-src/amindexd.c:844:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ldir_len = strlen(ldir);
data/amanda-3.5.1/server-src/amindexd.c:869:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(line) > 0 && line[strlen(line)-1] == '\n')
data/amanda-3.5.1/server-src/amindexd.c:869:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(line) > 0 && line[strlen(line)-1] == '\n')
data/amanda-3.5.1/server-src/amindexd.c:870:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/server-src/amindexd.c:1014:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(date, dir_item->dump->date, 20);
data/amanda-3.5.1/server-src/amindexd.c:1369:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((len = strlen(line)) > 0 && line[len-1] == '\r') {
data/amanda-3.5.1/server-src/amindexd.c:1756:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(date, datestamp, 8);
data/amanda-3.5.1/server-src/amindexd.c:1763:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(datestamp) <= 8) {
data/amanda-3.5.1/server-src/amindexd.c:1768:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(atime, &(datestamp[8]), 6);
data/amanda-3.5.1/server-src/amindexd.c:1787:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strncmp(date1, date2, strlen(date2));
data/amanda-3.5.1/server-src/amindexd.c:2133:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
full_write(pipe_to_sort,line,strlen(line));
data/amanda-3.5.1/server-src/amindexd.c:2153:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n')
data/amanda-3.5.1/server-src/amindexd.c:2153:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n')
data/amanda-3.5.1/server-src/amindexd.c:2154:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/server-src/amindexd.c:2171:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n')
data/amanda-3.5.1/server-src/amindexd.c:2171:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(line) > 0 && line[strlen(line)-1] == '\n')
data/amanda-3.5.1/server-src/amindexd.c:2172:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
line[strlen(line)-1] = '\0';
data/amanda-3.5.1/server-src/amtrmidx.c:272:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen(f->d_name) - (sizeof(".tmp")-1);
data/amanda-3.5.1/server-src/cmdfile.c:508:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file_lock_write(cmddatas->lock, buffer, strlen(buffer));
data/amanda-3.5.1/server-src/disk_history.c:98:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(new->date, date, sizeof(new->date)-1);
data/amanda-3.5.1/server-src/disk_history.c:101:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(new->storage, storage, sizeof(new->storage)-1);
data/amanda-3.5.1/server-src/disk_history.c:103:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(new->tape, tape, sizeof(new->tape)-1);
data/amanda-3.5.1/server-src/diskfile.c:512:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(diskname) == 0) {
data/amanda-3.5.1/server-src/diskfile.c:533:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(dumptype) == 0) {
data/amanda-3.5.1/server-src/diskfile.c:876:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!plugin || strlen(plugin) == 0) {
data/amanda-3.5.1/server-src/diskfile.c:892:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!plugin || strlen(plugin) == 0) {
data/amanda-3.5.1/server-src/diskfile.c:1028:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (dp->clntcompprog == NULL || strlen(dp->clntcompprog) == 0) {
data/amanda-3.5.1/server-src/diskfile.c:1042:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (dp->srvcompprog == NULL || strlen(dp->srvcompprog) == 0) {
data/amanda-3.5.1/server-src/diskfile.c:1058:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (dp->clnt_encrypt == NULL || strlen(dp->clnt_encrypt) == 0) {
data/amanda-3.5.1/server-src/diskfile.c:1074:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (dp->srv_encrypt == NULL || strlen(dp->srv_encrypt) == 0) {
data/amanda-3.5.1/server-src/diskfile.c:1620:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define SC_LEN strlen(SC)
data/amanda-3.5.1/server-src/diskfile.c:1625:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(hack1, hack2 + SC_LEN, strlen(hack2 + SC_LEN) + 1);
data/amanda-3.5.1/server-src/diskfile.c:1632:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define SC_LEN strlen(SC)
data/amanda-3.5.1/server-src/diskfile.c:1641:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
pend = rval_dle_str + strlen(rval_dle_str);
data/amanda-3.5.1/server-src/diskfile.c:1647:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(pproperty, eproperty + SC_LEN, strlen(eproperty + SC_LEN) + 1);
