Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/borgbackup-1.1.14/scripts/fuzz-cache-sync/main.c
Examining data/borgbackup-1.1.14/src/borg/item.c
Examining data/borgbackup-1.1.14/src/borg/cache_sync/cache_sync.c
Examining data/borgbackup-1.1.14/src/borg/cache_sync/unpack.h
Examining data/borgbackup-1.1.14/src/borg/cache_sync/sysdep.h
Examining data/borgbackup-1.1.14/src/borg/cache_sync/unpack_template.h
Examining data/borgbackup-1.1.14/src/borg/cache_sync/unpack_define.h
Examining data/borgbackup-1.1.14/src/borg/hashindex.c
Examining data/borgbackup-1.1.14/src/borg/compress.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd-libselect.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/checksums.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2-impl.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2b-ref.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_fast.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_lazy.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_double_fast.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_superblock.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstdmt_compress.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_opt.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_lazy.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_literals.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/hist.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_literals.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_double_fast.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_sequences.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_ldm.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_fast.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_ldm.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/fse_compress.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_sequences.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_internal.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/huf_compress.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_opt.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/hist.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstdmt_compress.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_cwksp.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_superblock.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/deprecated/zbuff_common.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/deprecated/zbuff.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/deprecated/zbuff_decompress.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/deprecated/zbuff_compress.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/zstd.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/zdict.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/fastcover.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/cover.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/divsufsort.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/divsufsort.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/zdict.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/cover.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_ddict.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/huf_decompress.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress_internal.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress_block.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_ddict.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress_block.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/error_private.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/threading.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/mem.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/compiler.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/debug.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/debug.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/pool.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/zstd_internal.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/zstd_errors.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/fse_decompress.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/zstd_common.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/huf.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/pool.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/cpu.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/fse.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/error_private.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/entropy_common.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/bitstream.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/threading.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v01.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_legacy.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v01.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/blake2-libselect.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/crc32_dispatch.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/lz4-libselect.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/msgpack/unpack.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp
Examining data/borgbackup-1.1.14/src/borg/algorithms/msgpack/sysdep.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/msgpack/unpack_template.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp
Examining data/borgbackup-1.1.14/src/borg/algorithms/msgpack/unpack_define.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h
Examining data/borgbackup-1.1.14/src/borg/algorithms/crc32_clmul.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/crc32_slice_by_8.c
Examining data/borgbackup-1.1.14/src/borg/algorithms/xxhash-libselect.h
Examining data/borgbackup-1.1.14/src/borg/_chunker.c
Examining data/borgbackup-1.1.14/src/borg/crypto/low_level.c
Examining data/borgbackup-1.1.14/src/borg/_hashindex.c
Examining data/borgbackup-1.1.14/src/borg/_endian.h
Examining data/borgbackup-1.1.14/src/borg/platform/posix.c
Examining data/borgbackup-1.1.14/src/borg/platform/linux.c
Examining data/borgbackup-1.1.14/src/borg/platform/darwin.c
Examining data/borgbackup-1.1.14/src/borg/platform/freebsd.c
Examining data/borgbackup-1.1.14/src/borg/platform/syncfilerange.c
Examining data/borgbackup-1.1.14/src/borg/chunker.c
FINAL RESULTS:
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:786:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:231:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, __FILE__ ": "); \
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:232:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, __VA_ARGS__); \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:799:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:800:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/debug.h:97:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, __VA_ARGS__); \
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/debug.h:101:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, __FILE__ ": " __VA_ARGS__); \
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/cover.c:51:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, __VA_ARGS__); \
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/fastcover.c:47:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr, __VA_ARGS__); \
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/zdict.c:72:32: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define DISPLAY(...) { fprintf(stderr, __VA_ARGS__); fflush( stderr ); }
data/borgbackup-1.1.14/src/borg/chunker.c:784:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/compress.c:783:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:787:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/hashindex.c:787:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/item.c:781:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/platform/darwin.c:782:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/platform/freebsd.c:785:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/platform/linux.c:790:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/platform/posix.c:782:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/platform/syncfilerange.c:783:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(__PYX_DEFAULT_STRING_ENCODING, default_encoding_c);
