Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/coinor-symphony-5.6.16+repack1/include/sym_pack_array.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_lp_params.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_dg_u.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_proccomm.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_win32_time.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_primal_heuristics.h Examining data/coinor-symphony-5.6.16+repack1/include/symphony_api.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_dg.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_cg_params.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_dg_params.h Examining data/coinor-symphony-5.6.16+repack1/include/symphony.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_master_params.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_lp_u.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_proto.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_types.h Examining data/coinor-symphony-5.6.16+repack1/include/SymConfig.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_prep.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_messages.h Examining data/coinor-symphony-5.6.16+repack1/include/config_sym_default.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_prep_params.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_lp.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_constants.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_cg_u.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_master_u.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_tm.h Examining data/coinor-symphony-5.6.16+repack1/include/config_default.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_tm_params.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_macros.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_cp_u.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_pack_cut.h Examining data/coinor-symphony-5.6.16+repack1/include/decomp/decomp_lp.h Examining data/coinor-symphony-5.6.16+repack1/include/decomp/sp_params.h Examining data/coinor-symphony-5.6.16+repack1/include/decomp/decomp.h Examining data/coinor-symphony-5.6.16+repack1/include/decomp/decomp_types.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_cg.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_master.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_cp.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_timemeas.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_lp_solver.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_cp_params.h Examining data/coinor-symphony-5.6.16+repack1/include/sym_qsort.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/network.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/small_graph.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_cp.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_types.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_messages.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_io.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/ins_routines.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/lb_types.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/route_heur.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/sweep.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/mst_ins_rout.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/heur_types.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/tsp_ins_rout.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/binomial.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/heur_routines.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/receive_rout.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/savings2.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/savings3.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/lb_params.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/ins_routines2.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/start_heurs.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/collect_solutions.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/cluster_heur.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/exchange_heur.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/heur_params.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/qsort.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/savings.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/vrp_heurs.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/s_path.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/heurs/lower_bound.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_lp.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_common_types.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/compute_cost.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_lp_params.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/min_cut/min_cut.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/min_cut/capforest.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_dg_functions.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_master_functions.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_macros.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_const.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_cg.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/decomp/decomp_lower_bound.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/decomp/my_decomp.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/decomp/ind_sort.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/decomp/sol_pool_user.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/decomp/decomp_user.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_dg.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_cg_params.h Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/exchange.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/sp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/savings_rout.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/sweep.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_fi.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst_ins_rout.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/near_cluster.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/farnear_ins.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/farthest_ins.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/binomial.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/heur_routines.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ni.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/savings2.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/savings3.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/exchange2.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/savings_rout2.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/savings_rout3.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/heur_main.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/qsort.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/nearest_ins.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/savings.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_fini.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/s_path.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/ind_sort.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_user.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_lower_bound.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/tsp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/biconnected.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/MinCut/capforest.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/MinCut/min_cut.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/shrink.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Common/vrp_macros.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Common/compute_cost.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Common/network.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp_branch.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/small_graph.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_master_functions.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_main.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/cluster_heur.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/collect_solutions.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/exchange_heur.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/receive_rout.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/lower_bound.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/route_heur.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/start_heurs.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_master.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_functions.c Examining data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_network.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MATCH/include/user.h Examining data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/CutGen/user_cg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/CutPool/user_cp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/LP/user_lp_branch.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/LP/user_lp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_master.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_main.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/DrawGraph/user_dg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MPP/include/mpp.h Examining data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/LP/mpp_lp_branch.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/LP/mpp_lp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_main.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/DrawGraph/mpp_dg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/CutGen/mpp_cg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/CutPool/mpp_cp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_cg_functions.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_lp_functions.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_master_functions.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_macros.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_types.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_common.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_cg.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_cg_clique.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_lp.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_cg_params.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_constants.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_lp_params.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Common/spp_common.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_branch.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master_functions.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_main.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/DrawGraph/spp_dg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_clique.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutPool/spp_cp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/USER/include/user.h Examining data/coinor-symphony-5.6.16+repack1/Applications/USER/src/DrawGraph/user_dg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/USER/src/CutGen/user_cg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/USER/src/CutPool/user_cp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/USER/src/LP/user_lp_branch.c Examining data/coinor-symphony-5.6.16+repack1/Applications/USER/src/LP/user_lp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c Examining data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_main.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_cp_params.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/small_graph.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/network.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_io.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_messages.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_lp.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_common_types.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_lp_params.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_dg_functions.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/compute_cost.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_master_functions.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_macros.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_const.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_cg.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_dg.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_cg_params.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_cp.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_types.h Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Common/compute_cost.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Common/cnrp_macros.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Common/network.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/LP/cnrp_lp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/LP/cnrp_lp_branch.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_master_functions.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_main.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/small_graph.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_master.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_functions.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_network.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/tsp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/cnrp_cg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/biconnected.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/shrink.c Examining data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutPool/cnrp_cp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp_constants.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp_master_functions.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp_macros.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp_types.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp_common.h Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/CutGen/spp_cg.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/CutPool/spp_cp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Common/spp_common.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/LP/spp_lp.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/LP/spp_lp_branch.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_main.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master_functions.c Examining data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/DrawGraph/spp_dg.c Examining data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c Examining data/coinor-symphony-5.6.16+repack1/src/TreeManager/treemanager.c Examining data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_sp.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_rowfunc.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_varfunc.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_pseudo_branch.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c Examining data/coinor-symphony-5.6.16+repack1/src/LP/lp_free.c Examining data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_sr.c Examining data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c Examining data/coinor-symphony-5.6.16+repack1/src/Master/master.c Examining data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c Examining data/coinor-symphony-5.6.16+repack1/src/Master/master_wrapper.c Examining data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c Examining data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c Parsing failed to find end of parameter list; semicolon terminated it in ("app_name [ -f parameter_file_name ] \n\t" #else printf("symphony [ -FL file ] [ -f parameter_file_name ] \n\t" #endif "[ -hd ] [-a 0/1] [-b 0/1 ] [-s cands] [-l 0/1] [ -q 0/1 ] [ -r 0/1]\n\t" Examining data/coinor-symphony-5.6.16+repack1/src/Master/main.c Examining data/coinor-symphony-5.6.16+repack1/src/DrawGraph/IGD_1.0/Simple_version/window.c Examining data/coinor-symphony-5.6.16+repack1/src/DrawGraph/IGD_1.0/Simple_version/make_graph.c Examining data/coinor-symphony-5.6.16+repack1/src/DrawGraph/tester.c Examining data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c Examining data/coinor-symphony-5.6.16+repack1/src/OsiSym/OsiSymSolverInterface.cpp Examining data/coinor-symphony-5.6.16+repack1/src/OsiSym/SymWarmStart.hpp Examining data/coinor-symphony-5.6.16+repack1/src/OsiSym/OsiSymSolverInterface.hpp Examining data/coinor-symphony-5.6.16+repack1/src/OsiSym/OsiSymSolverParameters.hpp Examining data/coinor-symphony-5.6.16+repack1/src/OsiSym/SymWarmStart.cpp Examining data/coinor-symphony-5.6.16+repack1/src/CutGen/Decomp/decomp_lp.c Examining data/coinor-symphony-5.6.16+repack1/src/CutGen/Decomp/decomp.c Examining data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_proccomm.c Examining data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_wrapper.c Examining data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_func.c Examining data/coinor-symphony-5.6.16+repack1/src/CutGen/cut_gen.c Examining data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_proccomm.c Examining data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_wrapper.c Examining data/coinor-symphony-5.6.16+repack1/src/CutPool/cut_pool.c Examining data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_func.c Examining data/coinor-symphony-5.6.16+repack1/src/Common/pack_cut.c Examining data/coinor-symphony-5.6.16+repack1/src/Common/pack_array.c Examining data/coinor-symphony-5.6.16+repack1/src/Common/proccomm.c Examining data/coinor-symphony-5.6.16+repack1/src/Common/sym_qsort.c Examining data/coinor-symphony-5.6.16+repack1/src/Common/timemeas.c Examining data/coinor-symphony-5.6.16+repack1/Examples/milp2.c Examining data/coinor-symphony-5.6.16+repack1/Examples/milp3.c Examining data/coinor-symphony-5.6.16+repack1/Examples/warm_start1.c Examining data/coinor-symphony-5.6.16+repack1/Examples/warm_start2.c Examining data/coinor-symphony-5.6.16+repack1/Examples/warm_start3.c Examining data/coinor-symphony-5.6.16+repack1/Examples/FLOPC++/tap.cpp Examining data/coinor-symphony-5.6.16+repack1/Examples/sensitivity.c Examining data/coinor-symphony-5.6.16+repack1/Examples/milpOsi.c Examining data/coinor-symphony-5.6.16+repack1/Examples/bicriteria.c Examining data/coinor-symphony-5.6.16+repack1/Examples/milpOsi2.c Examining data/coinor-symphony-5.6.16+repack1/Examples/milp.c Examining data/coinor-symphony-5.6.16+repack1/test/unitTestSym.cpp Examining data/coinor-symphony-5.6.16+repack1/test/OsiSymSolverInterfaceTest.cpp FINAL RESULTS: data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:167:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line1,"%s",key); /*read in next keyword*/ data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:183:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(line, strchr(line1, ':')+1); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:189:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. if (!sscanf(line, "%s", cnrp->name)) data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:195:2: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", tmp); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:268:2: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", tmp); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:277:2: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", tmp); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:286:2: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", tmp); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:505:2: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", tmp); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:709:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:759:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:764:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(par->small_graph_file, value); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:867:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s%s", key, value1, value2); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:901:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", value); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_main.c:512:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(input_dir, cnrp->par.test_dir); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_main.c:520:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(infile, "%s%s%s", input_dir, "/", input_files[i]); data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_main.c:205:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(input_dir, env->par.test_dir); data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_main.c:213:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(infile, "%s%s%s", input_dir, "/", input_files[i]); data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_master.c:103:3: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:162:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(output_file, "output.%s", argv[6]); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:381:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line,"%s", key); /*read in next keyword*/ data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:385:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line,"%s",key); /*read in next keyword*/ data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:389:5: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line,"%s",key); /*read in next keyword*/ data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:392:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(line1, strchr(line, ':')+1); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:405:8: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line,"%s",key); /*read in next keyword*/ data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:413:4: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line,"%s",key); /*read in next keyword*/ data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:417:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(line1, strchr(line, ':')+1); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:432:4: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line,"%s",key); /*read in next keyword*/ data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:436:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(line1, strchr(line, ':')+1); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:509:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line,"%s", key); /*read in next keyword*/ data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_main.c:116:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(input_dir, mpp->par.test_dir); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_main.c:124:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(infile, "%s%s%s", input_dir, "/", input_files[i]); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_main.c:125:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mpp->par.infile, infile); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:94:3: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:171:4: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:181:4: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:191:4: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_macros.h:22:13: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. (void) fprintf(stderr, \ data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_macros.h:29:13: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. (void) fprintf(stderr, \ data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_macros.h:36:13: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. (void) fprintf(stderr, \ data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Common/spp_common.c:248:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fname, "%s_%i", filename, counter); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Common/spp_common.c:251:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fname, "%s_%i.%s", filename, counter, dot_pos+1); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_main.c:123:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(input_dir, spp->par->test_dir); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_main.c:132:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(infile, "%s%s%s", input_dir, "/", input_files[i]); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_main.c:133:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(spp->par->infile, infile); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master_functions.c:76:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp_macros.h:22:13: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. (void) fprintf(stderr, \ data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp_macros.h:29:13: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. (void) fprintf(stderr, \ data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp_macros.h:36:13: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. (void) fprintf(stderr, \ data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Common/spp_common.c:248:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fname, "%s_%i", filename, counter); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Common/spp_common.c:251:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fname, "%s_%i.