data/amanda-3.5.1/server-src/diskfile.c:1706:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (p && strlen(p) > 0 &&
data/amanda-3.5.1/server-src/diskfile.c:1786:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (client_name && strlen(client_name) > 0
data/amanda-3.5.1/server-src/driver.c:368:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(driver_timestamp, &line[5], 14);
data/amanda-3.5.1/server-src/driver.c:377:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(driver_timestamp) == 8) {
data/amanda-3.5.1/server-src/driver.c:1687:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(dumporder) > (size_t)(dumper-dmptable)) {
data/amanda-3.5.1/server-src/driver.c:5139:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(dirname, filename, 999);
data/amanda-3.5.1/server-src/driver.c:5705:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
full_write(fd, read_buffer, strlen(read_buffer));
data/amanda-3.5.1/server-src/driverio.c:769:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((full_write(taper->fd, cmdline, strlen(cmdline))) < strlen(cmdline)) {
data/amanda-3.5.1/server-src/driverio.c:769:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((full_write(taper->fd, cmdline, strlen(cmdline))) < strlen(cmdline)) {
data/amanda-3.5.1/server-src/driverio.c:776:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmdline[strlen(cmdline)-1] = '\0';
data/amanda-3.5.1/server-src/driverio.c:941:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(dumper->fd, cmdline, strlen(cmdline)) < strlen(cmdline)) {
data/amanda-3.5.1/server-src/driverio.c:941:57: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(dumper->fd, cmdline, strlen(cmdline)) < strlen(cmdline)) {
data/amanda-3.5.1/server-src/driverio.c:947:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmdline[strlen(cmdline)-1] = '\0';
data/amanda-3.5.1/server-src/driverio.c:1102:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(chunker->fd, cmdline, strlen(cmdline)) < strlen(cmdline)) {
data/amanda-3.5.1/server-src/driverio.c:1102:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(chunker->fd, cmdline, strlen(cmdline)) < strlen(cmdline)) {
data/amanda-3.5.1/server-src/driverio.c:1108:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmdline[strlen(cmdline)-1] = '\0';
data/amanda-3.5.1/server-src/driverio.c:1402:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(infp->label, label, sizeof(infp->label)-1);
data/amanda-3.5.1/server-src/dumper.c:271:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
srvcompprog = g_strdup(compmode + strlen("srvcomp-cust="));
data/amanda-3.5.1/server-src/dumper.c:279:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
clntcompprog = g_strdup(compmode + strlen("comp-cust="));
data/amanda-3.5.1/server-src/dumper.c:294:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
srv_encrypt = g_strdup(encryptmode + strlen("encrypt-serv-cust="));
data/amanda-3.5.1/server-src/dumper.c:302:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
clnt_encrypt = g_strdup(encryptmode + strlen("encrypt-cust="));
data/amanda-3.5.1/server-src/dumper.c:313:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
srv_decrypt_opt = g_strdup(decryptmode + strlen("server-decrypt-option="));
data/amanda-3.5.1/server-src/dumper.c:320:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
clnt_decrypt_opt = g_strdup(decryptmode + strlen("client-decrypt-option="));
data/amanda-3.5.1/server-src/dumper.c:1082:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(fields[i].value, value, fields[i].len - 1);
data/amanda-3.5.1/server-src/dumper.c:1156:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(tok);
data/amanda-3.5.1/server-src/dumper.c:1291:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buflen = strlen(msg.buf);
data/amanda-3.5.1/server-src/dumper.c:1324:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(newbuf, msg.buf, newsize);
data/amanda-3.5.1/server-src/dumper.c:1336:5: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(msg.buf, str, len);
data/amanda-3.5.1/server-src/dumper.c:1358:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buflen = strlen(line);
data/amanda-3.5.1/server-src/dumper.c:1408:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->datestamp, dumper_timestamp, sizeof(file->datestamp) - 1);
data/amanda-3.5.1/server-src/dumper.c:1409:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->name, hostname, sizeof(file->name) - 1);
data/amanda-3.5.1/server-src/dumper.c:1410:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->disk, diskname, sizeof(file->disk) - 1);