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:4357:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate) PyErr_Clear();
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:4358:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:4358:58: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:4363:29: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
} else if (!setstate || PyErr_Occurred()) {
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:4383:16: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
Py_XDECREF(setstate);
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:8098:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate) PyErr_Clear();
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:8099:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:8099:58: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:8104:29: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
} else if (!setstate || PyErr_Occurred()) {
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:8124:16: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
Py_XDECREF(setstate);
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:8667:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate) PyErr_Clear();
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:8668:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:8668:58: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:8673:29: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
} else if (!setstate || PyErr_Occurred()) {
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:8693:16: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
Py_XDECREF(setstate);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/threading.h:51:52: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
#define ZSTD_pthread_mutex_init(a, b) ((void)(b), InitializeCriticalSection((a)), 0)
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/threading.h:53:40: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
#define ZSTD_pthread_mutex_lock(a) EnterCriticalSection((a))
data/borgbackup-1.1.14/src/borg/chunker.c:3467:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate) PyErr_Clear();
data/borgbackup-1.1.14/src/borg/chunker.c:3468:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/chunker.c:3468:58: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/chunker.c:3473:29: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
} else if (!setstate || PyErr_Occurred()) {
data/borgbackup-1.1.14/src/borg/chunker.c:3493:16: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
Py_XDECREF(setstate);
data/borgbackup-1.1.14/src/borg/compress.c:14084:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate) PyErr_Clear();
data/borgbackup-1.1.14/src/borg/compress.c:14085:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/compress.c:14085:58: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/compress.c:14090:29: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
} else if (!setstate || PyErr_Occurred()) {
data/borgbackup-1.1.14/src/borg/compress.c:14110:16: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
Py_XDECREF(setstate);
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:8430:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate) PyErr_Clear();
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:8431:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:8431:58: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:8436:29: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
} else if (!setstate || PyErr_Occurred()) {
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:8456:16: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
Py_XDECREF(setstate);
data/borgbackup-1.1.14/src/borg/hashindex.c:12764:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate) PyErr_Clear();
data/borgbackup-1.1.14/src/borg/hashindex.c:12765:18: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/hashindex.c:12765:58: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
if (!setstate || __Pyx_setup_reduce_is_named(setstate, __pyx_n_s_setstate_cython)) {
data/borgbackup-1.1.14/src/borg/hashindex.c:12770:29: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
} else if (!setstate || PyErr_Occurred()) {
data/borgbackup-1.1.14/src/borg/hashindex.c:12790:16: [3] (random) setstate:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
Py_XDECREF(setstate);
data/borgbackup-1.1.14/scripts/fuzz-cache-sync/main.c:10:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFSZ];
data/borgbackup-1.1.14/src/borg/_chunker.c:227:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c->data + c->position + c->remaining, PyBytes_AsString(data), n);
data/borgbackup-1.1.14/src/borg/_hashindex.c:19:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char magic[MAGIC_LEN];
data/borgbackup-1.1.14/src/borg/_hashindex.c:143:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(BUCKET_ADDR(index, didx), BUCKET_ADDR(index, idx), index->bucket_size);
data/borgbackup-1.1.14/src/borg/_hashindex.c:578:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, key, index->key_size);
data/borgbackup-1.1.14/src/borg/_hashindex.c:579:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr + index->key_size, value, index->value_size);
data/borgbackup-1.1.14/src/borg/_hashindex.c:584:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(BUCKET_ADDR(index, idx) + index->key_size, value, index->value_size);
data/borgbackup-1.1.14/src/borg/_hashindex.c:673:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(BUCKET_ADDR(index, compact_tail_idx), BUCKET_ADDR(index, begin_used_idx), buckets_to_copy * index->bucket_size);
data/borgbackup-1.1.14/src/borg/_hashindex.c:698:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hash[16];
data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2-impl.h:37:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&w, src, sizeof w);
data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2-impl.h:52:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&w, src, sizeof w);
data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2-impl.h:71:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&w, src, sizeof w);
data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2-impl.h:83:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, &w, sizeof w);
data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2-impl.h:94:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, &w, sizeof w);
data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2-impl.h:107:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, &w, sizeof w);
data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2b-ref.c:146:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( block, key, keylen );
data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2b-ref.c:231:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( S->buf + left, in, fill ); /* Fill buffer */
data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2b-ref.c:242:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( S->buf + S->buflen, in, inlen );
data/borgbackup-1.1.14/src/borg/algorithms/blake2/ref/blake2b-ref.c:267:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( out, buffer, S->outlen );
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:739:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:4395:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char warning[200];
