Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/comskip-0.82.009+ds.1/ccextratorwin/608.c Examining data/comskip-0.82.009+ds.1/ccextratorwin/608.h Examining data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c Examining data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h Examining data/comskip-0.82.009+ds.1/ccextratorwin/encoding.c Examining data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c Examining data/comskip-0.82.009+ds.1/ccextratorwin/myth.c Examining data/comskip-0.82.009+ds.1/comskip.c Examining data/comskip-0.82.009+ds.1/comskip.h Examining data/comskip-0.82.009+ds.1/config.h Examining data/comskip-0.82.009+ds.1/platform.c Examining data/comskip-0.82.009+ds.1/platform.h Examining data/comskip-0.82.009+ds.1/resource.h Examining data/comskip-0.82.009+ds.1/video_out_dx.c Examining data/comskip-0.82.009+ds.1/vo.h Examining data/comskip-0.82.009+ds.1/mpeg2dec.c Examining data/comskip-0.82.009+ds.1/video_out_sdl.c FINAL RESULTS: data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:704:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (new_correct, word); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:901:4: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy ((char *) usercolor_rgb,argv[i+1]); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1129:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (basefilename, inputfile[0]); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1139:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (wbout1.filename,basefilename); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1156:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (wbout1.filename,basefilename); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1158:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (wbout1.filename,(const char *) extension); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1183:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (wbout2.filename,basefilename); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1185:17: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (wbout2.filename,(const char *) extension); data/comskip-0.82.009+ds.1/comskip.c:2108:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(t, windowtitle, filename); data/comskip-0.82.009+ds.1/comskip.c:2632:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(frametext, "%s", dblSecondsToStrMinutes(F2T(frm))); data/comskip-0.82.009+ds.1/comskip.c:2649:21: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(t, "%s B=%i%1s V=%i%1s U=%i%1s AR=%4.2f Block #%i Length=%6.2fs Score=%6.2f Logo=%6.2f %s ", frametext, frame[frm].brightness, (frame[frm].isblack & C_b?"B":" "), frame[frm].volume, (frame[frm].volume<max_volume?"S":" "),frame[frm].uniform, (frame[frm].uniform<non_uniformity?"U":" "), frame[frm].ar_ratio, b, cblock[b].length, cblock[b].score, cblock[b].logo, CauseString(cblock[b].cause) data/comskip-0.82.009+ds.1/comskip.c:2652:21: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(t, "%s B=%i%1s V=%i%1s U=%i%1s AR=%4.2f ", frametext, frame[frm].brightness, (frame[frm].isblack & C_b?"B":" "), frame[frm].volume, (frame[frm].volume<max_volume?"S":" "),frame[frm].uniform, (frame[frm].uniform<non_uniformity?"U":" "), frame[frm].ar_ratio); data/comskip-0.82.009+ds.1/comskip.c:2655:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(t, "%s", frametext); data/comskip-0.82.009+ds.1/comskip.c:2672:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(x1,"Program Name : %s", XDS_block[i].name); data/comskip-0.82.009+ds.1/comskip.c:2735:13: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. sprintf(t, windowtitle, filename); data/comskip-0.82.009+ds.1/comskip.c:2791:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tsfilename, mpegfilename); data/comskip-0.82.009+ds.1/comskip.c:2801:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mpegfilename, tsfilename); data/comskip-0.82.009+ds.1/comskip.c:2806:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tsfilename, mpegfilename); data/comskip-0.82.009+ds.1/comskip.c:2814:13: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(mpegfilename, tsfilename); data/comskip-0.82.009+ds.1/comskip.c:4643:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(temp, "%s.ccyes", workbasename); data/comskip-0.82.009+ds.1/comskip.c:4646:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(temp, "%s.ccno", workbasename); data/comskip-0.82.009+ds.1/comskip.c:4651:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(temp, "%s.ccno", workbasename); data/comskip-0.82.009+ds.1/comskip.c:4654:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(temp, "%s.ccyes", workbasename); data/comskip-0.82.009+ds.1/comskip.c:6123:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.chap", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6140:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.cut", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6155:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.plist", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6172:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.incommercial", workbasename); data/comskip-0.82.009+ds.1/comskip.c:6188:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.chp", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6204:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.scf", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6219:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.edl", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6234:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.ffmeta", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6249:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.ffsplit", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6279:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.chap", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6295:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.edlp", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6311:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.bcf", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6326:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.edlx", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6352:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.VPrj", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6402:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.VPrj", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6431:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.chapters.xml", mpegfilename); data/comskip-0.82.009+ds.1/comskip.c:6448:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.cpf", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6454:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tempstr, inbasename); data/comskip-0.82.009+ds.1/comskip.c:6459:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tempstr, "%s%c%s", cwd, PATH_SEPARATOR, inbasename); data/comskip-0.82.009+ds.1/comskip.c:6476:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.vcf", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6482:