data/amanda-3.5.1/server-src/dumper.c:1426:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(file->comp_suffix, "cust", sizeof(file->comp_suffix) - 1);
data/amanda-3.5.1/server-src/dumper.c:1428:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->srvcompprog, srvcompprog, sizeof(file->srvcompprog) - 1);
data/amanda-3.5.1/server-src/dumper.c:1433:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(file->comp_suffix, "cust", sizeof(file->comp_suffix) - 1);
data/amanda-3.5.1/server-src/dumper.c:1435:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->clntcompprog, clntcompprog, sizeof(file->clntcompprog));
data/amanda-3.5.1/server-src/dumper.c:1440:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->comp_suffix, COMPRESS_SUFFIX,sizeof(file->comp_suffix) - 1);
data/amanda-3.5.1/server-src/dumper.c:1447:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(file->comp_suffix, "N", sizeof(file->comp_suffix) - 1);
data/amanda-3.5.1/server-src/dumper.c:1460:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->srv_decrypt_opt, srv_decrypt_opt, sizeof(file->srv_decrypt_opt) - 1);
data/amanda-3.5.1/server-src/dumper.c:1467:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(file->encrypt_suffix, "enc", sizeof(file->encrypt_suffix) - 1);
data/amanda-3.5.1/server-src/dumper.c:1469:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->srv_encrypt, srv_encrypt, sizeof(file->srv_encrypt) - 1);
data/amanda-3.5.1/server-src/dumper.c:1475:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->clnt_decrypt_opt, clnt_decrypt_opt,
data/amanda-3.5.1/server-src/dumper.c:1485:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(file->encrypt_suffix, "enc", sizeof(file->encrypt_suffix) - 1);
data/amanda-3.5.1/server-src/dumper.c:1487:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(file->clnt_encrypt, clnt_encrypt, sizeof(file->clnt_encrypt) - 1);
data/amanda-3.5.1/server-src/dumper.c:1494:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(file->encrypt_suffix, "N", sizeof(file->encrypt_suffix) - 1);
data/amanda-3.5.1/server-src/dumper.c:2875:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
nread = read(filter->fd, filter->buffer + filter->first + filter->size,
data/amanda-3.5.1/server-src/dumper.c:3603:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (result && strlen(result) == 0)
data/amanda-3.5.1/server-src/find.c:348:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t nb_compare=strlen(find_sort_order);
data/amanda-3.5.1/server-src/find.c:491:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(output_find_result->hostname);
data/amanda-3.5.1/server-src/find.c:517:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(output_find_result->status) + 1 + strlen(output_find_result->dump_status);
data/amanda-3.5.1/server-src/find.c:517:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(output_find_result->status) + 1 + strlen(output_find_result->dump_status);
data/amanda-3.5.1/server-src/find.c:523:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(s);
data/amanda-3.5.1/server-src/find.c:636:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(date, datestamp, 8);
data/amanda-3.5.1/server-src/find.c:643:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(datestamp) <= 8) {
data/amanda-3.5.1/server-src/find.c:648:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(atime, &(datestamp[8]), 6);
data/amanda-3.5.1/server-src/find.c:666:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(datestamp) <= 8) {
data/amanda-3.5.1/server-src/find.c:1104:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(date) < 3) { /* old log didn't have datestamp */
data/amanda-3.5.1/server-src/find.c:1593:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cur_result->timestamp) < 14) {
data/amanda-3.5.1/server-src/find.c:1596:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(zeropad_ts, cur_result->timestamp, strlen(cur_result->timestamp));
data/amanda-3.5.1/server-src/find.c:1598:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(cur_result->write_timestamp) < 14) {
data/amanda-3.5.1/server-src/find.c:1601:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(zeropad_w_ts, cur_result->write_timestamp, strlen(cur_result->write_timestamp));
data/amanda-3.5.1/server-src/holding.c:114:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ymd, fname, 8);
data/amanda-3.5.1/server-src/holding.c:127:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(hms, fname+8, 6);