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:5708:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:5712:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:325:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:330:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:365:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { memcpy(d,s,8); d+=8; s+=8; } while (d<e);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:396:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstPtr+4, srcPtr, 4);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:400:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstPtr, srcPtr, 8);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:418:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { memcpy(d,s,16); memcpy(d+16,s+16,16); d+=32; s+=32; } while (d<e);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:418:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { memcpy(d,s,16); memcpy(d+16,s+16,16); d+=32; s+=32; } while (d<e);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:437:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(v, srcPtr, 2);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:438:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&v[2], srcPtr, 2);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:439:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&v[4], &v[0], 4);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:442:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(v, srcPtr, 4);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:443:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&v[4], srcPtr, 4);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:450:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstPtr, v, 8);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:453:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstPtr, v, 8);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1165:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, anchor, lastRun);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1541:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(streamPtr, streamPtr->dictCtx, sizeof(LZ4_stream_t));
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1749:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, ip, 16);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1753:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, ip, 8);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1754:39: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (length > 8) { memcpy(op+8, ip+8, 8); }
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1790:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, match, 8);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1791:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op+8, match+8, 8);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1792:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op+16, match+16, 2);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1815:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dictEnd - copySize, copySize);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1822:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, lowPrefix, restSize);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1863:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, ip, endOnInput ? 16 : 8);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1878:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op + 0, match + 0, 8);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1879:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op + 8, match + 8, 8);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1880:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op +16, match +16, 2);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:1993:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dictEnd - copySize, copySize);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:2000:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, lowPrefix, restSize);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:2019:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, match, mlen);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:2033:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op+4, match, 4);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:2036:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, match, 8);
data/borgbackup-1.1.14/src/borg/algorithms/lz4/lib/lz4.c:2051:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, match, 8);
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:752:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:8136:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char warning[200];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:9607:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:9611:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:753:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:4696:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void)(memcpy(__pyx_v_new_buf, (__pyx_v_buf + __pyx_v_head), (__pyx_v_tail - __pyx_v_head)));
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:4761:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void)(memcpy((__pyx_v_buf + __pyx_v_tail), ((char *)__pyx_v__buf), __pyx_v__buf_len));
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:8705:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char warning[200];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:9640:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:9644:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack.h:56:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + len, data, l);
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:47:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_8(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:59:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_16(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:63:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:77:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_32(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:83:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:88:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:103:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_64(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:109:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:114:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:119:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[9]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:130:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xd0, TAKE8_8(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:143:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:148:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xd0, TAKE8_16(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:157:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_16(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:161:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:173:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:178:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:183:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xd0, TAKE8_32(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:192:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_32(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:196:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:201:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:214:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[9]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:219:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:226:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:231:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xd0, TAKE8_64(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:242:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_64(d)}; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:246:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:253:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:258:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[9]; \
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:571:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:580:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[9];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:629:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:633:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:650:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:654:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:671:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xd9, (uint8_t)l};