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tempstr, inbasename); data/comskip-0.82.009+ds.1/comskip.c:6487:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tempstr, "%s%c%s", cwd, PATH_SEPARATOR, inbasename); data/comskip-0.82.009+ds.1/comskip.c:6501:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.vdr", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6507:17: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(tempstr, inbasename); data/comskip-0.82.009+ds.1/comskip.c:6512:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tempstr, "%s%c%s", cwd, PATH_SEPARATOR, inbasename); data/comskip-0.82.009+ds.1/comskip.c:6526:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.Xcl", mpegfilename); data/comskip-0.82.009+ds.1/comskip.c:6541:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.avs", mpegfilename); data/comskip-0.82.009+ds.1/comskip.c:6548:17: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(avisynth_file, avisynth_options, mpegfilename); data/comskip-0.82.009+ds.1/comskip.c:6560:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.wme", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6576:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.mls", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6598:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s_mpgtx.bat", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6615:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s_dvrcut.bat", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6623:17: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(dvrcut_file, dvrcut_options, inbasename, inbasename, inbasename ); data/comskip-0.82.009+ds.1/comskip.c:6634:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.xml", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6650:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s_mpeg2schnitt.bat", inbasename); data/comskip-0.82.009+ds.1/comskip.c:6691:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.mkvtoolnix.chapters", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6739:3: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.mkvtoolnix.tags", outbasename); data/comskip-0.82.009+ds.1/comskip.c:6964:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(scomment, dblSecondsToStrMinutes(get_frame_pts(start))); data/comskip-0.82.009+ds.1/comskip.c:6965:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(ecomment, dblSecondsToStrMinutes(get_frame_pts(end))); data/comskip-0.82.009+ds.1/comskip.c:7681:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.VPrj", outbasename); data/comskip-0.82.009+ds.1/comskip.c:7695:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.VPrj", outbasename); data/comskip-0.82.009+ds.1/comskip.c:7741:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(startTimespan, dblSecondsToStrMinutes(get_frame_pts(currentStart))); data/comskip-0.82.009+ds.1/comskip.c:7763:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(startTimespan, dblSecondsToStrMinutes(get_frame_pts(currentStart))); data/comskip-0.82.009+ds.1/comskip.c:7764:7: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(endTimespan, dblSecondsToStrMinutes(get_frame_pts(cblock[i].f_end))); data/comskip-0.82.009+ds.1/comskip.c:7797:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.tun", inbasename); data/comskip-0.82.009+ds.1/comskip.c:8032:13: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(training_file, TRAINING_LAYOUT, data/comskip-0.82.009+ds.1/comskip.c:8289:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmp, "%s%0f\n", str2, res); data/comskip-0.82.009+ds.1/comskip.c:8293:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmp, "%s%0f\n", str2, v); data/comskip-0.82.009+ds.1/comskip.c:8348:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tmp, "%s\"%s\"\n", str2, foundText); data/comskip-0.82.009+ds.1/comskip.c:8399:5: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat(ini_text, s); data/comskip-0.82.009+ds.1/comskip.c:8686:69: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "cutscene_dumpfile=", "")) != 0) strcpy(cutscenefile,ts); data/comskip-0.82.009+ds.1/comskip.c:8689:65: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "cutscenefile1=", "")) != 0) strcpy(cutscenefile1,ts); data/comskip-0.82.009+ds.1/comskip.c:8691:65: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "cutscenefile2=", "")) != 0) strcpy(cutscenefile2,ts); data/comskip-0.82.009+ds.1/comskip.c:8693:65: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "cutscenefile3=", "")) != 0) strcpy(cutscenefile3,ts); data/comskip-0.82.009+ds.1/comskip.c:8695:65: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "cutscenefile4=", "")) != 0) strcpy(cutscenefile4,ts); data/comskip-0.82.009+ds.1/comskip.c:8697:65: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "cutscenefile5=", "")) != 0) strcpy(cutscenefile5,ts); data/comskip-0.82.009+ds.1/comskip.c:8699:65: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "cutscenefile6=", "")) != 0) strcpy(cutscenefile6,ts); data/comskip-0.82.009+ds.1/comskip.c:8701:65: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "cutscenefile7=", "")) != 0) strcpy(cutscenefile7,ts); data/comskip-0.82.009+ds.1/comskip.c:8703:65: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "cutscenefile8=", "")) != 0) strcpy(cutscenefile8,ts); data/comskip-0.82.009+ds.1/comskip.c:8707:72: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "windowtitle=", windowtitle)) != 0) strcpy(windowtitle,ts); data/comskip-0.82.009+ds.1/comskip.c:8708:88: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "cuttermaran_options=", cuttermaran_options)) != 0) strcpy(cuttermaran_options,ts); data/comskip-0.82.009+ds.1/comskip.c:8709:90: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "mpeg2schnitt_options=", mpeg2schnitt_options)) != 0) strcpy(mpeg2schnitt_options,ts); data/comskip-0.82.009+ds.1/comskip.c:8710:82: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "avisynth_options=", avisynth_options)) != 0) strcpy(avisynth_options,ts); data/comskip-0.82.009+ds.1/comskip.c:8711:78: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). if ((ts = FindString(data, "dvrcut_options=", dvrcut_options)) != 0) strcpy(dvrcut_options,ts); data/comskip-0.82.009+ds.1/comskip.c:8818:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(incomingCommandLine, "\"%s\"", argv[0]); data/comskip-0.82.009+ds.1/comskip.c:8822:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(incomingCommandLine, "%s", argv[0]); data/comskip-0.82.009+ds.1/comskip.c:8827:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tempstr, "%s", incomingCommandLine); data/comskip-0.82.009+ds.1/comskip.c:8830:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(incomingCommandLine, "%s \"%s\"", tempstr, argv[i]); data/comskip-0.82.009+ds.1/comskip.c:8834:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(incomingCommandLine, "%s %s", tempstr, argv[i]); data/comskip-0.82.009+ds.1/comskip.c:8844:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(argument[i], argv[i]); data/comskip-0.82.009+ds.1/comskip.c:8923:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(mpegfilename, "%s", in->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:8947:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(shortbasename, &inbasename[i]); data/comskip-0.82.009+ds.1/comskip.c:9019:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(shortbasename, &inbasename[i]); data/comskip-0.82.009+ds.1/comskip.c:9021:35: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. if (mpegfilename[0] == 0) sprintf(mpegfilename, "%s.mpg", inbasename); data/comskip-0.82.009+ds.1/comskip.c:9084:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(shortbasename, &inbasename[i]); data/comskip-0.82.009+ds.1/comskip.c:9095:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(inifilename, "%s", cl_ini->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:9102:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(shortbasename, "%s", cl_work_fname->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:9107:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outputdirname, "%s", cl_work->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:9111:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(workbasename, "%s%c%s", outputdirname, PATH_SEPARATOR, shortbasename); data/comskip-0.82.009+ds.1/comskip.c:9112:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outbasename, workbasename); data/comskip-0.82.009+ds.1/comskip.c:9117:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(workbasename, inbasename); data/comskip-0.82.009+ds.1/comskip.c:9123:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outputdirname, "%s", out->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:9127:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(outbasename, "%s%c%s", outputdirname, PATH_SEPARATOR, shortbasename); data/comskip-0.82.009+ds.1/comskip.c:9132:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outbasename, inbasename); data/comskip-0.82.009+ds.1/comskip.c:9137:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(outbasename, workbasename); data/comskip-0.82.009+ds.1/comskip.c:9141:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(logofilename, "%s.logo.txt", workbasename); data/comskip-0.82.009+ds.1/comskip.c:9142:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(logfilename, "%s.log", workbasename); data/comskip-0.82.009+ds.1/comskip.c:9143:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.txt", outbasename); data/comskip-0.82.009+ds.1/comskip.c:9158:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(inifilename, "%s%ccomskip.ini", HomeDir, PATH_SEPARATOR); data/comskip-0.82.009+ds.1/comskip.c:9161:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(exefilename, "%s%ccomskip.exe", HomeDir, PATH_SEPARATOR); data/comskip-0.82.009+ds.1/comskip.c:9162:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(dictfilename, "%s%ccomskip.dictionary", HomeDir, PATH_SEPARATOR); data/comskip-0.82.009+ds.1/comskip.c:9173:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(logofilename, "%s", cl_logo->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:9452:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(out_filename, "%s.txt", outbasename); data/comskip-0.82.009+ds.1/comskip.c:9535:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.smi", outbasename); data/comskip-0.82.009+ds.1/comskip.c:9540:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.srt", outbasename); data/comskip-0.82.009+ds.1/comskip.c:10050:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(cutscenefile, osname); data/comskip-0.82.009+ds.1/comskip.c:10055:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(cutscenefile, "%s.dmp", workbasename); data/comskip-0.82.009+ds.1/comskip.c:12671:5: [4] (format) vsprintf: Potential format string problem (CWE-134). Make format string constant. vsprintf(debugText, fmt, ap); data/comskip-0.82.009+ds.1/comskip.c:13451:5: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(array, "%.*s%s", (int)(strlen(logfilename) - 4), logfilename,extension); data/comskip-0.82.009+ds.1/comskip.c:14267:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(line, "%s.data", workbasename); data/comskip-0.82.009+ds.1/comskip.c:16080:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.edl", outbasename); data/comskip-0.82.009+ds.1/comskip.c:16095:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.live", outbasename); data/comskip-0.82.009+ds.1/comskip.c:16111:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.xml", outbasename); data/comskip-0.82.009+ds.1/comskip.c:16220:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(filename, "%s.incommercial", workbasename); data/comskip-0.82.009+ds.1/comskip.c:16411:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(temp, "%s.mp2", workbasename); data/comskip-0.82.009+ds.1/comskip.c:16433:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(temp, "%s.m2v", workbasename); data/comskip-0.82.009+ds.1/comskip.c:16469:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(temp, "%s.data", workbasename); data/comskip-0.82.009+ds.1/mpeg2dec.c:257:40: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. #define DUMP_OPEN if (output_timing) { sprintf(tempstring, "%s.timing.csv", inbasename); timing_file = myfopen(tempstring, "w"); DUMP_HEADER } data/comskip-0.82.009+ds.1/mpeg2dec.c:1905:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(is->filename, mpegfilename); data/comskip-0.82.009+ds.1/mpeg2dec.c:2261:13: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(tempstring, "%s.timing.csv", inbasename); data/comskip-0.82.009+ds.1/platform.h:132:18: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define _cprintf printf data/comskip-0.82.009+ds.1/video_out_dx.c:933:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(instance->title, title); data/comskip-0.82.009+ds.1/video_out_dx.c:938:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(instance->title, title); data/comskip-0.82.009+ds.1/video_out_dx.c:579:29: [3] (misc) LoadLibrary: Ensure that the full path to the library is specified, or current directory may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to find library path, if you aren't already. instance->hddraw_dll = LoadLibrary ("DDRAW.DLL"); data/comskip-0.82.009+ds.1/ccextratorwin/608.c:54:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char enc_buffer[2048]; // Generic general purpose buffer data/comskip-0.82.009+ds.1/ccextratorwin/608.c:55:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char str[2048]; // Another generic general purpose buffer data/comskip-0.82.009+ds.1/ccextratorwin/608.c:59:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char encoded_crlf[16]; data/comskip-0.82.009+ds.1/ccextratorwin/608.c:61:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char encoded_br[16]; data/comskip-0.82.009+ds.1/ccextratorwin/608.c:68:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char usercolor_rgb[8]=""; data/comskip-0.82.009+ds.1/ccextratorwin/608.c:160:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (c,spell_correct[i],len); data/comskip-0.82.009+ds.1/ccextratorwin/608.c:402:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf ((char *) str,"<BODY><SAMI>\n"); data/comskip-0.82.009+ds.1/ccextratorwin/608.c:450:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char timeline[128]; data/comskip-0.82.009+ds.1/ccextratorwin/608.c:462:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (timeline,"%u\r\n",wb->data608->srt_counter); data/comskip-0.82.009+ds.1/ccextratorwin/608.c:465:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (timeline, "%02u:%02u:%02u,%03u --> %02u:%02u:%02u,%03u\r\n", data/comskip-0.82.009+ds.1/ccextratorwin/608.c:520:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf ((char *) str,"<SYNC start=\"%ld\"><P class=\"UNKNOWNCC\">\r\n",startms); data/comskip-0.82.009+ds.1/ccextratorwin/608.c:544:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf ((char *) str,"</P></SYNC>\r\n"); data/comskip-0.82.009+ds.1/ccextratorwin/608.c:551:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf ((char *) str,"<SYNC start=\"%ld\"><P class=\"UNKNOWNCC\"> </P></SYNC>\r\n\r\n",endms); data/comskip-0.82.009+ds.1/ccextratorwin/608.c:636:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (use_buffer->characters[j],use_buffer->characters[j+1],33); data/comskip-0.82.009+ds.1/ccextratorwin/608.c:637:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (use_buffer->colors[j],use_buffer->colors[j+1],33); data/comskip-0.82.009+ds.1/ccextratorwin/608.c:638:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (use_buffer->fonts[j],use_buffer->fonts[j+1],33); data/comskip-0.82.009+ds.1/ccextratorwin/608.h:44:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char characters[15][33]; data/comskip-0.82.009+ds.1/ccextratorwin/608.h:45:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char colors[15][33]; data/comskip-0.82.009+ds.1/ccextratorwin/608.h:46:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char fonts[15][33]; // Extra char at the end for a 0 data/comskip-0.82.009+ds.1/ccextratorwin/608.h:89:23: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern const unsigned char pac2_attribs[32][3]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:38:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char captions_buffer_1[MAX_CLOSED_CAPTION_DATA_PER_PICTURE*2]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:40:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char captions_buffer_2[MAX_CLOSED_CAPTION_DATA_PER_PICTURE*2]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:59:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ptsdata[5]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:61:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char lastptsdata[5]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:72:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char startbytes[STARTBYTESLENGTH]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:184:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *framerates_types[16]= data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:204:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *aspect_ratio_types[16]= data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:225:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *pict_types[8]= data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:237:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *cc_types[4] = data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:426:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (wb->buffer+wb->used, data, length); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:738:13: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *fi = fopen (filename,"rt"); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:740:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[35]; // For screen width (32)+CRLF+0 data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:901:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. strcpy ((char *) usercolor_rgb,argv[i+1]); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:917:23: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). screens_to_process=atoi (argv[i+1]); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1109:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. basefilename = (char *) malloc (strlen (inputfile[0])+1); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1113:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wbout1.filename = (char *) malloc (strlen (inputfile[0])+3+strlen (extension)); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1118:28: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wbout2.filename = (char *) malloc (strlen (inputfile[0])+3+strlen (extension)); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1140:13: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (wbout1.filename,".bin"); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1184:17: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat (wbout2.filename,"_2"); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1207:22: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((clean = fopen (clean_filename,"wb"))==NULL) data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1278:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (filebuffer, startbytes, STARTBYTESLENGTH); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1305:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char uc[3]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1306:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (uc,startbytes,3); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:13:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). #define FOPEN fopen data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:28:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). #define FOPEN fopen data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:29:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). #define OPEN open data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:100:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern const char *framerates_types[16]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:105:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern unsigned char startbytes[STARTBYTESLENGTH]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:119:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern unsigned char ptsdata[5]; // Original 5 bytes the MPEG clock came from data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:120:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern unsigned char lastptsdata[5]; // Original 5 bytes the previous MPEG clock came from data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:143:23: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (buffer!