%s", filename, counter, dot_pos+1); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_main.c:118:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(input_dir, spp->par->test_dir); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_main.c:127:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(infile, "%s%s%s", input_dir, "/", input_files[i]); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_main.c:128:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(spp->par->infile, infile); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master_functions.c:57:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c:108:3: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c:177:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:605:6: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf("Calling decomp: density %f , depot degree %d, obj %f, ", data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:607:6: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf("level %d \n", p->cur_sol.xlevel); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:169:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line1,"%s",key); /*read in next keyword*/ data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:185:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(line, strchr(line1, ':')+1); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:191:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. if (!sscanf(line, "%s", vrp->name)) data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:196:2: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", tmp); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:234:2: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", tmp); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:243:2: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", tmp); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:252:2: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", tmp); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:416:2: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", tmp); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:554:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:605:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:610:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(par->small_graph_file, value); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:730:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(par->executables.winprog, value); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:735:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(par->executables.heuristics, value); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:830:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:857:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s", value); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:955:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line,"%s%s%s", key, v0, v1); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_main.c:155:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(input_dir, vrp->par.test_dir); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_main.c:162:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(infile, "%s%s%s%s", input_dir, "/", input_files[i], ".vrp"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_main.c:163:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(sgfile, "%s%s%s", "./small_graph/", input_files[i], ".sg"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_main.c:166:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(vrp->par.infile, infile); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_main.c:167:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(vrp->par.small_graph_file, sgfile); data/coinor-symphony-5.6.16+repack1/include/sym_macros.h:102:5: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. if (sscanf(value, "%s", par) != 1){ \ data/coinor-symphony-5.6.16+repack1/include/sym_macros.h:175:19: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. if ((a) > (b)) printf c data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_func.c:336:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %i %i %i", str, &cp->allocated_cut_num, &cp->cut_num, data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_func.c:375:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %i %i", str, &cp->cut_num, &cp->allocated_cut_num); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/IGD_1.0/Simple_version/make_graph.c:18:3: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f2, "%s", key); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/IGD_1.0/Simple_version/make_graph.c:26:3: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f2, "%s", key); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/IGD_1.0/Simple_version/window.c:75:11: [4] (shell) execlp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if (execlp(cmd, cmd, NULL) < 0) data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:19:9: [4] (shell) execlp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define execlp _execlp data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:60:23: [4] (format) vprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. if (echo_commands) vprintf(format, ap); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:63:8: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. i = vfprintf(write_to, format, ap); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:118:11: [4] (shell) execlp: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. if (execlp(cmd, cmd, NULL) < 0) data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:802:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(g->nodes[k].weight, new_weight); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:804:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(old_weight, g->nodes[k].weight); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:839:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(g->nodes[k].label, new_label); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:859:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(g->nodes[k].dash, new_dash); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:978:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(g->edges[k].weight, new_weight); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:980:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(old_weight, g->edges[k].weight); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1016:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(g->edges[k].dash, new_dash); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1165:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nod->dash, win->desc.node_dash); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1197:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(edg->dash, win->desc.edge_dash); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1449:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(win->desc.node_dash, par->node_dash); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1450:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(win->desc.edge_dash, par->edge_dash); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1457:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(win->desc.nodelabel_font, par->nodelabel_font); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1458:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(win->desc.nodeweight_font, par->nodeweight_font); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1459:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(win->desc.edgeweight_font, par->edgeweight_font); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1553:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(win->name, name); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1554:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(win->title, title); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:839:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s %i", "branched", n->bc_index + 1); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:841:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s %i", reason, 0); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:843:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s %i", reason, n->parent->bc_index + 1); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:857:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s %c %f %f %i", reason, branch_dir, data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:31:19: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. if ((a) > (b)) printf c data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3776:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s%s%s", fname, ".","MPS"); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3833:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s%s%s", fname, ".","LPT"); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:224:8: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s%s", args[0], args[1], args[2]); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:236:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(args[1], line); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:261:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ext, args[1] + last_dot + 1); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:276:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ext, line); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:295:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(args[2], line); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:355:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", args[1], args[2]); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:485:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(args[2], line); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:534:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", args[1], args[2]); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:552:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(args[2], line); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:574:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(args[2],"%s%s", param, value); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:588:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(args[2], line); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:591:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(args[0], "%s %s", args[1], args[2]); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:798:3: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(rl_line_buffer, "%s%s", key[0], key[1]); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:883:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (r, s); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:902:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(temp_inp, input); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:903:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(input, "%s%s", pwd->pw_dir, &temp_inp[1]); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4982:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %s %s", str, str, str, str); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4983:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &ws->phase); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4984:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &ws->lb); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4985:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &ch); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4987:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &ws->ub); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4990:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %s %s", str, str, str, str); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4991:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &ws->cut_num); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4992:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &temp); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4999:6: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %i %s", str, &num, str); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5000:6: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &cut->size); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5002:6: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s", str, str); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5008:6: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &cut->rhs); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5009:6: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &cut->range); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5010:6: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &ch); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5012:6: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %c", str, str, &cut->sense); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5013:6: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &ch); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5015:6: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &ch); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5017:6: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &cut->name); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5024:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %s %s", str, str, str, str); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5025:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &stat.root_lb); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5026:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &stat.cuts_in_pool); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5027:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &stat.max_depth); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5028:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &stat.chains); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5029:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &stat.diving_halts); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5030:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &stat.tree_size); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5031:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &stat.created); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5032:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &stat.analyzed); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5033:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &stat.leaves_before_trimming); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5034:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &stat.leaves_after_trimming); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5035:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &stat.vars_not_priced); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5036:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &ch); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5042:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %s %s", str, str, str, str); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5043:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.communication); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5044:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.lp); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5045:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.separation); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5046:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.fixing); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5047:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.pricing); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5048:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.strong_branching); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5049:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.wall_clock_lp); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5050:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.ramp_up_tm); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5051:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.ramp_up_lp); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5052:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.ramp_down_time); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5053:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.idle_diving); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5054:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.idle_node); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5055:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.idle_names); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5056:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.idle_cuts); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5057:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.start_node); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5058:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &compT.cut_pool); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5063:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %s %s", str, str, str, str); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5155:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(line, "%s %d", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5169:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(line, "%s %.30f", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:5183:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(line, "%s %s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:6632:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mps_dir, env->par.test_dir); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:6639:8: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(infile, "%s%s%s", mps_dir, "/", mps_files[i]); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:6641:8: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(infile, "%s%s%s", mps_dir, "\\", mps_files[i]); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1608:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &node->bc_index); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1609:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &node->bc_level); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1610:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &node->lower_bound); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1611:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &ch); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1613:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &node->lp); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1614:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &node->cg); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1615:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &node->cp); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1616:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %lf", str, str, &node->opt_estimate); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1619:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %c", str, str, &node->optimal_path); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1621:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &num); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1622:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i %i %i", str, str, &ch, &node->bobj.name, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1639:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &node->desc.nf_status); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1640:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i %i %i", str, str, &ch, &node->desc.uind.size, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1651:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i %i %i", str, str, &ch, &node->desc.not_fixed.size, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1663:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i %i %i", str, str, &ch, &node->desc.cutind.size, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1672:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &ch); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1674:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i %i", str, str, &ch, &node->desc.basis.basevars.size); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1693:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i %i", str, str, &ch, &node->desc.basis.extravars.size); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1711:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i %i", str, str, &ch, &node->desc.basis.baserows.size); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1728:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i %i", str, str, &ch, &node->desc.basis.extrarows.size); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1745:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f,"%s %s %i", str, str, &node->desc.desc_size); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1802:4: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line,"%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:41:4: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf("app_name [ -f parameter_file_name ] \n\t" data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:144:7: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line,"%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:161:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:186:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:211:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:230:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:235:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tm_par->pruned_node_file_name, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:260:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:265:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tm_par->warm_start_tree_file_name, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:271:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:276:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tm_par->warm_start_cut_file_name, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:288:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:293:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tm_par->vbc_emulation_file_name, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:325:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:330:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tm_par->tree_log_file_name, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:337:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:342:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tm_par->cut_log_file_name, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:354:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:359:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(cp_par->warm_start_file_name, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:370:6: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. sscanf(line, "%s%s", key, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:375:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(cp_par->log_file_name, value); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:786:8: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. if (sscanf(line, "%s%s", key, value) != 2) data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:82:7: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(file_name, "%s_prep", env->probname); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:591:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s%s%s", outfile, ".","MPS"); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:641:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s%s%s", outfile, ".","LPT"); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:5150:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(colnames[col_num], colnames[i]); data/coinor-symphony-5.6.16+repack1/src/OsiSym/OsiSymSolverInterface.cpp:714:4: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(fn, "%s%s%s", infile, ".", extension); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:735:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf (proc_file, "%d %s %s", &tmp_int, tmp_str, tmp_str); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1455:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (reason, "%s %i %i", "candidate", child->bc_index+1, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1471:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason,"%s %c", reason, branch_dir); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1473:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason,"%s %c %f", reason, branch_dir, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1828:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s", "infeasible"); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1829:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason,"%s %i", reason, node->bc_index+1); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1831:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s %i", reason, node->parent->bc_index+1); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1846:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason,"%s %c %s", reason, branch_dir, "\n"); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1849:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s", "fathomed"); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1850:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s %i", reason, node->bc_index+1); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1852:6: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason,"%s %i", reason, node->parent->bc_index+1); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1866:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason,"%s %c %s", reason, branch_dir, "\n"); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3149:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &node->bc_index); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3150:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &node->bc_level); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3151:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %lf", str1, str2, &node->lower_bound); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3152:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &tmp); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3155:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i\n", str1, str2, &tmp); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3158:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &parent); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3159:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %i %i %i", str1, &tmp, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3174:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &node->desc.nf_status); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3175:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i %i %i", str1, str2, &tmp, &node->desc.uind.size, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3183:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i %i %i", str1, str2, &tmp, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3192:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i %i %i", str1, str2, &tmp, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3200:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %i", str1, &tmp); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3202:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i %i", str1, str2, &tmp, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3219:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i %i", str1, str2, &tmp, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3236:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i %i", str1, str2, &tmp, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3253:7: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i %i", str1, str2, &tmp, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3392:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %i %i", str, &tm->cut_num, &tm->allocated_cut_num); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3483:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s", str1, str2); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3486:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %lf", str1, str2, &tm->lb); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3487:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %i", str1, &tm->phase); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3488:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %lf", str1, str2, &tm->stat.root_lb); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3489:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &tm->stat.max_depth); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3490:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %i", str1, &tm->stat.chains); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3491:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &tm->stat.diving_halts); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3492:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &tm->stat.tree_size); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3493:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &tm->stat.created); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3494:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &tm->stat.analyzed); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3495:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &tm->stat.leaves_before_trimming); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3496:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &tm->stat.leaves_after_trimming); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3497:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i", str1, str2, &tmp); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3499:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s", str1); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3500:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %lf", str1, &tm->comp_times.communication); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3501:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %lf", str1, &tm->comp_times.lp); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3502:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %lf", str1, &tm->comp_times.separation); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3503:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %lf", str1, &tm->comp_times.fixing); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3504:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %lf", str1, &tm->comp_times.pricing); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3505:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %lf", str1, &tm->comp_times.strong_branching); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3506:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %lf", str1, str2, &tm->comp_times.cut_pool); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3507:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %lf\n", str1, str2, &previous_elapsed_time); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3545:4: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanf(f, "%s %s %i %i", str1, str2, &base->varnum, &base->cutnum); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:817:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s %i", "branched", n->bc_index + 1); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:819:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s %i", reason, 0); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:821:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s %i", reason, n->parent->bc_index + 1); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:832:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(reason, "%s %c %f %f %i", reason, branch_dir, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/farnear_ins.c:65:26: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. if (start != FAR_INS) srand(start); /*if the start rule is random, then*\ data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/farthest_ins.c:57:25: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. if (start != FAR_INS) srand(start); /*if the start rule is random, then*\ data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/nearest_ins.c:57:25: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. if (start != FAR_INS) srand(start); /*if the start rule is random, then*\ data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/savings.c:65:25: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. if (start != FAR_INS) srand(start); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/savings2.c:78:25: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. if (start != FAR_INS) srand(start); data/coinor-symphony-5.6.16+repack1/include/sym_macros.h:22:23: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. #define SRANDOM(seed) srand(seed) data/coinor-symphony-5.6.16+repack1/include/sym_macros.h:25:23: [3] (random) srandom: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. #define SRANDOM(seed) srandom(seed) data/coinor-symphony-5.6.16+repack1/include/sym_macros.h:26:18: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. #define RANDOM() random() data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:24:12: [3] (random) srandom: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. extern int srandom PROTO((unsigned seed)); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:27:13: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. extern long random PROTO((void)); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_types.h:50:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infile[MAX_FILE_NAME_LENGTH + 1]; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_types.h:60:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char small_graph_file[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_types.h:67:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_dir[MAX_FILE_NAME_LENGTH +1]; /* Test files directory */ data/coinor-symphony-5.6.16+repack1/Applications/CNRP/include/cnrp_types.h:76:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[100]; /* the name of the problem instance */ data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/cnrp_cg.c:501:28: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. compnodes_copy = (int *) memcpy((char *)compnodes_copy, data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/cnrp_cg.c:712:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)new_demand, (char *)demand, vertnum*DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/shrink.c:305:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/shrink.c:606:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/shrink.c:914:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/shrink.c:957:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/shrink.c:1098:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/shrink.c:1141:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutGen/tsp.c:314:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cut.coef, (char *) (&cliquecount), ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/CutPool/cnrp_cp.c:479:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&cliquecount, coef, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_functions.c:116:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node_place[MAX_NAME_LENGTH +1] = {"node_placement"}; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_functions.c:254:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dashpattern[MAX_DASH_PATTERN_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_functions.c:255:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char weight[MAX_WEIGHT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_functions.c:257:7: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dashpattern, "4 3"); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_functions.c:273:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(weight, "%.3f", value[i]); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_network.c:243:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nod->weight, "%i", verts[i].snode_size); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_network.c:268:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ge->weight, "%.3f", ne->weight); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_network.c:269:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ge->dash, "4 3"); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/LP/cnrp_lp.c:1217:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&cliquecount, coef, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/LP/cnrp_lp.c:1463:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&cliquecount, coef, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:49:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char keywords[KEY_NUM][22] = { data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:95:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char nctypes[NCTYPE_NUM][14] = { data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:103:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char wtypes[WTYPE_NUM][9] = { data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:116:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char wformats[WFORMAT_NUM][20] = { data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:130:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char dtypes[DTYPE_NUM][14] = { data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:136:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[LENGTH], line1[LENGTH], key[30], tmp[80]; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:156:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(infile, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:633:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[LENGTH], key[50], value[50], c, tmp; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:702:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(filename, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:857:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value1[10], value2[10]; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_main.c:463:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char input_files[34][MAX_FILE_NAME_LENGTH +1] = {"A/A-n34-k5.vrp", data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_main.c:510:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(input_dir, "../../../VRPLIB"); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_master.c:113:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(p->par.dg_par.source_path, "/home/tkr/BlackBox/DrawGraph/IGD_1.0/"); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_master.c:222:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node_place[MAX_NAME_LENGTH] = {"node_placement"}; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_master.c:223:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char weight[5]; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_master.c:258:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(weight, "%i", (int)(cnrp->demand[i])); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_master.c:545:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)cnrp_cp->demand, (char *) cnrp->demand, cnrp->vertnum * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_master.c:673:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_NAME_LENGTH] = {"feas_solution"}; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_master.c:689:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_NAME_LENGTH] = {"feas_solution"}; data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_master_functions.c:71:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void)memcpy((char *)ed0, (char *)ed1, sizeof(edge_data)); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/small_graph.c:70:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(closenodes+pos), data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/small_graph.c:83:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(closenodes+pos), data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/small_graph.c:89:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(closenodes+pos), data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/small_graph.c:128:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((sgfile = fopen(cnrp->par.small_graph_file, "w")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/small_graph.c:155:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((sgfile = fopen(cnrp->par.small_graph_file, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/MATCH/include/user.h:31:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infile[MAX_FILE_NAME_LENGTH + 1]; data/coinor-symphony-5.6.16+repack1/Applications/MATCH/include/user.h:33:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_dir[MAX_FILE_NAME_LENGTH +1]; /* Test files directory */ data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_main.c:97:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(infile, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_main.c:192:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char input_files[1][MAX_FILE_NAME_LENGTH +1] = {"sample.mat"}; data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_master.c:82:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[50], key[50], value[50], c, tmp; data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_master.c:94:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(filename, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_master.c:167:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(infile, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:51:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infile[LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:61:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char output_file[50]; data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:148:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)env->mip->obj1, (char *)env->mip->obj, DSIZE*env->mip->n); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:163:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(output_file, "w"))){ data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:213:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:348:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[LENGTH], line1[LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:353:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:363:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(infile, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:490:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[LENGTH], line1[LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:495:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:500:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(infile, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:618:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[LENGTH], line1[LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:623:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:630:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(infile, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/MPP/include/mpp.h:30:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infile[MAX_FILE_NAME_LENGTH + 1]; data/coinor-symphony-5.6.16+repack1/Applications/MPP/include/mpp.h:32:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_dir[MAX_FILE_NAME_LENGTH +1]; /* Test files directory */ data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_main.c:103:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char input_files[2][MAX_FILE_NAME_LENGTH +1] = {"sample.mpp"}; data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:78:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[50], key[50], value[50], c, tmp; data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:85:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(filename, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:152:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAX_LINE_LENGTH], key[50], value[50]; data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:161:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(infile, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp.h:53:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infile[MAX_FILE_NAME_LENGTH + 1]; data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp.h:57:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char our_format_file[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp.h:60:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char matlab_format_file[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp.h:65:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_dir[MAX_FILE_NAME_LENGTH +1]; /* Test files directory */ data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_cg.h:124:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wname[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_cg.h:126:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lname[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/include/spp_lp.h:41:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char wname[MAX_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Common/spp_common.c:254:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(fname, "w")) == NULL) { data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:414:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mi + mb[i], matind + matbeg[col], len * sizeof(row_ind_type)); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:464:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(node_node, fgraph->node_node, nodenum * nodenum); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:689:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cuts[pos]->coef, new_cut->coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:703:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices, cuts[pos]->coef, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:723:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&oh_len, coef, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:724:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&hub_len, coef + ISIZE, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:726:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices, coef + 2 * ISIZE, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:727:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(coefs, coef + (2+coef_num) * ISIZE, hub_len * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:757:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices, cuts[pos]->coef, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:758:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(coefs, cuts[pos]->coef + coef_num * ISIZE, coef_num * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:795:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices, new_cut->coef, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:833:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef, indices, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:871:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(names, cut->coef, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:897:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cut->coef, names, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:926:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(itmp, indices, minind * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg.c:928:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices + (length - minind), itmp, minind * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_clique.c:407:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ctmp, &node_node[row[0] * nodenum], nodenum * CSIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_clique.c:564:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef, coef, cnt * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_clique.c:624:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef, (char *)indices, num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:126:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef, coef, oh_len * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:151:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef, coef, cnt * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:155:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef + cnt * ISIZE, dcoef, data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:212:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(saved_levels, level_of_node, nodenum * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:229:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(level_of_node, saved_levels, nodenum * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:237:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(level_of_node, saved_levels, nodenum * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:242:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(oh, path_u, (l+1) * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:602:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(oh_clone, oh, oh_len * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:740:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef, coef, oah_len * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:766:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef, coef, cnt * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/CutGen/spp_cg_functions.c:770:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef + cnt * ISIZE, dcoef, data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp.c:110:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) mip->matbeg, (char *) cm->matbeg, (cm->colnum+1) * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp.c:111:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) mip->obj, (char *) cm->obj, cm->colnum * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:126:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices, cut->coef, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:161:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices, cut->coef, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:162:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(coefs, cut->coef + coef_num * ISIZE, coef_num * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:212:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matind, cut->coef, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:227:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matind, cut->coef, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:228:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matval, cut->coef + coef_num * ISIZE, coef_num * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:233:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&oh_num, cut->coef, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:234:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&hub_num, cut->coef + ISIZE, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:238:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matind, cut->coef + 2 * ISIZE, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:241:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matval + oh_num, cut->coef + (2+coef_num)*ISIZE, hub_num * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:265:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices, cut->coef, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:289:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices, cut->coef, coef_num * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:290:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(coefs, cut->coef + coef_num * ISIZE, coef_num * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:372:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_coef, new_cut->coef, new_cut->size * CSIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:467:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cl_indices, cut->coef, cl_length * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:547:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indices + length, cl_indices, cl_length * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/LP/spp_lp_functions.c:553:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef, indices, length * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_main.c:108:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char