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:674:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:678:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:693:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xc4, (unsigned char)l};
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:696:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3] = {0xc5};
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:700:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5] = {0xc6};
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:718:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:724:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:730:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:736:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:742:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:748:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:754:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[4];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/pack_template.h:760:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[6];
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/sysdep.h:178:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { uint16_t val = _msgpack_be16(num); memcpy(to, &val, 2); } while(0)
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/sysdep.h:180:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { uint32_t val = _msgpack_be32(num); memcpy(to, &val, 4); } while(0)
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/sysdep.h:182:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { uint64_t val = _msgpack_be64(num); memcpy(to, &val, 8); } while(0)
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:325:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef struct { unsigned char digest[4]; } XXH32_canonical_t;
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:370:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef struct { unsigned char digest[sizeof(XXH64_hash_t)]; } XXH64_canonical_t;
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:558:34: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
XXH_ALIGN_MEMBER(64, unsigned char customSecret[XXH3_SECRET_DEFAULT_SIZE]);
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:559:34: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
XXH_ALIGN_MEMBER(64, unsigned char buffer[XXH3_INTERNALBUFFER_SIZE]);
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:672:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef struct { unsigned char digest[sizeof(XXH128_hash_t)]; } XXH128_canonical_t;
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:889:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
return memcpy(dest,src,size);
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:1401:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstState, srcState, sizeof(*dstState));
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:1413:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(statePtr, &state, sizeof(state) - sizeof(state.reserved));
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:1520:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, &hash, sizeof(*dst));
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:1942:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstState, srcState, sizeof(*dstState));
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:1954:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(statePtr, &state, sizeof(state) - sizeof(state.reserved64));
data/borgbackup-1.1.14/src/borg/algorithms/xxh64/xxhash.h:2050:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, &hash, sizeof(*dst));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/entropy_common.c:57:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[4];
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/entropy_common.c:59:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buffer, headerBuffer, hbSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/fse_decompress.c:98:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dt, &DTableH, sizeof(DTableH));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/mem.h:259:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/mem.h:264:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/mem.h:269:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/pool.c:209:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(threadPool, ctx->threads, ctx->threadCapacity * sizeof(*threadPool));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.c:87:76: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void* XXH_memcpy(void* dest, const void* src, size_t size) { return memcpy(dest,src,size); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.c:310:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstState, srcState, sizeof(*dstState));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.c:315:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstState, srcState, sizeof(*dstState));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.c:562:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(statePtr, &state, sizeof(state));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.c:575:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(statePtr, &state, sizeof(state));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.c:846:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, &hash, sizeof(*dst));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.c:853:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, &hash, sizeof(*dst));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.h:226:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef struct { unsigned char digest[4]; } XXH32_canonical_t;
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/xxhash.h:227:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef struct { unsigned char digest[8]; } XXH64_canonical_t;
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/zstd_internal.h:234:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, 8);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/zstd_internal.h:243:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, 16);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/common/zstd_internal.h:308:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, length);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/huf_compress.c:719:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(oldHufTable, table->CTable, sizeof(table->CTable)); /* Save new table */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:908:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dictBuffer, dict, dictSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:1673:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cctx->blockState.prevCBlock, &cdict->cBlockState, sizeof(cdict->cBlockState));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:1706:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cctx->blockState.matchState.hashTable,
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:1709:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cctx->blockState.matchState.chainTable,
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:1734:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(cctx->blockState.prevCBlock, &cdict->cBlockState, sizeof(cdict->cBlockState));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:1778:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&dstCCtx->customMem, &srcCCtx->customMem, sizeof(ZSTD_customMem));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:1800:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstCCtx->blockState.matchState.hashTable,
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:1803:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstCCtx->blockState.matchState.chainTable,
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:1806:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstCCtx->blockState.matchState.hashTable3,