=NULL) memcpy (buffer,filebuffer+filebuffer_pos,bytes); \ data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:166:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern const char *aspect_ratio_types[16]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:167:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern const char *pict_types[8]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:168:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern const char *cc_types[4]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:195:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern unsigned char usercolor_rgb[8]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:225:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern unsigned char captions_buffer_1[MAX_CLOSED_CAPTION_DATA_PER_PICTURE*2]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:227:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern unsigned char captions_buffer_2[MAX_CLOSED_CAPTION_DATA_PER_PICTURE*2]; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:241:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern unsigned char encoded_crlf[16]; // We keep it encoded here so we don't have to do it many times data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.h:243:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern unsigned char encoded_br[16]; data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:28:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char tsheader[4]; // Last TS header read - might be the next one data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:116:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (lastptsdata, ptsdata,5); data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:244:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (fbuffer, filebuffer+filebuffer_pos, copy); data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:401:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char pts_raw[5]; data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:417:8: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (ptsdata, pts_raw, 5); data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:622:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data1[2]={0x80,0x80}, data2[2]={0x80,0x80}; data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:625:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data[3]; data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:658:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data1[2]={0x80,0x80}, data2[2]={0x80,0x80}; data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:661:19: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data[3]; data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:698:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data1[2], data2[2]; data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:918:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char data1[2]; data/comskip-0.82.009+ds.1/ccextratorwin/myth.c:20:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char psm_es_type[256]; data/comskip-0.82.009+ds.1/ccextratorwin/myth.c:554:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&linemask, meat + 3, 8); data/comskip-0.82.009+ds.1/ccextratorwin/myth.c:676:35: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const unsigned char avs_seqh[4] = { 0, 0, 1, 0xb0 }; data/comskip-0.82.009+ds.1/ccextratorwin/myth.c:677:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[8]; data/comskip-0.82.009+ds.1/ccextratorwin/myth.c:847:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (desp+saved,av.data,av.size); data/comskip-0.82.009+ds.1/comskip.c:334:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char cc1[2]; data/comskip-0.82.009+ds.1/comskip.c:335:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char cc2[2]; data/comskip-0.82.009+ds.1/comskip.c:359:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[40]; data/comskip-0.82.009+ds.1/comskip.c:377:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char text[256]; data/comskip-0.82.009+ds.1/comskip.c:486:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char incomingCommandLine[MAX_ARG]; data/comskip-0.82.009+ds.1/comskip.c:487:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char logofilename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:488:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char logfilename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:489:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mpegfilename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:490:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char exefilename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:491:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inbasename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:492:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char workbasename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:493:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outbasename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:494:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char shortbasename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:495:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char inifilename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:496:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dictfilename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:497:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char out_filename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:498:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char incommercial_filename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:500:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outputdirname[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:501:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:515:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char HomeDir[256]; // comskip home directory data/comskip-0.82.009+ds.1/comskip.c:516:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempString[256]; data/comskip-0.82.009+ds.1/comskip.c:543:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char haslogo[MAXWIDTH*MAXHEIGHT]; data/comskip-0.82.009+ds.1/comskip.c:585:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ini_text[40000]; data/comskip-0.82.009+ds.1/comskip.c:653:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cuttermaran_options[1024]; data/comskip-0.82.009+ds.1/comskip.c:654:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mpeg2schnitt_options[1024]; data/comskip-0.82.009+ds.1/comskip.c:655:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char avisynth_options[1024]; data/comskip-0.82.009+ds.1/comskip.c:656:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dvrcut_options[1024]; data/comskip-0.82.009+ds.1/comskip.c:675:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char windowtitle[1024] = "Comskip - %s"; data/comskip-0.82.009+ds.1/comskip.c:747:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cutscenefile[1024]; data/comskip-0.82.009+ds.1/comskip.c:748:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cutscenefile1[1024]; data/comskip-0.82.009+ds.1/comskip.c:749:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cutscenefile2[1024]; data/comskip-0.82.009+ds.1/comskip.c:750:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cutscenefile3[1024]; data/comskip-0.82.009+ds.1/comskip.c:751:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cutscenefile4[1024]; data/comskip-0.82.009+ds.1/comskip.c:752:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cutscenefile5[1024]; data/comskip-0.82.009+ds.1/comskip.c:753:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cutscenefile6[1024]; data/comskip-0.82.009+ds.1/comskip.c:754:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cutscenefile7[1024]; data/comskip-0.82.009+ds.1/comskip.c:755:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cutscenefile8[1024]; data/comskip-0.82.009+ds.1/comskip.c:762:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char