data/amanda-3.5.1/server-src/holding.c:483:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((l = strlen(element)) >= 7 && g_str_has_prefix(&element[l - 4], ".tmp"))
data/amanda-3.5.1/server-src/holding.c:852:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((l = strlen(element)) >= 7 && g_str_has_prefix(&element[l - 4], ".tmp")) {
data/amanda-3.5.1/server-src/holding.c:857:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
destname[strlen(destname) - 4] = '\0';
data/amanda-3.5.1/server-src/infofile.c:305:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(onestat.label, s-1, sizeof(onestat.label)-1);
data/amanda-3.5.1/server-src/logfile.c:136:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(logfd, leader, strlen(leader)) < strlen(leader)) {
data/amanda-3.5.1/server-src/logfile.c:136:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (full_write(logfd, leader, strlen(leader)) < strlen(leader)) {
data/amanda-3.5.1/server-src/logfile.c:144:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(linebuf);
data/amanda-3.5.1/server-src/logfile.c:395:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(logline) == line_size -1 &&
data/amanda-3.5.1/server-src/logfile.c:396:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
logline[strlen(logline)-1] != '\n') {
data/amanda-3.5.1/server-src/logfile.c:399:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
loffset = strlen(logline);
data/amanda-3.5.1/server-src/logfile.c:400:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (strlen(logline) == 0 ||
data/amanda-3.5.1/server-src/logfile.c:401:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strlen(logline) == 1 && logline[0] == '\n')) {
data/amanda-3.5.1/server-src/logfile.c:411:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(logline);
data/amanda-3.5.1/server-src/planner.c:574:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int l = strlen(holding_file->data) - 4;
data/amanda-3.5.1/server-src/planner.c:1055:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ep->last_level > -1 && strlen(info->inf[0].label) > 0) {
data/amanda-3.5.1/server-src/planner.c:1071:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ep->last_level > 1 && strlen(info->inf[1].label) > 0) {
data/amanda-3.5.1/server-src/server_util.c:150:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(result) == 0)
data/amanda-3.5.1/server-src/server_util.c:202:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (result && strlen(result) == 0)
data/amanda-3.5.1/server-src/tapefile.c:693:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(date, datestamp, 8);
data/amanda-3.5.1/server-src/xfer-dest-holding.c:944:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(self->chunk_header->cont_filename, cont_filename, sizeof(self->chunk_header->cont_filename));
data/amanda-3.5.1/xfer-src/dest-application.c:214:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
full_write(STDERR_FILENO, errmsg, strlen(errmsg));
data/amanda-3.5.1/xfer-src/dest-application.c:220:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
full_write(STDERR_FILENO, errmsg, strlen(errmsg));
data/amanda-3.5.1/xfer-src/filter-process.c:122:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strstr(self->argv[0],"gzip") != self->argv[0]+strlen(self->argv[0])-4)) {
data/amanda-3.5.1/xfer-src/filter-process.c:199:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
full_write(STDERR_FILENO, errmsg, strlen(errmsg));
data/amanda-3.5.1/xfer-src/filter-process.c:206:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
full_write(STDERR_FILENO, errmsg, strlen(errmsg));
data/amanda-3.5.1/xfer-src/xfer-test.c:771:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((nread = read(fd, buf+sizeof(buf)-remaining, remaining)) <= 0) {
data/amanda-3.5.1/xfer-src/xfer-test.c:778:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((nread = read(fd, buf, 10)) != 0)
data/amanda-3.5.1/xfer-src/xfer-test.c:877:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((nread = read(fd, buf+sizeof(buf)-remaining, remaining)) <= 0) {
data/amanda-3.5.1/xfer-src/xfer-test.c:884:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ((nread = read(fd, buf, 10)) != 0)
ANALYSIS SUMMARY:
Hits = 3610
Lines analyzed = 367850 in approximately 8.78 seconds (41878 lines/second)
Physical Source Lines of Code (SLOC) = 271637
Hits@level = [0] 1035 [1] 1227 [2] 1602 [3] 105 [4] 649 [5] 27
Hits@level+ = [0+] 4645 [1+] 3610 [2+] 2383 [3+] 781 [4+] 676 [5+] 27
Hits/KSLOC@level+ = [0+] 17.1 [1+] 13.2898 [2+] 8.77274 [3+] 2.87516 [4+] 2.48862 [5+] 0.0993974
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.