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:1824:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstCCtx->blockState.prevCBlock, srcCCtx->blockState.prevCBlock, sizeof(*srcCCtx->blockState.prevCBlock));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:2026:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&nextEntropy->fse, &prevEntropy->fse, sizeof(prevEntropy->fse));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:2229:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(seqStorePtr->lit, anchor, lastLLSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress.c:3367:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(internalBuffer, dictBuffer, dictSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_internal.h:375:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((BYTE*)dst + ZSTD_blockHeaderSize, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_literals.c:38:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ostart + flSize, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_literals.c:89:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nextHuf, prevHuf, sizeof(*prevHuf));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_literals.c:121:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nextHuf, prevHuf, sizeof(*prevHuf));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_literals.c:125:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nextHuf, prevHuf, sizeof(*prevHuf));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_sequences.c:242:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nextCTable, prevCTable, prevCTableSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_superblock.c:82:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nextHuf, prevHuf, sizeof(*prevHuf));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_superblock.c:140:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nextHuf, prevHuf, sizeof(*prevHuf));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_superblock.c:147:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nextHuf, prevHuf, sizeof(*prevHuf));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_superblock.c:351:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, hufMetadata->hufDesBuffer, hufMetadata->hufDesSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_superblock.c:477:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, fseMetadata->fseTablesBuffer, fseMetadata->fseTablesSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_superblock.c:793:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&nextCBlock->entropy.huf, &prevCBlock->entropy.huf, sizeof(prevCBlock->entropy.huf));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_compress_superblock.c:816:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nextCBlock->rep, &rep, sizeof(rep));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_opt.c:928:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(opt[cur].rep, &newReps, sizeof(repcodes_t));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_opt.c:930:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(opt[cur].rep, opt[cur - 1].rep, sizeof(repcodes_t));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_opt.c:1013:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rep, &reps, sizeof(reps));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstd_opt.c:1015:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rep, opt[cur].rep, sizeof(repcodes_t));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstdmt_compress.c:238:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newBuffer.start, buffer.start, buffer.capacity);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstdmt_compress.c:1743:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char*)output->dst + output->pos,
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/zstdmt_compress.c:2075:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char*)mtctx->inBuff.buffer.start + mtctx->inBuff.filled, (const char*)input->src + input->pos, syncPoint.toLoad);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/huf_decompress.c:148:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(DTable, &dtd, sizeof(dtd));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/huf_decompress.c:647:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(DTable, &dtd, sizeof(dtd));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/huf_decompress.c:663:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 2);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/huf_decompress.c:672:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 1);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/huf_decompress.c:1065:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (cSrcSize == dstSize) { memcpy(dst, cSrc, dstSize); return dstSize; } /* not compressed */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/huf_decompress.c:1088:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (cSrcSize == dstSize) { memcpy(dst, cSrc, dstSize); return dstSize; } /* not compressed */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/huf_decompress.c:1148:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (cSrcSize == dstSize) { memcpy(dst, cSrc, dstSize); return dstSize; } /* not compressed */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_ddict.c:134:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(internalBuffer, dict, dictSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_ddict.c:201:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ddict+1, dict, dictSize); /* local copy */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress.c:182:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstDCtx, srcDCtx, toCopy); /* no need to copy workspace */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress.c:587:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress.c:902:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->headerBuffer, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress.c:909:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->headerBuffer, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress.c:916:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->headerBuffer + (dctx->headerSize - srcSize), src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress.c:1022:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->headerBuffer + (ZSTD_SKIPPABLEHEADERSIZE - srcSize), src, srcSize); /* complete skippable header */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress.c:1173:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->entropy.rep, repStartValue, sizeof(repStartValue)); /* initial repcodes */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress.c:1666:29: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zds->headerBuffer + zds->lhSize, ip, remainingInput);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress.c:1673:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zds->headerBuffer + zds->lhSize, ip, toLoad); zds->lhSize = hSize; ip += toLoad;
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress_block.c:47:54: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTD_copy4(void* dst, const void* src) { memcpy(dst, src, 4); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress_block.c:194:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->litBuffer, istart+lhSize, litSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress_block.c:399:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dt, &DTableH, sizeof(DTableH));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress_block.c:1107:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, litPtr, lastLLSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/decompress/zstd_decompress_block.c:1212:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, litPtr, lastLLSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/cover.c:709:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dict + tail, ctx->samples + segment.begin, segmentSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/cover.c:923:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(best->dict, dict, dictSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/cover.c:968:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(largestDictbuffer, customDictContent, dictContentSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/cover.c:1002:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(candidateDictBuffer, largestDictbuffer, largestDict);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/cover.c:1077:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(freqs, ctx->freqs, ctx->suffixSize * sizeof(U32));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/cover.c:1231:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dictBuffer, best.dict, dictSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/fastcover.c:439:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dict + tail, ctx->samples + segment.begin, segmentSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/fastcover.c:483:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(freqs, ctx->freqs, ((U64)1 << ctx->f) * sizeof(U32));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/fastcover.c:751:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dictBuffer, best.dict, dictSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/zdict.c:931:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dictBuffer, header, hSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/zdict.c:1069:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ptr, (const char*)samplesBuffer+dictList[u].pos, l);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/dictBuilder/zdict.c:1098:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(newBuff, samplesBuffer, sBuffSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v01.c:1361:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTD_copy4(void* dst, const void* src) { memcpy(dst, src, 4); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v01.c:1363:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTD_copy8(void* dst, const void* src) { memcpy(dst, src, 8); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v01.c:1487:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v01.c:1797:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(saved, endMatch, qutt);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v01.c:1827:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (overlapRisk) memcpy(endMatch, saved, qutt);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:189:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:1158:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dt, &DTableH, sizeof(DTableH)); /* memcpy(), to avoid strict aliasing warnings */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:2017:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 2);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:2025:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 1);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:2364:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, ds+val, sizeof(HUF_DSeqX6));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:2376:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, ds+val, length);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:2380:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, ds+val, maxL);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:2589:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (cSrcSize == dstSize) { memcpy(dst, cSrc, dstSize); return dstSize; } /* not compressed */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:2745:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTD_copy4(void* dst, const void* src) { memcpy(dst, src, 4); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:2747:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTD_copy8(void* dst, const void* src) { memcpy(dst, src, 8); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:2840:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v02.c:2896:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->litBuffer, istart, litSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.c:190:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.c:1159:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dt, &DTableH, sizeof(DTableH));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.c:2014:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 2);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.c:2022:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 1);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.c:2229:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (cSrcSize == dstSize) { memcpy(dst, cSrc, dstSize); return dstSize; } /* not compressed */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.c:2386:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTD_copy4(void* dst, const void* src) { memcpy(dst, src, 4); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.c:2388:56: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTD_copy8(void* dst, const void* src) { memcpy(dst, src, 8); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.c:2481:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v03.c:2537:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->litBuffer, istart, litSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:161:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:389:54: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTD_copy8(void* dst, const void* src) { memcpy(dst, src, 8); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:1136:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dt, &DTableH, sizeof(DTableH));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:2164:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 2);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:2172:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 1);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:2376:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (cSrcSize == dstSize) { memcpy(dst, cSrc, dstSize); return dstSize; } /* not compressed */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:2476:54: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTD_copy4(void* dst, const void* src) { memcpy(dst, src, 4); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:2607:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:2662:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->litBuffer, istart, litSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:3014:35: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (op != litPtr) memcpy(op, litPtr, lastLLSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:3210:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ctx->headerBuffer, src, ZSTD_frameHeaderSize_min);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:3367:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char headerBuffer[ZSTD_frameHeaderSize_max];
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:3415:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, length);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:3448:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zbc->headerBuffer+zbc->hPos, src, *srcSizePtr);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v04.c:3494:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zbc->inBuff, zbc->headerBuffer, zbc->hPos);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:184:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:189:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:194:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:502:57: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTDv05_copy8(void* dst, const void* src) { memcpy(dst, src, 8); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:1262:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dt, &DTableH, sizeof(DTableH));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:2278:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 2);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:2286:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 1);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:2621:57: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTDv05_copy4(void* dst, const void* src) { memcpy(dst, src, 4); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:2697:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstDCtx, srcDCtx,