cutscene[MAXCUTSCENES][MAXCSLENGTH]; data/comskip-0.82.009+ds.1/comskip.c:770:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char debugText[20000]; data/comskip-0.82.009+ds.1/comskip.c:792:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char horiz_count[MAXHEIGHT*MAXWIDTH]; data/comskip-0.82.009+ds.1/comskip.c:793:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char vert_count[MAXHEIGHT*MAXWIDTH]; data/comskip-0.82.009+ds.1/comskip.c:817:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char thoriz_edgemask[MAXHEIGHT*MAXWIDTH]; data/comskip-0.82.009+ds.1/comskip.c:818:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char tvert_edgemask[MAXHEIGHT*MAXWIDTH]; data/comskip-0.82.009+ds.1/comskip.c:824:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char choriz_edgemask[MAXHEIGHT*MAXWIDTH]; data/comskip-0.82.009+ds.1/comskip.c:825:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char cvert_edgemask[MAXHEIGHT*MAXWIDTH]; data/comskip-0.82.009+ds.1/comskip.c:898:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char hor_edgecount[MAXHEIGHT*MAXWIDTH]; data/comskip-0.82.009+ds.1/comskip.c:899:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ver_edgecount[MAXHEIGHT*MAXWIDTH]; data/comskip-0.82.009+ds.1/comskip.c:900:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char max_br[MAXHEIGHT*MAXWIDTH]; data/comskip-0.82.009+ds.1/comskip.c:901:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char min_br[MAXHEIGHT*MAXWIDTH]; data/comskip-0.82.009+ds.1/comskip.c:905:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char graph[MAXHEIGHT*MAXWIDTH*3]; data/comskip-0.82.009+ds.1/comskip.c:1014:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char cs[4][80]; data/comskip-0.82.009+ds.1/comskip.c:2051:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char t[1024]; data/comskip-0.82.009+ds.1/comskip.c:2052:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char x1[80]; data/comskip-0.82.009+ds.1/comskip.c:2053:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char x2[80]; data/comskip-0.82.009+ds.1/comskip.c:2054:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char x3[80]; data/comskip-0.82.009+ds.1/comskip.c:2055:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char x4[80]; data/comskip-0.82.009+ds.1/comskip.c:2056:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char x5[80]; data/comskip-0.82.009+ds.1/comskip.c:2057:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *tt[40]; data/comskip-0.82.009+ds.1/comskip.c:2058:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tbuf[80][80]; data/comskip-0.82.009+ds.1/comskip.c:2059:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char frametext[80]; data/comskip-0.82.009+ds.1/comskip.c:2627:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(frametext, "%8.2f", F2T(frm)); data/comskip-0.82.009+ds.1/comskip.c:2637:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(frametext, "%8i", frm); data/comskip-0.82.009+ds.1/comskip.c:2642:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(t, "max_volume=%d, non_uniformity=%d, max_avg_brightness=%d", max_volume, non_uniformity, max_avg_brightness); data/comskip-0.82.009+ds.1/comskip.c:2674:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(x2,"Program V-Chip : %4x", XDS_block[i].v_chip); data/comskip-0.82.009+ds.1/comskip.c:2676:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(x3,"Program duration: %2d:%02d", (XDS_block[i].duration & 0x3f00)/256, (XDS_block[i].duration & 0x3f) % 256); data/comskip-0.82.009+ds.1/comskip.c:2678:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(x4,"Program position: %2d:%02d", (XDS_block[i].position & 0x3f00)/256, (XDS_block[i].position & 0x3f) % 256); data/comskip-0.82.009+ds.1/comskip.c:2680:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(x5,"Composite Packet: %2d:%02d, %2d/%2d, ", (XDS_block[i].composite1 & 0x3f00)/256, (XDS_block[i].composite1 & 0x1f) % 256, (XDS_block[i].composite2 & 0x1f00)/256, (XDS_block[i].composite2 & 0x0f) % 256); data/comskip-0.82.009+ds.1/comskip.c:2690:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tt[i],"volume[%i] = %i", i, silenceHistogram[i]); data/comskip-0.82.009+ds.1/comskip.c:2781:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tsfilename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:2809:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&tsfilename[i], "dvr-ms"); data/comskip-0.82.009+ds.1/comskip.c:4639:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:6057:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char TempXmlFilename[300]; data/comskip-0.82.009+ds.1/comskip.c:6101:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempstr[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:6102:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cwd[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:6788:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char scomment[80]; data/comskip-0.82.009+ds.1/comskip.c:6789:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ecomment[80]; data/comskip-0.82.009+ds.1/comskip.c:7730:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char startTimespan[15]; data/comskip-0.82.009+ds.1/comskip.c:7731:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char endTimespan[15]; data/comskip-0.82.009+ds.1/comskip.c:8083:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). outf = open(outputdirname, O_CREAT | O_TRUNC | O_WRONLY, S_IRUSR | S_IWUSR); data/comskip-0.82.009+ds.1/comskip.c:8267:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[255]; data/comskip-0.82.009+ds.1/comskip.c:8312:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char foundText[1024]; data/comskip-0.82.009+ds.1/comskip.c:8313:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[255]; data/comskip-0.82.009+ds.1/comskip.c:8410:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tempString, "%i:%.2i:%.2i", hours, minutes, seconds); data/comskip-0.82.009+ds.1/comskip.c:8421:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tempString, "%0i:%.2i:%.2d.%.2d", hours, minutes, (int)seconds, (int)((seconds - (int)(seconds))*100) ); data/comskip-0.82.009+ds.1/comskip.c:8433:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tempString, "%0i:%.2i:%.2d.%.2d", hours, minutes, (int)seconds, (int)(((int)((seconds - (int)(seconds))*100.0)) * fps / 100.0)); data/comskip-0.82.009+ds.1/comskip.c:8443:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[60000]; data/comskip-0.82.009+ds.1/comskip.c:8729:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempstr[MAX_ARG]; data/comskip-0.82.009+ds.1/comskip.c:8941:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(inbasename, "%.