input_files[1][MAX_FILE_NAME_LENGTH +1] = {"sample.spp"}; data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master.c:92:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[50], key[50], value[50], c, tmp; data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master_functions.c:38:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAX_LINE_LENGTH], key[50], value[50]; data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master_functions.c:68:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(filename, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master_functions.c:215:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(spp->par->infile, "r")) == NULL) data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master_functions.c:549:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)(new_matind + new_matbeg[i]), data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master_functions.c:578:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master_functions.c:625:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp.h:51:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infile[MAX_FILE_NAME_LENGTH + 1]; data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp.h:55:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char our_format_file[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp.h:58:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char matlab_format_file[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/SPP/include/spp.h:63:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_dir[MAX_FILE_NAME_LENGTH +1]; /* Test files directory */ data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Common/spp_common.c:254:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(fname, "w")) == NULL) { data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/LP/spp_lp.c:106:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) mip->matbeg, (char *) cm->matbeg, (cm->colnum+1) * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/LP/spp_lp.c:107:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) mip->obj, (char *) cm->obj, cm->colnum * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_main.c:103:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char input_files[1][MAX_FILE_NAME_LENGTH +1] = {"sample.spp"}; data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master_functions.c:37:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAX_LINE_LENGTH], key[50], value[50]; data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master_functions.c:49:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(filename, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master_functions.c:142:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(spp->par->infile, "r")) == NULL) data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master_functions.c:476:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)(new_matind + new_matbeg[i]), data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master_functions.c:505:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master_functions.c:552:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/USER/include/user.h:24:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infile[MAX_FILE_NAME_LENGTH + 1]; data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c:92:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[50], key[50], value[50], c, tmp; data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c:99:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(filename, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c:160:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAX_LINE_LENGTH], key[50], value[50]; data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c:168:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(infile, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_types.h:86:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char winprog[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_types.h:88:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char heuristics[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_types.h:129:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infile[MAX_FILE_NAME_LENGTH + 1]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_types.h:142:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char small_graph_file[MAX_FILE_NAME_LENGTH]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_types.h:156:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_dir[MAX_FILE_NAME_LENGTH +1]; /* Test files directory */ data/coinor-symphony-5.6.16+repack1/Applications/VRP/include/vrp_types.h:165:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[100]; /* the name of the problem instance */ data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Common/network.c:179:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, xval, edgenum * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_lower_bound.c:288:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)&temp, (char *)(nbtree+*last), sizeof(dbl_neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_lower_bound.c:299:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_lower_bound.c:306:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_lower_bound.c:312:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), (char *)&temp, sizeof(dbl_neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_lower_bound.c:352:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_user.c:188:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[100]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_user.c:227:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "Partial Decomp Tour (%i,%i,%i,%i)", data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_user.c:248:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy ((char *) matind, col->coef, col->size); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/decomp_user.c:418:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col->coef, colind, col->size); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:1817:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(coef, (char *)&j, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:1819:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(coef, (char *)nonzeros, j * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:1821:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(coef, (char *)weights, j * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2015:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpt, (char *)&num_arcs, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2017:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpt, (char *)arcs, ISIZE*(num_arcs)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2019:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpt, (char *)indicators, num_arcs); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2021:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpt, (char *)&num_fracs, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2023:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpt, (char *)&bigM, DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2025:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpt, (char *)weights, num_fracs*DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2117:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(coef, (char *)&nz, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2119:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(coef, (char *)nonzeros, nz * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2121:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(coef, (char *)weights, nz * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2191:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpt, (char *)&num_arcs, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2193:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpt, (char *)arcs, ISIZE * num_arcs); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2195:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cpt, indicators, num_arcs); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2644:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name1[50] = ""; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2698:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name1,"/home/tkr/tmp/matrices/test.%i.%i.mps", bc_index, iter_num); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2700:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(name1, "w"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/Decomp/my_decomp_user.c:2766:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy ((char *) matind, col->coef, col->size); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/shrink.c:237:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/shrink.c:381:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/shrink.c:499:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/shrink.c:538:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/shrink.c:665:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/shrink.c:704:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cutpt, coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/tsp.c:314:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cut.coef, (char *) (&cliquecount), ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:247:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "support graph"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:331:31: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. compnodes_copy = (int *) memcpy((char *)compnodes_copy, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:335:33: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. compdemands_copy = (int *) memcpy((char *)compdemands_copy, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:337:33: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. compcuts_copy = (double *) memcpy((char *)compcuts_copy, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:367:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. new_cut->coef = (char *) (coef_list[i]); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:422:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. new_cut->coef = (char *) (coef_list[i]); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:502:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)new_demand, (char *)demand, vertnum*ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:637:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char **coef_list, name[20]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:648:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "support graph"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:715:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. new_cut->coef = (char *) (coef_list[i]); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:770:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. new_cut->coef = (char *) (coef_list[i]); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:860:24: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. new_cut->coef = (char *) (coef_list[i]); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1065:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&cliquecount, coef, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1086:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1090:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, num_arcs * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1092:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indicators, cpt, num_arcs); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1094:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_fracs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1097:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)weights, cpt, (num_fracs + 1) * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1124:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1128:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, num_arcs * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1130:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indicators, cpt, num_arcs); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1152:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1156:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, num_arcs * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutGen/vrp_cg.c:1158:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)weights, cpt, num_arcs * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:201:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&cliquecount, coef, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:225:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:229:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, ISIZE*(num_arcs)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:231:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indicators, cpt, num_arcs); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:233:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_fracs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:236:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)weights, cpt, (num_fracs + 1) * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:272:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:276:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, num_arcs * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:278:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indicators, cpt, num_arcs); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:304:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:308:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, num_arcs * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/CutPool/vrp_cp.c:310:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)weights, cpt, num_arcs * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_functions.c:113:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node_place[MAX_NAME_LENGTH +1] = {"node_placement"}; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_functions.c:251:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dashpattern[MAX_DASH_PATTERN_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_functions.c:252:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char weight[MAX_WEIGHT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_functions.c:254:7: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dashpattern, "4 3"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_functions.c:269:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(weight, "%.3f", value[i]); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_network.c:244:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nod->weight, "%i", verts[i].snode_size); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_network.c:269:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(ge->weight, "%.3f", ne->weight); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_network.c:270:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(ge->dash, "4 3"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:83:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)&temp, (char *)(nbtree+*last), sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:93:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:100:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:106:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), (char *)&temp, sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:151:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:179:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)&temp, (char *)(nbtree+*last), sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:189:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:196:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:202:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), (char *)&temp, sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:239:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:255:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines.c:262:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:88:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)&temp, (char *)(nbtree+*last), sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:98:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:105:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:111:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), (char *)&temp, sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:155:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:255:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:420:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)&temp, (char *)(nbtree+*last), sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:430:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:436:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:442:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), (char *)&temp, sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:474:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:490:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/ins_routines2.c:497:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst.c:145:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (cur_edges, cheapest_edges, (numroutes-y)*sizeof(edge_data)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst.c:146:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (cur_edges+numroutes-y, depot_costs, m1*sizeof(edge_data)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst.c:159:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (best_tree, tree, vertnum*sizeof(int)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst.c:160:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (best_edges, cur_edges, numroutes*sizeof(edge_data)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst_ins_rout.c:154:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)&temp, (char *)(nbtree+*last), sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst_ins_rout.c:165:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst_ins_rout.c:172:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst_ins_rout.c:178:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), (char *)&temp, sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/mst_ins_rout.c:219:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/sweep.c:78:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)final_tour->tour,(char *)tour, vertnum*sizeof(_node)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_fi.c:122:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)opt_tours, (char *)tours, sizeof(best_tours)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_fi.c:123:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)opt_tour, (char *)tour, vertnum*sizeof(_node)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_fini.c:150:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)opt_tours, (char *)tours, sizeof(best_tours)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_fini.c:151:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)opt_tour, (char *)tour, vertnum*sizeof(_node)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:77:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)&temp, (char *)(nbtree+*last), sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:87:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:94:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:100:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), (char *)&temp, sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:140:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:168:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)&temp, (char *)(nbtree+*last), sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:178:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:185:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:191:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), (char *)&temp, sizeof(neighbor)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:223:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:239:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ins_rout.c:246:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(nbtree+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ni.c:122:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)opt_tours, (char *)tours, sizeof(best_tours)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Heuristics/tsp_ni.c:123:15: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)opt_tour, (char *)tour, vertnum*sizeof(_node)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:462:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&cliquecount, coef, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:493:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:497:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, num_arcs * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:499:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indicators, cpt, num_arcs); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:501:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_fracs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:504:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)weights, cpt, (num_fracs + 1) * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:536:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:540:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, num_arcs * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:542:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(indicators, cpt, num_arcs); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:569:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:575:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, num_arcs * ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:577:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)weights, cpt, num_arcs * DSIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:796:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&cliquecount, coef, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:814:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:815:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, ISIZE*(num_arcs + 1)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:818:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)weights, cpt, DSIZE*(num_arcs + 1)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:840:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:842:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, ISIZE*(num_arcs)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp.c:844:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)indicators, cpt, CSIZE*(num_arcs)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp_branch.c:416:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp_branch.c:417:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, ISIZE*(num_arcs +1)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp_branch.c:420:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)weights, cpt, DSIZE*(num_arcs +1)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp_branch.c:452:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)&num_arcs, cpt, ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp_branch.c:454:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)arcs, cpt, ISIZE*(num_arcs)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/LP/vrp_lp_branch.c:456:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)indicators, cpt, CSIZE*(num_arcs)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/collect_solutions.c:82:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)tours[*last].tour, (char *)solutions[round].tour, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/collect_solutions.c:82:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. memcpy((char *)tours[*last].tour, (char *)solutions[round].tour, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/collect_solutions.c:82:38: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. memcpy((char *)tours[*last].tour, (char *)solutions[round].tour, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/collect_solutions.c:122:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. free ((char *)solutions[i].tour); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/lower_bound.c:66:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sorted_demand, vrp->demand, vrp->vertnum*sizeof(int)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/receive_rout.c:130:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)tours[*last].tour, (char *)tour, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/receive_rout.c:130:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. memcpy((char *)tours[*last].tour, (char *)tour, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/receive_rout.c:282:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (tree, temp_tree, vrp->vertnum*sizeof(int)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/receive_rout.c:283:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (best_edges, temp_best_edges, numroutes*sizeof(edge)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/route_heur.c:90:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)p, (char *)vrp,sizeof(vrp_problem)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/route_heur.c:93:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)p->cur_tour, (char *) data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/route_heur.c:96:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)p->cur_tour->tour, (char *)p-> data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/route_heur.c:270:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)solutions[round].tour, (char *)tour, p->vertnum*sizeof(_node)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/route_heur.c:270:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. memcpy((char *)solutions[round].tour, (char *)tour, p->vertnum*sizeof(_node)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/start_heurs.c:208:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)vrp->cur_tour->tour, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/start_heurs.c:209:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (char *)tours[tourorder[ub_pos]].tour, data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/Heuristics/start_heurs.c:257:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[20] = {"Lower Bound"}; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/small_graph.c:70:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(closenodes+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/small_graph.c:83:16: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(closenodes+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/small_graph.c:89:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void) memcpy ((char *)(closenodes+pos), data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/small_graph.c:128:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((sgfile = fopen(vrp->par.small_graph_file, "w")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/small_graph.c:155:18: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((sgfile = fopen(vrp->par.small_graph_file, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:48:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char keywords[KEY_NUM][22] = { data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:96:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char nctypes[NCTYPE_NUM][14] = { data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:104:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char wtypes[WTYPE_NUM][9] = { data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:119:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char wformats[WFORMAT_NUM][20] = { data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:133:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char dtypes[DTYPE_NUM][14] = { data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:139:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[LENGTH], line1[LENGTH], key[30], tmp[80]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:158:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(infile, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:528:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[LENGTH], key[50], value[50], c, tmp; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:531:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char v0[10], v1[10]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:547:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(filename, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:1121:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(par->executables.heuristics, "vrp_heuristics"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:1183:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vrp->demand, demand, vertnum*ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:1185:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vrp->dist.cost, cost, edgenum*ISIZE); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:1189:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vrp->g, g, sizeof(small_graph)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:1191:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vrp->g->edges, g->edges, vrp->g->edgenum*sizeof(edge_data)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_main.c:104:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char input_files[34][MAX_FILE_NAME_LENGTH +1] = {"A/A-n34-k5", data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_main.c:153:6: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(input_dir, "../../../VRPLIB"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_master.c:293:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node_place[MAX_NAME_LENGTH] = {"node_placement"}; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_master.c:294:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char weight[5]; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_master.c:329:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(weight, "%i", vrp->demand[i]); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_master.c:602:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(vrp_cg->demand, vrp->demand, vrp->vertnum*sizeof(int)); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_master.c:893:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_NAME_LENGTH] = {"feas_solution"}; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_master.c:900:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_NAME_LENGTH] = {"feas_solution"}; data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_master_functions.c:71:12: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. (void)memcpy((char *)ed0, (char *)ed1, sizeof(edge_data)); data/coinor-symphony-5.6.16+repack1/include/sym_cp_params.h:25:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char warm_start_file_name[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_cp_params.h:27:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char log_file_name[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:38:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node_dash[MAX_DASH_PATTERN_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:39:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edge_dash[MAX_DASH_PATTERN_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:44:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nodelabel_font[MAX_FONT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:45:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nodeweight_font[MAX_FONT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:46:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edgeweight_font[MAX_FONT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:57:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[MAX_LABEL_LENGTH +1]; /*watch out, terminating character data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:59:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char weight[MAX_WEIGHT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:60:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dash[MAX_DASH_PATTERN_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:70:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char weight[MAX_WEIGHT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:71:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dash[MAX_DASH_PATTERN_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:97:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:107:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[MAX_TITLE_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:111:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_NAME_LENGTH +1]; /* set if copy_status=2 */ data/coinor-symphony-5.6.16+repack1/include/sym_dg.h:112:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char target[MAX_NAME_LENGTH +1]; /* set if copy_status=1 */ data/coinor-symphony-5.6.16+repack1/include/sym_dg_params.h:120:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source_path[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg_params.h:130:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char node_dash[MAX_DASH_PATTERN_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg_params.h:131:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edge_dash[MAX_DASH_PATTERN_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg_params.h:136:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nodelabel_font[MAX_FONT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg_params.h:137:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nodeweight_font[MAX_FONT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_dg_params.h:138:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char edgeweight_font[MAX_FONT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_macros.h:132:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)newad.stat, (char *)oldad.stat, oldad.size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/include/sym_macros.h:135:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)newad.list, (char *)oldad.list, oldad.size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/include/sym_macros.h:142:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)newad.stat, (char *)oldad.stat, oldad.size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/include/sym_macros.h:149:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)newad.list, (char *)oldad.list, oldad.size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/include/sym_master.h:63:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char probname[81]; data/coinor-symphony-5.6.16+repack1/include/sym_master_params.h:34:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char param_file[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_master_params.h:43:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tm_exe[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_master_params.h:44:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dg_exe[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_master_params.h:48:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tm_machine[MACH_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_master_params.h:50:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dg_machine[MACH_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_master_params.h:55:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char infile[MAX_FILE_NAME_LENGTH +1]; /* For MPS file name data/coinor-symphony-5.6.16+repack1/include/sym_master_params.h:58:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char datafile[MAX_FILE_NAME_LENGTH +1]; /* GNUMP datafile */ data/coinor-symphony-5.6.16+repack1/include/sym_master_params.h:59:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char test_dir[MAX_FILE_NAME_LENGTH +1]; /* Test files directory */ data/coinor-symphony-5.6.16+repack1/include/sym_tm_params.h:28:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lp_exe[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_tm_params.h:29:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cg_exe[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_tm_params.h:30:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cp_exe[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_tm_params.h:57:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vbc_emulation_file_name[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_tm_params.h:67:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pruned_node_file_name[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_tm_params.h:68:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char warm_start_tree_file_name[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_tm_params.h:69:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char warm_start_cut_file_name[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_tm_params.h:70:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tree_log_file_name[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_tm_params.h:71:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cut_log_file_name[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/include/sym_types.h:232:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sense[MAX_CHILDREN_NUM]; data/coinor-symphony-5.6.16+repack1/include/sym_types.h:288:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[MAX_LINE_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/CutGen/Decomp/decomp.c:125:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_cut->coef, binvrow, (lp_data->m-1)*DSIZE); data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_func.c:129:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)tmp_cut, (char *)new_cut, sizeof(cut_data)); data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_func.c:132:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)tmp_cut->coef, (char *)new_cut->coef, data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_func.c:172:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cut->coef + DSIZE, (char *)values, nzcnt * DSIZE); data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_func.c:173:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cut->coef + (nzcnt + 1) * DSIZE, (char *)indices, nzcnt*ISIZE); data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_func.c:200:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cut->coef + DSIZE, (char *)values, nzcnt * DSIZE); data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_func.c:201:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cut->coef + (nzcnt + 1) * DSIZE, (char *)indices, nzcnt*ISIZE); data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_func.c:230:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)tmp_cut, (char *)new_cut, sizeof(cut_data)); data/coinor-symphony-5.6.16+repack1/src/CutGen/cg_func.c:233:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)tmp_cut->coef, (char *)new_cut->coef, data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_func.c:300:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(file, append ? "a" : "w"))){ data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_func.c:329:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[20]; data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_func.c:331:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(file, "r"))){ data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_func.c:367:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[20]; data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_func.c:369:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(file, "r"))){ data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_proccomm.c:97:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bufc, (char *)cp_cut, sizeof(cp_cut_data)); data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_proccomm.c:99:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bufc, cp_cut->cut.coef, cp_cut->cut.size); data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_proccomm.c:160:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cp_cut, bufc, sizeof(cp_cut_data)); data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_proccomm.c:163:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cp_cut->cut.coef, bufc, cp_cut->cut.size); data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_proccomm.c:188:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)tmp_cut, (char *)new_cut, sizeof(cut_data)); data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_proccomm.c:190:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp_cut->coef, new_cut->coef, new_cut->size); data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_proccomm.c:286:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)(&cp_cut->cut), (char *)cp->cuts_to_add[i], data/coinor-symphony-5.6.16+repack1/src/CutPool/cp_proccomm.c:290:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cp_cut->cut.coef, cp->cuts_to_add[i]->coef, data/coinor-symphony-5.6.16+repack1/src/DrawGraph/IGD_1.0/Simple_version/make_graph.c:7:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[10]; data/coinor-symphony-5.6.16+repack1/src/DrawGraph/IGD_1.0/Simple_version/make_graph.c:10:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f1 = fopen(argv[2], "a"); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/IGD_1.0/Simple_version/make_graph.c:11:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f2 = fopen(argv[1], "r"); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/IGD_1.0/Simple_version/window.c:53:20: [2] (race) vfork: On some old systems, vfork() permits race conditions, and it's very difficult to use correctly (CWE-362). Use fork() instead. if ((childpid = vfork()) < 0){ data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:96:20: [2] (race) vfork: On some old systems, vfork() permits race conditions, and it's very difficult to use correctly (CWE-362). Use fork() instead. if ((childpid = vfork()) < 0){ data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:138:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tcl_msg[MAX_LINE_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:139:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[MAX_NAME_LENGTH +1], name2[MAX_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:140:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char source[MAX_NAME_LENGTH +1], target[MAX_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:141:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[MAX_TITLE_LENGTH +1], title2[MAX_TITLE_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:142:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[MAX_FILE_NAME_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:143:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char old_weight[MAX_WEIGHT_LENGTH +1], new_weight[MAX_WEIGHT_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:144:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char new_label[MAX_LABEL_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:145:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char new_dash[MAX_DASH_PATTERN_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1160:7: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(nod->label, "%i", nod->node_id); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1319:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(target_win->g.nodes, source_win->g.nodes, data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1325:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(target_win->g.edges, source_win->g.edges, data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1593:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newbufid, buf->bufid + buf->bufread, data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:1595:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newbufid + (buf->bufspace - buf->bufread), buf->bufid, data/coinor-symphony-5.6.16+repack1/src/DrawGraph/tester.c:26:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[81]; data/coinor-symphony-5.6.16+repack1/src/DrawGraph/tester.c:43:20: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). infile[ini] = fopen(line+5, "r"); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:330:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p->br_rel_cand_list, new_cand_list, ISIZE*cand_num); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:445:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(x, lp_data->x, lp_data->n*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:688:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p->br_rel_cand_list, new_ord, ISIZE*cand_num); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1317:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(r_ind + 1, frac_ind + 2, ISIZE*(r_cnt - 1)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1320:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(l_ind + 1, frac_ind + r_cnt + 1, ISIZE*(l_cnt - 1)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1435:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(best_can->sos_ind[li], l_ind, ISIZE*l_cnt); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1436:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(best_can->sos_ind[ri], r_ind, ISIZE*r_cnt); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1623:19: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->duals[j], lp_data->dualsol, DSIZE*p->base.cutnum); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1645:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->solutions[j], lp_data->x, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1654:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->solutions[j], lp_data->x, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1694:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->frac_ind[j], xind, can->frac_num[j] * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1695:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->frac_val[j], xval, can->frac_num[j] * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1729:19: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->duals[j], lp_data->dualsol, DSIZE*p->base.cutnum); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1752:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->solutions[j], lp_data->x, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1762:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->solutions[j], lp_data->x, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1782:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->frac_ind[j], xind, can->frac_num[j] * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1783:22: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->frac_val[j], xval, can->frac_num[j] * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1988:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(best_can->sol_inds[k], indices, best_can->sol_sizes[k] * data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:1990:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(best_can->solutions[k], values, best_can->sol_sizes[k]* data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:2128:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)cut, (char *)lp_data->rows[branch_row].cut, data/coinor-symphony-5.6.16+repack1/src/LP/lp_branch.c:2132:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)cut->coef, data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:324:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[50] = ""; data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:325:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "matrix.%i.%i", p->bc_index, p->iter_num); data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:434:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[50] = ""; data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:438:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "matrix.%i.%i", p->bc_index, p->iter_num); data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:454:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[50] = ""; data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:455:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "matrix.%i.%i", p->bc_index, p->iter_num); data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:940:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[50] = ""; data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:944:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "matrix.%i.