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:2855:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:2956:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->litBuffer, istart+lhSize, litSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:3366:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, litPtr, lastLLSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:3597:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->headerBuffer, src, ZSTDv05_frameHeaderSize_min);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:3797:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, length);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:3845:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char headerBuffer[ZSTDv05_frameHeaderSize_max];
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:3910:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zbc->headerBuffer+zbc->hPos, src, *srcSizePtr);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v05.c:3957:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zbc->inBuff, zbc->headerBuffer, zbc->hPos);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:182:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:537:57: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTDv06_copy8(void* dst, const void* src) { memcpy(dst, src, 8); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:1486:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dt, &DTableH, sizeof(DTableH));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:2407:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 2);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:2415:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 1);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:2653:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (cSrcSize == dstSize) { memcpy(dst, cSrc, dstSize); return dstSize; } /* not compressed */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:2795:57: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTDv06_copy4(void* dst, const void* src) { memcpy(dst, src, 4); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:2858:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstDCtx, srcDCtx,
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:3047:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:3144:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->litBuffer, istart+lhSize, litSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:3505:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, litPtr, lastLLSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:3738:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->headerBuffer, src, ZSTDv06_frameHeaderSize_min);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:3748:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->headerBuffer + ZSTDv06_frameHeaderSize_min, src, dctx->expected);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:4006:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, length);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:4038:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zbd->headerBuffer + zbd->lhSize, ip, iend-ip);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v06.c:4043:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zbd->headerBuffer + zbd->lhSize, ip, toLoad); zbd->lhSize = hSize; ip += toLoad;
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:342:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(memPtr, &value, sizeof(value));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:1506:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dt, &DTableH, sizeof(DTableH));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:1797:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(DTable, &dtd, sizeof(dtd));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:2210:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(DTable, &dtd, sizeof(dtd));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:2218:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 2);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:2226:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, dt+val, 1);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:2526:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (cSrcSize == dstSize) { memcpy(dst, cSrc, dstSize); return dstSize; } /* not compressed */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:2542:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (cSrcSize == dstSize) { memcpy(dst, cSrc, dstSize); return dstSize; } /* not compressed */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:2568:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if (cSrcSize == dstSize) { memcpy(dst, cSrc, dstSize); return dstSize; } /* not compressed */
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:2771:57: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTDv07_copy8(void* dst, const void* src) { memcpy(dst, src, 8); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:2919:57: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static void ZSTDv07_copy4(void* dst, const void* src) { memcpy(dst, src, 4); }
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:2989:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&dctx->customMem, &customMem, sizeof(ZSTDv07_customMem));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:3008:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dstDCtx, srcDCtx,
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:3276:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, srcSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:3374:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->litBuffer, istart+lhSize, litSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:3720:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(op, litPtr, lastLLSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:3996:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->headerBuffer, src, ZSTDv07_frameHeaderSize_min);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:4003:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->headerBuffer, src, ZSTDv07_frameHeaderSize_min);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:4013:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dctx->headerBuffer + ZSTDv07_frameHeaderSize_min, src, dctx->expected);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:4068:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ memcpy(dctx->headerBuffer + ZSTDv07_frameHeaderSize_min, src, dctx->expected);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:4205:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dictContent, dict, dictSize);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:4350:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&zbd->customMem, &customMem, sizeof(ZSTDv07_customMem));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:4388:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, length);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:4420:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zbd->headerBuffer + zbd->lhSize, ip, iend-ip);
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/legacy/zstd_v07.c:4425:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(zbd->headerBuffer + zbd->lhSize, ip, toLoad); zbd->lhSize = hSize; ip += toLoad;
data/borgbackup-1.1.14/src/borg/cache_sync/cache_sync.c:133:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(new_buf, ctx->buf + ctx->head, ctx->tail - ctx->head);
data/borgbackup-1.1.14/src/borg/cache_sync/cache_sync.c:143:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ctx->buf + ctx->tail, data, length);
data/borgbackup-1.1.14/src/borg/cache_sync/sysdep.h:178:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { uint16_t val = _msgpack_be16(num); memcpy(to, &val, 2); } while(0)
data/borgbackup-1.1.14/src/borg/cache_sync/sysdep.h:180:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { uint32_t val = _msgpack_be32(num); memcpy(to, &val, 4); } while(0)
data/borgbackup-1.1.14/src/borg/cache_sync/sysdep.h:182:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { uint64_t val = _msgpack_be64(num); memcpy(to, &val, 8); } while(0)
data/borgbackup-1.1.14/src/borg/cache_sync/unpack.h:105:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key[32];
data/borgbackup-1.1.14/src/borg/cache_sync/unpack.h:397:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(u->current.key, p, 32);