*s", (int)strlen(in->filename[0]) - (int)strlen(in->extension[0]), in->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:8958:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(inifilename, "%.*scomskip.ini", i, inbasename); data/comskip-0.82.009+ds.1/comskip.c:8971:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(inbasename, "%.*s", (int)strlen(in->filename[0]) - (int)strlen(in->extension[0]), in->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:8972:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.mpg", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:8976:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.ts", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:8981:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.tp", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:8986:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.dvr-ms", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:8991:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.wtv", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:8996:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.mp4", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9001:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.mkv", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9020:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(inifilename, "%.*scomskip.ini", i, inbasename); data/comskip-0.82.009+ds.1/comskip.c:9037:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(inbasename, "%.*s", (int)strlen(in->filename[0]) - (int)strlen(in->extension[0]), in->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:9038:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.mpg", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9042:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.ts", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9047:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.tp", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9052:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.dvr-ms", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9057:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.wtv", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9062:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.mp4", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9067:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(mpegfilename, "%.*s.mkv", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9085:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(inifilename, "%.*scomskip.ini", i, inbasename); data/comskip-0.82.009+ds.1/comskip.c:9148:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(inifilename, "comskip.ini"); data/comskip-0.82.009+ds.1/comskip.c:9151:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(exefilename, "comskip.exe"); data/comskip-0.82.009+ds.1/comskip.c:9152:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(dictfilename, "comskip.dictionary"); data/comskip-0.82.009+ds.1/comskip.c:9527:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char filename[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:9528:15: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char *CEW_argv[10]; data/comskip-0.82.009+ds.1/comskip.c:10027:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cs[MAXCSLENGTH]; data/comskip-0.82.009+ds.1/comskip.c:10051:9: [2] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant string. strcat(cutscenefile, ".dmp"); data/comskip-0.82.009+ds.1/comskip.c:10406:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lastHistogram, histogram, sizeof(histogram)); data/comskip-0.82.009+ds.1/comskip.c:10452:21: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (framearray) memcpy(frame[frame_count].histogram, histogram, sizeof(histogram)); data/comskip-0.82.009+ds.1/comskip.c:10462:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lastHistogram, histogram, sizeof(histogram)); data/comskip-0.82.009+ds.1/comskip.c:11727:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(logoFrameBuffer[newestLogoBuffer], frame_ptr, i); data/comskip-0.82.009+ds.1/comskip.c:11972:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(choriz_edgemask, thoriz_edgemask, width * height); data/comskip-0.82.009+ds.1/comskip.c:11973:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(cvert_edgemask, tvert_edgemask, width * height); data/comskip-0.82.009+ds.1/comskip.c:12152:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outbuf[MAXWIDTH+1]; data/comskip-0.82.009+ds.1/comskip.c:12207:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char outbuf[MAXWIDTH+1]; data/comskip-0.82.009+ds.1/comskip.c:12451:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[2000]; data/comskip-0.82.009+ds.1/comskip.c:13151:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char stars[256]; data/comskip-0.82.009+ds.1/comskip.c:13192:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char stars[256]; data/comskip-0.82.009+ds.1/comskip.c:13230:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char stars[256]; data/comskip-0.82.009+ds.1/comskip.c:13268:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char stars[256]; data/comskip-0.82.009+ds.1/comskip.c:13379:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char array[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:13380:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(array, "%.*s%i.frm", (int)(strlen(logfilename) - 4), logfilename,frame_number); data/comskip-0.82.009+ds.1/comskip.c:13440:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[2048]; data/comskip-0.82.009+ds.1/comskip.c:13441:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char split[256]; data/comskip-0.82.009+ds.1/comskip.c:13442:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char array[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:13542:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(array, "%.*s.dif", (int)(strlen(logfilename) - 4), logfilename); data/comskip-0.82.009+ds.1/comskip.c:13761:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char array[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:13767:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(array, "%.*s.aspects", (int)(strlen(logfilename) - 4), logfilename); data/comskip-0.82.009+ds.1/comskip.c:13801:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char array[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:13806:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(array, "%.*s.black.csv", (int)(strlen(logfilename) - 4), logfilename); data/comskip-0.82.009+ds.1/comskip.c:13845:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char array[MAX_PATH]; data/comskip-0.82.009+ds.1/comskip.c:13847:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char lp[10]; data/comskip-0.82.009+ds.1/comskip.c:13848:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(array, "%.