%i", p->bc_index, p->iter_num); data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:1196:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(erstat, rstat + bcutnum, extrarownum * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:1198:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ecstat, cstat + bvarnum, extravarnum * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:1269:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc->not_fixed.list, lp_data->not_fixed, data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:3275:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)matval, (char *)elements, num_elements * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:3277:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)matind, (char *)indices, num_elements * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_genfunc.c:3282:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)matind, (char *)tmp_matind, num_elements * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:138:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fp_data->mip_obj,mip_obj,n*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:213:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(betterSolution, x_ip, n*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:590:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fp_data->x_lp,p->lp_data->x,DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:755:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(x_lp,lp_data_x,DSIZE*n0); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:967:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fp_data->x_bar_ind[fp_iter],tind,ISIZE*cnt); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:968:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fp_data->x_bar_val[fp_iter],tx,DSIZE*cnt); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:1324:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(frac_ind, init_frac_ind, ISIZE*frac_ip_cnt); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:1538:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colSolution, betterSolution, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:1564:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(betterSolution, diving_lp->x, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:1656:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colSolution, betterSolution, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:1673:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(frac_ind, init_frac_ind, ISIZE*frac_ip_cnt); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:2621:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newSolution,solution,numberColumns*sizeof(double)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:2857:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(betterSolution, newSolution, numberColumns*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:2977:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lb, p->mip->lb, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:2978:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ub, p->mip->ub, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:3065:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newSolution,solution,numberColumns*sizeof(double)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:3403:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(betterSolution,newSolution,numberColumns*sizeof(double)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_heuristics.c:3442:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colSolution, betterSolution, DSIZE*p->lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:350:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p->waiting_rows, new_rows, data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:498:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)newad.list, lp_data->tmp.i1, newad.size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:500:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)newad.list, oldad.list, newad.size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:578:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n->duals, lp_data->dualsol, DSIZE*p->base.cutnum); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:603:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n->sol, values, DSIZE*n->sol_size); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:604:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n->sol_ind, indices, ISIZE*n->sol_size); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:750:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)tm_desc->desc, (char *)new_lp_desc->desc, data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:810:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(p->tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:820:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(p->tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:942:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(not_fixed+k, ulist+i, (usize-i)*ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:944:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(not_fixed+k, nlist+j, (nsize-j)*ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1176:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(iadd + k, newlist + j, (newsize - j) * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1179:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc.list + desc.added, isub, l * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1181:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc.list+desc.added+l, origlist+i, (origsize-i) * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1200:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)which.list, (char *)itmp, size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1201:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)which.stat, (char *)(itmp+orig_size), size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1205:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)which.stat,(char *)newdesc->which.stat,which.size*ISIZE);\ data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1217:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)which2.list, (char *)itmp, size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1218:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)which2.stat, (char *)(itmp+orig_size), size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1222:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(which2.stat, newdesc->which2.stat, which2.size*ISIZE); \ data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1414:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)(modlist+l), (char *)(newlist+j), (newsize-j)*ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1415:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)(modstat+l), (char *)(newstat+j), (newsize-j)*ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1504:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(node->bobj.sense, bobj->sense, bobj->child_num); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1505:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)node->bobj.rhs, (char *)bobj->rhs, bobj->child_num*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1506:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)node->bobj.range, (char *)bobj->range, bobj->child_num*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1507:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)node->bobj.branch, (char *)bobj->branch, bobj->child_num*ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1698:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)cp->cuts_to_add[cp->cuts_to_add_num], data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1699:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (char *)extrarows[i].cut, sizeof(cut_data)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1702:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (char *) malloc (extrarows[i].cut->size * sizeof(char)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_proccomm.c:1703:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)cp->cuts_to_add[cp->cuts_to_add_num++]->coef, data/coinor-symphony-5.6.16+repack1/src/LP/lp_pseudo_branch.c:151:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)pseudo_costs_one, (char *)lp_data->obj, lp_data->n*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_pseudo_branch.c:152:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)pseudo_costs_zero,(char *)lp_data->obj, lp_data->n*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_pseudo_branch.c:335:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->frac_ind[j], xind, can->frac_num[j] * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_pseudo_branch.c:336:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->frac_val[j], xval, can->frac_num[j] * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_pseudo_branch.c:394:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->frac_ind[j], xind, can->frac_num[j] * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_pseudo_branch.c:395:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(can->frac_val[j], xval, can->frac_num[j] * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_pseudo_branch.c:565:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)cut, (char *)lp_data->rows[branch_row].cut, data/coinor-symphony-5.6.16+repack1/src/LP/lp_pseudo_branch.c:569:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)cut->coef, data/coinor-symphony-5.6.16+repack1/src/LP/lp_rowfunc.c:299:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((p->waiting_rows + p->waiting_row_num), new_rows, data/coinor-symphony-5.6.16+repack1/src/LP/lp_rowfunc.c:399:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rmatind + rmatbeg[i], wrow->matind, wrow->nzcnt * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_rowfunc.c:400:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rmatval + rmatbeg[i], wrow->matval, wrow->nzcnt * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:468:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matbeg, matrixByCol.getVectorStarts(), ISIZE * (mip->n + 1)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:469:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matval, matrixByCol.getElements(), DSIZE * mip->nz); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:470:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matind, matrixByCol.getIndices(), ISIZE * mip->nz); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:1068:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colind, vec.index, *collen * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:1069:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colval, vec.element, *collen * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:1082:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rowind, vec.index, *rowlen * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:1083:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rowval, vec.element, *rowlen * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:1105:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lp_data->x, ekk_colsol(lp_data->lp), lp_data->n * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:1114:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lp_data->dualsol, ekk_rowduals(lp_data->lp), lp_data->m * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:1123:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lp_data->dj, ekk_colrcosts(lp_data->lp), lp_data->n * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3075:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lp_data->x, lp_data->si->getColSolution(), lp_data->n * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3094:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lp_data->dualsol, lp_data->si->getRowPrice(), lp_data->m * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3096:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dj, lp_data->si->getReducedCost(), lp_data->n * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3288:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (lp_data->mip->obj,si_objcoeffs,lp_data->n*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3538:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[80] = "", ext[10] = ""; data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3566:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fname, infile, CSIZE*last_dot); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3567:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ext, infile + last_dot + 1, CSIZE*(j - last_dot - 1)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3570:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fname, infile, CSIZE*j); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3595:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->obj, mps.getObjCoefficients(), DSIZE * mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3596:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->ub, mps.getColUpper(), DSIZE * mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3597:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->lb, mps.getColLower(), DSIZE * mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3600:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matbeg, matrixByCol->getVectorStarts(), ISIZE * (mip->n + 1)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3608:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->rhs, mps.getRightHandSide(), DSIZE * mip->m); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3609:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->sense, mps.getRowSense(), CSIZE * mip->m); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3610:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->rngval, mps.getRowRange(), DSIZE * mip->m); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3619:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matval, matrixByCol->getElements(), DSIZE * mip->matbeg[mip->n]); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3620:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matind, matrixByCol->getIndices(), ISIZE * mip->matbeg[mip->n]); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3670:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->obj, lp.getObjCoefficients(0), DSIZE * mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3671:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->obj1, lp.getObjCoefficients(0), DSIZE * mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3672:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->obj2, lp.getObjCoefficients(1), DSIZE * mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3678:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->obj, lp.getObjCoefficients(), DSIZE * mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3681:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->rhs, lp.getRightHandSide(), DSIZE * mip->m); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3682:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->sense, lp.getRowSense(), CSIZE * mip->m); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3683:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->rngval, lp.getRowRange(), DSIZE * mip->m); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3684:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->ub, lp.getColUpper(), DSIZE * mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3685:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->lb, lp.getColLower(), DSIZE * mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3692:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matbeg, matrixByCol->getVectorStarts(), ISIZE * (mip->n + 1)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3697:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matval, matrixByCol->getElements(), DSIZE * mip->matbeg[mip->n]); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3698:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matind, matrixByCol->getIndices(), ISIZE * mip->matbeg[mip->n]); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3758:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[80] = ""; data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3764:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(obj, mip->obj, DSIZE*mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3787:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[80] = ""; data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3793:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(obj, mip->obj, DSIZE*mip->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:4613:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. (*cuts)[j]->coef = (char *) malloc ((*cuts)[j]->size); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:4619:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)matval, (char *)elements, num_elements * DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:4620:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char*)matind, (char *)tmp_matind, num_elements * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_sp.c:54:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sol->xind,indices,ISIZE*cnt); data/coinor-symphony-5.6.16+repack1/src/LP/lp_sp.c:56:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sol->xval,values,DSIZE*cnt); data/coinor-symphony-5.6.16+repack1/src/LP/lp_varfunc.c:626:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)(new_cols->matind+new_cols->matbeg[new_vars]), data/coinor-symphony-5.6.16+repack1/src/LP/lp_varfunc.c:628:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)(new_cols->matval+new_cols->matbeg[new_vars]), data/coinor-symphony-5.6.16+repack1/src/LP/lp_varfunc.c:1261:38: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. bnd_change->index = (int *) memcpy(bnd_change->index, ind, ISIZE*cnt); data/coinor-symphony-5.6.16+repack1/src/LP/lp_varfunc.c:1262:39: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. bnd_change->lbub = (char *) memcpy(bnd_change->lbub, lu, CSIZE*cnt); data/coinor-symphony-5.6.16+repack1/src/LP/lp_varfunc.c:1263:41: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. bnd_change->value = (double *) memcpy(bnd_change->value, bd, data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:229:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lp_data->not_fixed, desc->not_fixed.list, data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:682:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)cut, (char *)rows[j].cut, sizeof(cut_data)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:682:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. memcpy((char *)cut, (char *)rows[j].cut, sizeof(cut_data)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:682:27: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. memcpy((char *)cut, (char *)rows[j].cut, sizeof(cut_data)); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:685:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)cut->coef, (char *)rows[j].cut->coef, data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:685:36: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. memcpy((char *)cut->coef, (char *)rows[j].cut->coef, data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:780:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cstat, data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:782:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cstat + desc->basis.basevars.size, data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:791:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rstat, data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:793:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rstat + desc->basis.baserows.size, data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:857:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col_sol, heur_solution, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:911:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(p->root_lp, lp_data->x, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:958:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col_sol, heur_solution, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:974:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col_sol, heur_solution, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:991:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col_sol, heur_solution, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:1018:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col_sol, heur_solution, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:1054:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col_sol, heur_solution, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:1079:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col_sol, heur_solution, DSIZE*lp_data->n); //no need -- data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:1097:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col_sol, p->lp_data->x, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:1117:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col_sol, heur_solution, DSIZE*lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:1203:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)p->best_sol.xind, (char *)indices, cnt*ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:1204:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)p->best_sol.xval, (char *)values, cnt*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:2159:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(row_matind, matind, nzcnt*ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:2160:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(row_matval, matval, nzcnt*DSIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:2385:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(status, lpstatus, CSIZE*p->lp_data->n); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:2952:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)p->best_sol.xind, (char *)indices, length * ISIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_wrapper.c:2953:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)p->best_sol.xval, (char *)values, length * DSIZE); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:198:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char args[3][MAX_LINE_LENGTH + 1]; data/coinor-symphony-5.6.16+repack1/src/Master/main.c:199:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char param[MAX_LINE_LENGTH +1], value[MAX_LINE_LENGTH+1]; data/coinor-symphony-5.6.16+repack1/src/Master/main.c:200:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ext[5]; data/coinor-symphony-5.6.16+repack1/src/Master/main.c:244:7: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (fopen(args[1], "r") == NULL){ data/coinor-symphony-5.6.16+repack1/src/Master/main.c:304:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if(fopen(args[2], "r") == NULL){ data/coinor-symphony-5.6.16+repack1/src/Master/main.c:561:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(args[2], "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/src/Master/main.c:792:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[2][MAX_LINE_LENGTH+1]; data/coinor-symphony-5.6.16+repack1/src/Master/main.c:894:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp_inp[MAX_LINE_LENGTH+1]; data/coinor-symphony-5.6.16+repack1/src/Master/master.c:227:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(env->par.tm_exe, "symphony_tm"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:229:4: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(env->par.tm_exe, "_lp"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:231:4: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(env->par.tm_exe, "_cg"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:235:4: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(env->par.tm_exe, "_cp"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:237:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(env->par.dg_exe, "symphony_dg"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:255:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(tm_par->lp_exe, "symphony_lp"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:257:4: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(tm_par->lp_exe, "_cg"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:259:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(tm_par->cg_exe, "symphony_cg"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:260:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(tm_par->cp_exe, "symphony_cp"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:616:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dg_par->nodelabel_font, data/coinor-symphony-5.6.16+repack1/src/Master/master.c:618:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dg_par->nodeweight_font, data/coinor-symphony-5.6.16+repack1/src/Master/master.c:620:4: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(dg_par->edgeweight_font, data/coinor-symphony-5.6.16+repack1/src/Master/master.c:1242:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)tm->feas_sol, (char *)feas_sol, feas_sol_size * ISIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:1451:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&env->warm_start->best_sol, &env->best_sol, sizeof(lp_sol) *1); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:1459:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->warm_start->best_sol.xind, data/coinor-symphony-5.6.16+repack1/src/Master/master.c:1461:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->warm_start->best_sol.xval, data/coinor-symphony-5.6.16+repack1/src/Master/master.c:1927:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)env->mip->obj1, (char *)env->mip->obj, DSIZE*env->mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2027:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) indices, env->best_sol.xind, length * ISIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2028:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) values, env->best_sol.xval, length * DSIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2108:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) indices, env->best_sol.xind, length * ISIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2109:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) values, env->best_sol.xval, length * DSIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2453:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) indices, env->best_sol.xind, length * ISIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2454:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *) values, env->best_sol.xval, length * DSIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2675:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->obj, obj, DSIZE * numcols); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2679:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->obj2, obj2, DSIZE * numcols); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2683:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->ub, colub, DSIZE * numcols); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2691:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->lb, collb, DSIZE * numcols); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2695:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->is_int, is_int, CSIZE * numcols); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2706:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->sense, rowsen, CSIZE * numrows); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2712:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->rhs, rowrhs, DSIZE * numrows); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2716:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->rngval, rowrng, DSIZE * numrows); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2729:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->matbeg, start, ISIZE *(numcols + 1)); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2730:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->matval, value, DSIZE *start[numcols]); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2731:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->matind, index, ISIZE *start[numcols]); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:2998:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(collb, env->mip->lb, DSIZE * env->mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3016:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colub, env->mip->ub, DSIZE * env->mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3034:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rowsen, env->mip->sense, CSIZE * env->mip->m); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3053:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rowrhs, env->mip->rhs, DSIZE * env->mip->m); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3075:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matbeg, env->mip->matbeg, ISIZE * (env->mip->n + 1)); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3076:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matind, env->mip->matind, ISIZE * (*nz)); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3077:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matval, env->mip->matval, DSIZE * (*nz)); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3095:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rowrng, env->mip->rngval, DSIZE * env->mip->m); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3215:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(obj, env->mip->obj, DSIZE*env->mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3233:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(obj2, env->mip->obj2, DSIZE*env->mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3356:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colsol, env->mip->lb, DSIZE*env->mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:3598:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->mip->obj1, env->mip->obj, DSIZE * env->mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4054:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sol->xind, tmp_ind, ISIZE*nz); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4246:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env->rootdesc->uind.list, user_indices, ISIZE*(*user_size - 1)); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4261:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colLb, env->mip->lb, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4262:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colUb, env->mip->ub, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4263:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(objN, env->mip->obj, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4265:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(obj1N, env->mip->obj1, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4268:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(obj2N, env->mip->obj2, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4270:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(isInt, env->mip->is_int, CSIZE*n); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4289:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matInd, env->mip->matind, ISIZE*nz); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4290:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matVal, env->mip->matval, DSIZE*nz); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4293:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matInd + nz, indices, ISIZE*numelems); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4294:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matVal + nz, elements, DSIZE*numelems); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4303:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matBeg, env->mip->matbeg, ISIZE*(n+1)); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4478:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matInd + matBeg[i], env->mip->matind + data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4481:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matVal + matBeg[i], env->mip->matval + data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4515:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sense, env->mip->sense, CSIZE*m); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4516:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(range, env->mip->rngval, DSIZE*m); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4517:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rhs, env->mip->rhs, DSIZE*m); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4861:8: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). f = fopen(file, "w"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4964:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[80]; data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4972:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(file, "r"))){ data/coinor-symphony-5.6.16+repack1/src/Master/master.c:6585:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mps_files[45][MAX_FILE_NAME_LENGTH +1] = { data/coinor-symphony-5.6.16+repack1/src/Master/master.c:6628:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(mps_dir, "../../Data/miplib3"); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:6630:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(mps_dir, "..