data/borgbackup-1.1.14/src/borg/chunker.c:737:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/chunker.c:5113:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/chunker.c:5117:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/compress.c:736:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/compress.c:15661:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/compress.c:15665:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:740:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:841:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char iv_orig[16];
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:4496:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char __pyx_v_md[32];
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:4914:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char __pyx_v_md[32];
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:5121:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char __pyx_v_md[16];
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:8468:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char warning[200];
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:10437:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:10441:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/hashindex.c:740:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/hashindex.c:4045:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void)(memcpy(__pyx_v_data.hash, PyBytes_AS_STRING(__pyx_t_2), 16));
data/borgbackup-1.1.14/src/borg/hashindex.c:12820:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char warning[200];
data/borgbackup-1.1.14/src/borg/hashindex.c:14043:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/hashindex.c:14047:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/item.c:734:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/item.c:11715:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)result_udata + char_pos * result_ukind, udata, (size_t) (ulength * result_ukind));
data/borgbackup-1.1.14/src/borg/item.c:14713:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/item.c:14717:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/platform/darwin.c:735:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/platform/darwin.c:5277:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/platform/darwin.c:5281:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/platform/freebsd.c:738:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/platform/freebsd.c:4648:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/platform/freebsd.c:4652:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/platform/linux.c:743:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/platform/linux.c:11877:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/platform/linux.c:11881:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/platform/posix.c:735:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/platform/posix.c:4127:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/platform/posix.c:4131:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/src/borg/platform/syncfilerange.c:736:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii_chars[128];
data/borgbackup-1.1.14/src/borg/platform/syncfilerange.c:2221:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ctversion[4], rtversion[4];
data/borgbackup-1.1.14/src/borg/platform/syncfilerange.c:2225:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[200];
data/borgbackup-1.1.14/scripts/fuzz-cache-sync/main.c:20:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
len = read(0, buf, BUFSZ);
data/borgbackup-1.1.14/src/borg/_chunker.c:170:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(c->fh, c->data + c->position + c->remaining, n);
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:663:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:784:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/algorithms/checksums.c:5756:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:676:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:797:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_packer.cpp:9655:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:677:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:798:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/algorithms/msgpack/_unpacker.cpp:9688:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/algorithms/zstd/lib/compress/fse_compress.c:489:9: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getchar();
data/borgbackup-1.1.14/src/borg/chunker.c:661:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/chunker.c:782:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/chunker.c:5161:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/compress.c:660:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/compress.c:781:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/compress.c:15709:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:664:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:785:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/crypto/low_level.c:10485:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/hashindex.c:664:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/hashindex.c:785:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/hashindex.c:9117:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__pyx_t_3 = __Pyx_decode_c_string(__pyx_v_error, 0, strlen(__pyx_v_error), NULL, NULL, PyUnicode_DecodeASCII); if (unlikely(!__pyx_t_3)) __PYX_ERR(0, 530, __pyx_L1_error)
data/borgbackup-1.1.14/src/borg/hashindex.c:12613:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t slen = strlen(cstring);
data/borgbackup-1.1.14/src/borg/hashindex.c:14091:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/item.c:658:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/item.c:779:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/item.c:14761:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/platform/darwin.c:659:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/platform/darwin.c:780:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/platform/darwin.c:5325:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/platform/freebsd.c:662:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/platform/freebsd.c:783:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/platform/freebsd.c:4696:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/platform/linux.c:667:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/platform/linux.c:788:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/platform/linux.c:2221:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__pyx_t_3 = __Pyx_decode_c_string(__pyx_t_12, 0, strlen(__pyx_t_12), NULL, NULL, NULL); if (unlikely(!__pyx_t_3)) __PYX_ERR(0, 93, __pyx_L13_error)
data/borgbackup-1.1.14/src/borg/platform/linux.c:9284:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t slen = strlen(cstring);
data/borgbackup-1.1.14/src/borg/platform/linux.c:11925:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/platform/posix.c:659:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/platform/posix.c:780:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/platform/posix.c:4175:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
data/borgbackup-1.1.14/src/borg/platform/syncfilerange.c:660:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define __Pyx_PyByteArray_FromString(s) PyByteArray_FromStringAndSize((const char*)s, strlen((const char*)s))
data/borgbackup-1.1.14/src/borg/platform/syncfilerange.c:781:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
__PYX_DEFAULT_STRING_ENCODING = (char*) malloc(strlen(default_encoding_c) + 1);
data/borgbackup-1.1.14/src/borg/platform/syncfilerange.c:2269:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return __Pyx_PyUnicode_FromStringAndSize(c_str, (Py_ssize_t)strlen(c_str));
ANALYSIS SUMMARY:
Hits = 467
Lines analyzed = 189149 in approximately 5.08 seconds (37222 lines/second)
Physical Source Lines of Code (SLOC) = 138109
Hits@level = [0] 10 [1] 46 [2] 364 [3] 37 [4] 20 [5] 0
Hits@level+ = [0+] 477 [1+] 467 [2+] 421 [3+] 57 [4+] 20 [5+] 0
Hits/KSLOC@level+ = [0+] 3.45379 [1+] 3.38139 [2+] 3.04832 [3+] 0.412717 [4+] 0.144813 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.