\\..\\Data\\miplib3"); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:176:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(extravar.list, n->desc.uind.list, ISIZE * extravar.size); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:183:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(basis.extravars.stat, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:202:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(basis.basevars.stat, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:220:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(extrarow.list, n->desc.cutind.list, ISIZE * extrarow.size); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:226:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(basis.extrarows.stat, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:244:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(basis.baserows.stat, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:261:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(not_fixed.list, n->desc.not_fixed.list, ISIZE*not_fixed.size); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:289:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)new_desc->desc, (char *)desc->desc, new_desc->desc_size); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:384:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matind + matbeg[j], (int *) (cut->coef + ISIZE), data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:386:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matval + matbeg[j], data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:408:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cstat, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:410:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cstat + desc->basis.basevars.size, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:419:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rstat, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:421:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rstat + desc->basis.baserows.size, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:477:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(best_sol->xind, xind, ISIZE*cnt); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:478:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(best_sol->xval, xval, DSIZE*cnt); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1212:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->sol, n_from->sol, n_from->sol_size * DSIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1213:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->sol_ind, n_from->sol_ind, n_from->sol_size * ISIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1230:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.row, n_from->bobj.row, sizeof(waiting_row)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1236:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.row->matind, n_from->bobj.row->matind, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1238:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.row->matval, n_from->bobj.row->matval, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1242:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.row->cut, n_from->bobj.row->cut, sizeof(cut_data)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1246:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.row->cut->coef, n_from->bobj.row->cut->coef, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1266:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.sense, n_from->bobj.sense, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1268:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.rhs, n_from->bobj.rhs, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1270:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.range, n_from->bobj.range, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1272:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.branch, n_from->bobj.branch, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1277:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.objval, n_from->bobj.objval, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1279:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.termcode, n_from->bobj.termcode, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1281:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.iterd, n_from->bobj.iterd, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1283:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->bobj.feasible, n_from->bobj.feasible, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1291:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.uind.list, n_from->desc.uind.list, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1298:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.basis.basevars.stat, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1304:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.basis.basevars.list, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1313:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.basis.extravars.stat, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1319:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.basis.extravars.list, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1328:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.basis.baserows.stat, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1334:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.basis.baserows.list, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1343:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.basis.extrarows.stat, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1349:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.basis.extrarows.list, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1358:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.not_fixed.list, n_from->desc.not_fixed.list, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1364:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.cutind.list, n_from->desc.cutind.list, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1370:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(n_to->desc.desc, n_from->desc.desc, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1384:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.bnd_change->index, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1387:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.bnd_change->lbub, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1390:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( n_to->desc.bnd_change->value, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1600:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[80]; data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1790:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[MAX_LINE_LENGTH +1], value[MAX_LINE_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3446:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ws_copy, ws, sizeof(warm_start_desc)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3453:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ws_copy->cuts[i], ws->cuts[i], sizeof(cut_data)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3456:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ws_copy->cuts[i]->coef, ws->cuts[i]->coef, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3467:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ws_copy->best_sol.xind, ws->best_sol.xind, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3469:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ws_copy->best_sol.xval, ws->best_sol.xval, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3486:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy, mip, sizeof(MIPdesc)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3496:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->obj, mip->obj, DSIZE * mip_copy->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3497:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->ub, mip->ub, DSIZE * mip_copy->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3498:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->lb, mip->lb, DSIZE * mip_copy->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3499:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->is_int, mip->is_int, CSIZE * mip_copy->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3500:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->matbeg, mip->matbeg, ISIZE * (mip_copy->n + 1)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3504:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->obj1, mip->obj1, DSIZE * mip_copy->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3508:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->obj2, mip->obj2, DSIZE * mip_copy->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3517:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->rhs, mip->rhs, DSIZE * mip_copy->m); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3518:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->sense, mip->sense, CSIZE * mip_copy->m); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3519:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->rngval, mip->rngval, DSIZE * mip_copy->m); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3525:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->matval, mip->matval, DSIZE * mip_copy->nz); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3526:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->matind, mip->matind, ISIZE * mip_copy->nz); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3542:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->row_matbeg, mip->row_matbeg, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3544:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->row_matind, mip->row_matind, ISIZE*mip_copy->nz); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3545:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->row_matval, mip->row_matval, DSIZE*mip_copy->nz); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3546:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->row_lengths, mip->row_lengths, ISIZE*mip_copy->m); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3547:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->col_lengths, mip->col_lengths, ISIZE * mip_copy->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3564:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->fixed_ind, mip->fixed_ind, ISIZE*mip->fixed_n); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3565:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip_copy->fixed_val, mip->fixed_val, DSIZE*mip->fixed_n); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3598:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env_copy, env, sizeof(sym_environment)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3629:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(par->tm_par.lp_machs[i], env->par.tm_par.lp_machs[i], data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3636:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(par->tm_par.cg_machs[i], env->par.tm_par.cg_machs[i], data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3643:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(par->tm_par.cp_machs[i], env->par.tm_par.cp_machs[i], data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3656:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sol->xind, env->best_sol.xind, ISIZE*sol->xlength); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3657:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sol->xval, env->best_sol.xval, DSIZE*sol->xlength); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3666:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (sp, env->sp, sizeof(sp_desc)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3677:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sp->solutions[i]->xind, env->sp->solutions[i]->xind, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3679:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sp->solutions[i]->xval, env->sp->solutions[i]->xval, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3710:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env_copy->base, env->base, sizeof(base_desc)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3714:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env_copy->base->userind, env->base->userind, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3726:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc, env->rootdesc, sizeof(node_desc)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3730:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( desc->uind.list, env->rootdesc->uind.list, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3737:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( desc->not_fixed.list, env->rootdesc->not_fixed.list, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3743:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy( desc->cutind.list, env->rootdesc->cutind.list, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3749:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc->desc, env->rootdesc->desc, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3763:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc->bnd_change->index, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3766:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc->bnd_change->lbub, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3769:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(desc->bnd_change->value, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3813:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(env_copy->cp[i], env->cp[i], sizeof(cut_pool)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3821:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cp_cut, env->cp[i]->cuts[j], sizeof(cp_cut_data)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3823:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cp_cut->cut.coef, env->cp[i]->cuts[j]->cut.coef, data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3831:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sol->xind, env->cp[i]->cur_sol.xind, ISIZE*sol->max_sol_length); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3832:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(sol->xval, env->cp[i]->cur_sol.xval, DSIZE*sol->max_sol_length); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3842:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cut,env_copy->cp[i]->cuts_to_add[j], sizeof(cut_data)); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3844:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cut->coef, env->cp[i]->cuts_to_add[j]->coef, data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:103:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[MAX_LINE_LENGTH +1], tmp, c; data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:104:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[MAX_LINE_LENGTH +1], value[MAX_LINE_LENGTH +1]; data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:130:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((f = fopen(env->par.param_file, "r")) == NULL){ data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:236:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f1 = fopen(tm_par->pruned_node_file_name, "w"))){ data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:294:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f1 = fopen(tm_par->vbc_emulation_file_name, "w"))){ data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:715:20: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f2 = fopen(tm_par->vbc_emulation_file_name, "w"))){ data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:783:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[MAX_LINE_LENGTH +1], value[MAX_LINE_LENGTH +1], *quote1, *quote2; data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:81:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_name[80] = ""; data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:255:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->obj, obj, DSIZE * numcols); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:259:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->ub, colub, DSIZE * numcols); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:267:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->lb, collb, DSIZE * numcols); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:271:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->is_int, is_int, CSIZE * numcols); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:282:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->sense, rowsen, CSIZE * numrows); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:288:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->rhs, rowrhs, DSIZE * numrows); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:292:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->rngval, rowrng, DSIZE * numrows); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:305:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matbeg, start, ISIZE *(numcols + 1)); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:306:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matval, value, DSIZE *start[numcols]); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:307:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matind, index, ISIZE *start[numcols]); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:386:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fname[80] = "", ext[10] = ""; data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:414:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fname, infile, CSIZE*last_dot); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:415:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ext, infile + last_dot + 1, CSIZE*(j - last_dot - 1)); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:417:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fname, infile, CSIZE*j); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:441:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->obj, const_cast <double *> (mps.getObjCoefficients()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:443:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->rhs, const_cast <double *> (mps.getRightHandSide()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:445:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->sense, const_cast <char *> (mps.getRowSense()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:447:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->rngval, const_cast <double *> (mps.getRowRange()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:449:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->ub, const_cast <double *> (mps.getColUpper()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:451:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->lb, const_cast <double *> (mps.getColLower()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:459:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matbeg, const_cast<int *>(matrixByCol->getVectorStarts()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:465:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matval, const_cast<double *> (matrixByCol->getElements()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:467:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matind, const_cast<int *> (matrixByCol->getIndices()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:523:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->obj, const_cast <double *> (lp.getObjCoefficients()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:525:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->rhs, const_cast <double *> (lp.getRightHandSide()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:527:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->sense, const_cast <char *> (lp.getRowSense()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:529:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->rngval, const_cast <double *> (lp.getRowRange()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:531:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->ub, const_cast <double *> (lp.getColUpper()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:533:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->lb, const_cast <double *> (lp.getColLower()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:541:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matbeg, const_cast<int *>(matrixByCol->getVectorStarts()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:547:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matval, const_cast<double *> (matrixByCol->getElements()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:549:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(mip->matind, const_cast<int *> (matrixByCol->getIndices()), data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:579:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[80] = ""; data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:601:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[80] = ""; data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:225:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(P->impl_rows, rows, sizeof(ROWinfo)*m); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:226:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(P->impl_cols, cols, sizeof(COLinfo)*n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:227:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(P->impl_ub, ub, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:228:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(P->impl_lb, lb, DSIZE*n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:268:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rows, P->impl_rows,sizeof(ROWinfo)*mip->m); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:269:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cols, P->impl_cols, sizeof(COLinfo)*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:271:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ub, P->impl_ub, DSIZE*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:272:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lb, P->impl_lb, DSIZE*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:300:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rows, P->impl_rows,sizeof(ROWinfo)*mip->m); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:301:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cols, P->impl_cols, sizeof(COLinfo)*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:302:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ub, P->impl_ub, DSIZE*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:303:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lb, P->impl_lb, DSIZE*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:617:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(r_loc, P->user_row_ind, ISIZE*m); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:634:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(c_loc, P->user_col_ind, ISIZE*n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:2736:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(P->impl_rows, rows, sizeof(ROWinfo)*mip->m); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:2737:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(P->impl_cols, cols, sizeof(COLinfo)*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:2738:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(P->impl_ub, ub, DSIZE*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:2739:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(P->impl_lb, lb, DSIZE*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:2804:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rows, P->impl_rows,sizeof(ROWinfo)*mip->m); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:2805:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cols, P->impl_cols, sizeof(COLinfo)*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:2806:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ub, P->impl_ub, DSIZE*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:2807:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lb, P->impl_lb, DSIZE*mip->n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_base.c:4933:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(o_sense, sense, CSIZE*m); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_sr.c:552:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp_ind, sr->fixed_ind, ISIZE*sr->max_n); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep_sr.c:587:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp_ind, sr->fixed_ind, ISIZE*sr->min_n); data/coinor-symphony-5.6.16+repack1/src/Master/master_wrapper.c:277:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(env->par.tm_par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/Master/master_wrapper.c:336:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)userind, (char *)base->userind, base->varnum * ISIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master_wrapper.c:337:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)(userind + base->varnum), (char *)root->uind.list, data/coinor-symphony-5.6.16+repack1/src/OsiSym/OsiSymSolverInterface.cpp:785:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char * rowSense = new char [nrows]; data/coinor-symphony-5.6.16+repack1/src/OsiSym/OsiSymSolverInterface.cpp:875:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matind + matbeg[i], matindS + matbegS[i] , data/coinor-symphony-5.6.16+repack1/src/OsiSym/OsiSymSolverInterface.cpp:877:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(matval + matbeg[i], matvalS + matbegS[i] , data/coinor-symphony-5.6.16+repack1/src/OsiSym/OsiSymSolverInterface.cpp:946:25: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char * sense = new char [numrows]; data/coinor-symphony-5.6.16+repack1/src/OsiSym/OsiSymSolverInterface.cpp:1673:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(colsol_, colsol, n*sizeof(double)); data/coinor-symphony-5.6.16+repack1/src/OsiSym/OsiSymSolverInterface.cpp:1696:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rowprice_, rowprice, getNumRows() * sizeof(double)); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:251:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.warm_start_tree_file_name, "r"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:279:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)root->desc.uind.list, (char *)rootdesc->uind.list, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:668:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp_str[100], proc_filename[100]; data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:733:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(proc_filename,"/proc/%d/stat",pid); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:734:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). proc_file = fopen (proc_filename, "r"); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:875:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1437:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1449:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1453:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reason[50]; data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1813:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reason[30]; data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1843:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(reason," 0"); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1864:6: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(reason," 0"); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1900:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1912:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:1985:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.pruned_node_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:2100:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:2114:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:2557:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(origlist, toadd, (k+1) * ISIZE); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:2829:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(not_fixed+k, ulist+i, (usize-i)*ISIZE); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:2831:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(not_fixed+k, nlist+j, (nsize-j)*ISIZE); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3058:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(file, append ? "a" : "w"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3146:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str1[10], str2[10]; data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3307:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(file, append ? "a" : "w"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3359:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(file, append ? "a" : "w"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3385:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[20]; data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3387:14: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(file, "r"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3420:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(file, append ? "a" : "w"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3476:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str1[20], str2[20]; data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3521:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(file, append ? "a" : "w"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3542:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str1[20], str2[20]; data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3867:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp [MAX_LINE_LENGTH + 1]; data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:4108:38: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. bnd_change->index = (int *) memcpy(bnd_change->index, ind, ISIZE*cnt); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:4109:39: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. bnd_change->lbub = (char *) memcpy(bnd_change->lbub, lu, CSIZE*cnt); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:4110:41: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. bnd_change->value = (double *) memcpy(bnd_change->value, bd, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:172:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:293:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(extravar.list, n->desc.uind.list, ISIZE * extravar.size); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:305:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(basis.extravars.stat, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:324:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(basis.basevars.stat, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:342:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(extrarow.list, n->desc.cutind.list, ISIZE * extrarow.size); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:354:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(basis.extrarows.stat, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:372:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(basis.baserows.stat, data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:389:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(not_fixed.list, n->desc.not_fixed.list, ISIZE*not_fixed.size); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:568:7: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((char *)new_desc->desc, (char *)desc->desc, new_desc->desc_size); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:784:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:798:16: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!(f = fopen(tm->par.vbc_emulation_file_name, "a"))){ data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:815:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char reason[50]; data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:1490:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bnd_change->index, p_index, ISIZE*p_num_changes); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:1491:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bnd_change->lbub, p_lbub, CSIZE*p_num_changes); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_proccomm.c:1492:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(bnd_change->value, p_value, DSIZE*p_num_changes); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_functions.c:270:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(weight, "1"); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/DrawGraph/cnrp_dg_network.c:265:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(ge->weight, "1"); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:166:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:242:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). if (!strncpy(tmp, line, 80)) data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:708:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:713:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, value, MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:758:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:866:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:962:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->small_graph_file, argv[++i], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:966:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, argv[++i], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_io.c:1032:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->test_dir, argv[++i],MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_main.c:519:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/CNRP/src/Master/cnrp_main.c:555:8: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(env->par.infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_main.c:203:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(input_dir, "."); data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_main.c:212:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_main.c:234:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(env->par.infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_master.c:102:3: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_master.c:107:6: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, value, MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_master.c:128:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, argv[++i], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/MATCH/src/Master/user_master.c:135:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->test_dir, argv[++i],MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:228:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(infile, argv[++i], LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:380:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:384:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:388:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:404:8: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:412:4: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:431:4: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/Applications/MCKP/mckp_main.c:508:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_main.c:114:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(input_dir, "."); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_main.c:123:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_main.c:144:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(env->par.infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:93:3: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:98:6: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, value, MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:118:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, argv[++i], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/MPP/src/Master/mpp_master.c:125:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->test_dir, argv[++i],MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_main.c:121:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(input_dir, "."); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_main.c:131:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_main.c:152:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(env->par.infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master.c:115:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, argv[++i], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master.c:122:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->test_dir, argv[++i],MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/SPP+CUTS/src/Master/spp_master_functions.c:75:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_main.c:116:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(input_dir, "."); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_main.c:126:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_main.c:147:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(env->par.infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master.c:105:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, argv[++i], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master.c:112:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->test_dir, argv[++i],MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/SPP/src/Master/spp_master_functions.c:56:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c:107:3: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c:112:6: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, value, MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c:132:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, argv[++i], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/USER/src/Master/user_master.c:176:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_functions.c:266:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(weight, "1"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/DrawGraph/vrp_dg_network.c:266:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(ge->weight, "1"); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:168:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:212:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). if (!strncpy(tmp, line, 80)) data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:553:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:558:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, value, MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:604:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:829:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:954:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:991:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->small_graph_file, argv[++i], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:995:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->infile, argv[++i], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:1023:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(par->test_dir, argv[++i],MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_io.c:1194:4: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(vrp->par.infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_main.c:160:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(infile, ""); data/coinor-symphony-5.6.16+repack1/Applications/VRP/src/Master/vrp_main.c:161:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(sgfile, ""); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/draw_graph.c:435:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(name); data/coinor-symphony-5.6.16+repack1/src/DrawGraph/tester.c:40:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). line[strlen(line)-1] = 0; data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:331:4: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(probname, glp_get_prob_name(prob), 80); /* name the problem */ data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:449:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(mip->colname[j], glp_get_col_name(prob, j+1), MAX_NAME_SIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3580:4: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(probname, mps.getProblemName(), 80); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3626:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(mip->colname[j], mps.columnName(j), MAX_NAME_SIZE); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3651:4: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(probname, lp.getProblemName(), 80); data/coinor-symphony-5.6.16+repack1/src/LP/lp_solver.c:3705:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(mip->colname[j], lp.columnName(j), MAX_NAME_SIZE); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:222:4: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[j], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:263:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(ext, ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:372:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:439:3: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:445:4: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:450:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:473:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:507:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:508:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[2], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:521:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:522:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[2], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:565:4: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:566:4: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[2], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:590:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[0], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:599:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:600:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[2], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:605:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:606:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(args[2], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:720:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if((*input)[strlen(*input)-1] == ' '){ data/coinor-symphony-5.6.16+repack1/src/Master/main.c:721:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (*input)[strlen(*input)-1] = 0; data/coinor-symphony-5.6.16+repack1/src/Master/main.c:735:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(getl, ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:743:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i=0; i<strlen(getl); i++){ data/coinor-symphony-5.6.16+repack1/src/Master/main.c:768:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(env->par.infile, ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:769:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(env->par.datafile, ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:795:3: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key[0], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:796:3: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key[1], ""); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:838:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen (text); data/coinor-symphony-5.6.16+repack1/src/Master/main.c:880:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(s); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:601:4: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(dg_par->source_path, "."); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:695:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(env->par.infile, infile, MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:696:3: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(env->par.datafile, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:707:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(env->par.infile, infile, MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:708:3: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(env->par.datafile, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:718:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(env->par.infile, modelfile, MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:719:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(env->par.datafile, datafile, MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4189:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(env->mip->colname[j], colname[j], MAX_NAME_SIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4347:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(colName[i], env->mip->colname[i], MAX_NAME_SIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:4356:6: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(colName[n], name, MAX_NAME_SIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master.c:6637:5: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(infile, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:1801:4: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/src/Master/master_func.c:3557:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(mip_copy->colname[i], mip->colname[i], MAX_NAME_SIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:127:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(env->par.param_file, argv[i+1], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:143:7: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key,""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:160:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:185:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:210:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:229:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:259:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:270:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:287:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:324:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:336:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:353:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:369:6: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(key, ""); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:671:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(env->par.param_file, argv[i+1], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:711:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(tm_par->vbc_emulation_file_name, argv[i+1], MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:791:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = (int)strlen(quote1); data/coinor-symphony-5.6.16+repack1/src/Master/master_io.c:804:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(target, quote1, len); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:475:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(mip->colname[j], const_cast<char*>(mps.columnName(j)), MAX_NAME_SIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master_prep.c:557:7: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(mip->colname[j], const_cast<char*>(lp.columnName(j)), MAX_NAME_SIZE); data/coinor-symphony-5.6.16+repack1/src/Master/master_wrapper.c:88:3: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(env->par.infile, argv[++i],MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/src/Master/master_wrapper.c:102:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(env->par.datafile, argv[++i],MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/src/Master/master_wrapper.c:114:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(env->par.test_dir, argv[++i],MAX_FILE_NAME_LENGTH); data/coinor-symphony-5.6.16+repack1/src/TreeManager/tm_func.c:3872:4: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(temp, ""); ANALYSIS SUMMARY: Hits = 1372 Lines analyzed = 117160 in approximately 3.70 seconds (31642 lines/second) Physical Source Lines of Code (SLOC) = 84244 Hits@level = [0] 2525 [1] 138 [2] 935 [3] 10 [4] 289 [5] 0 Hits@level+ = [0+] 3897 [1+] 1372 [2+] 1234 [3+] 299 [4+] 289 [5+] 0 Hits/KSLOC@level+ = [0+] 46.2585 [1+] 16.286 [2+] 14.6479 [3+] 3.54921 [4+] 3.43051 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.