*s.csv", (int)(strlen(logfilename) - 4), logfilename); data/comskip-0.82.009+ds.1/comskip.c:14074:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[2048]; data/comskip-0.82.009+ds.1/comskip.c:14075:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char split[256]; data/comskip-0.82.009+ds.1/comskip.c:14659:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char XDSbuffer[40][100]; data/comskip-0.82.009+ds.1/comskip.c:14665:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *ratingSystem[4] = { "MPAA", "TPG", "CE", "CF" }; data/comskip-0.82.009+ds.1/comskip.c:14670:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static unsigned char XDSbuf[MAXXDSBUFFER]; data/comskip-0.82.009+ds.1/comskip.c:14908:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char charmap[0x60] = data/comskip-0.82.009+ds.1/comskip.c:15346:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[2000]; data/comskip-0.82.009+ds.1/comskip.c:15347:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char hex[10]; data/comskip-0.82.009+ds.1/comskip.c:15377:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(hex, "%2x ",ccData[i]); data/comskip-0.82.009+ds.1/comskip.c:15640:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tempString, "NONE"); data/comskip-0.82.009+ds.1/comskip.c:15644:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tempString, "ROLLUP"); data/comskip-0.82.009+ds.1/comskip.c:15648:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tempString, "PAINTON"); data/comskip-0.82.009+ds.1/comskip.c:15652:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tempString, "POPON"); data/comskip-0.82.009+ds.1/comskip.c:15656:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tempString, "COMMERCIAL"); data/comskip-0.82.009+ds.1/comskip.c:15660:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(tempString, "%d",type); data/comskip-0.82.009+ds.1/comskip.c:15779:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char phrase[1024]; data/comskip-0.82.009+ds.1/comskip.c:15866:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[255]; data/comskip-0.82.009+ds.1/comskip.c:16407:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[256]; data/comskip-0.82.009+ds.1/comskip.c:16429:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[256]; data/comskip-0.82.009+ds.1/comskip.c:16463:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[2000]; data/comskip-0.82.009+ds.1/comskip.c:16474:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(temp, "%7d:%4d",framenum_real, length); data/comskip-0.82.009+ds.1/mpeg2dec.c:133:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[1024]; data/comskip-0.82.009+ds.1/mpeg2dec.c:254:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tempstring[512]; data/comskip-0.82.009+ds.1/mpeg2dec.c:291:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern char HomeDir[256]; data/comskip-0.82.009+ds.1/mpeg2dec.c:651:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&ac3_packet[ac3_packet_index], pkt_temp->data, pkt_temp->size); data/comskip-0.82.009+ds.1/mpeg2dec.c:806:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cur_pos[100] = "0:00:00"; data/comskip-0.82.009+ds.1/mpeg2dec.c:878:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(cur_pos, "%2i:%.2i:%.2i", cur_hour, cur_minute, cur_second); data/comskip-0.82.009+ds.1/mpeg2dec.c:946:30: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). sample_file = fopen("seektest.log", "a+"); data/comskip-0.82.009+ds.1/mpeg2dec.c:1051:27: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). sample_file = fopen("seektest.log", "a+"); data/comskip-0.82.009+ds.1/mpeg2dec.c:1451:35: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). sample_file = fopen("seektest.log", "a+"); data/comskip-0.82.009+ds.1/mpeg2dec.c:1491:39: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). sample_file = fopen("seektest.log", "a+"); data/comskip-0.82.009+ds.1/mpeg2dec.c:1516:39: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). sample_file = fopen("seektest.log", "a+"); data/comskip-0.82.009+ds.1/mpeg2dec.c:1871:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char line[1024]; data/comskip-0.82.009+ds.1/mpeg2dec.c:2152:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *aargv[20]; data/comskip-0.82.009+ds.1/mpeg2dec.c:2153:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char (argt[20])[1000]; data/comskip-0.82.009+ds.1/mpeg2dec.c:2360:47: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). sample_file = fopen("seektest.log", "a+"); data/comskip-0.82.009+ds.1/mpeg2dec.c:2479:31: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). sample_file = fopen("seektest.log", "a+"); data/comskip-0.82.009+ds.1/platform.c:16:14: [2] (buffer) MultiByteToWideChar: Requires maximum length in CHARACTERS, not bytes (CWE-120). lv_Len = MultiByteToWideChar(CP_UTF8, 0, in_Src, -1, out_Dst, in_MaxLen); data/comskip-0.82.009+ds.1/platform.c:42:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wf[2000]; data/comskip-0.82.009+ds.1/platform.c:50:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wf[2000], wm[2000]; data/comskip-0.82.009+ds.1/platform.c:60:5: [2] (buffer) wchar_t: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. wchar_t wf[2000]; data/comskip-0.82.009+ds.1/platform.c:75:10: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return fopen(f, m); data/comskip-0.82.009+ds.1/video_out_dx.c:44:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char osname[1024]; data/comskip-0.82.009+ds.1/video_out_dx.c:102:6: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[256]; data/comskip-0.82.009+ds.1/video_out_dx.c:841:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (dest[0], buf[0] + 2 * i * width, width); data/comskip-0.82.009+ds.1/video_out_dx.c:843:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (dest[0], buf[0] + (2 * i + 1) * width, width); data/comskip-0.82.009+ds.1/video_out_dx.c:845:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (dest[1], buf[1] + i * (width >> 1), width >> 1); data/comskip-0.82.009+ds.1/video_out_dx.c:847:11: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (dest[2], buf[2] + i * (width >> 1), width >> 1); data/comskip-0.82.009+ds.1/video_out_dx.c:915:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf0[MAXWIDTH*MAXHEIGHT*3]; data/comskip-0.82.009+ds.1/video_out_dx.c:916:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf1[MAXWIDTH*MAXHEIGHT]; data/comskip-0.82.009+ds.1/video_out_dx.c:917:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf2[MAXWIDTH*MAXHEIGHT]; data/comskip-0.82.009+ds.1/video_out_dx.c:919:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char *(buffer[3]) = {buf0,buf1,buf2}; data/comskip-0.82.009+ds.1/video_out_dx.c:949:6: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer[0], buf, instance->width*instance->height*3); data/comskip-0.82.009+ds.1/video_out_dx.c:1074:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char osname[1024]; data/comskip-0.82.009+ds.1/video_out_sdl.c:39:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. extern char osname[1024]; data/comskip-0.82.009+ds.1/video_out_sdl.c:306:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf0[MAXWIDTH*MAXHEIGHT*3]; data/comskip-0.82.009+ds.1/video_out_sdl.c:329:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(rgb->pixels, buf, rgb->w * rgb->h * rgb->format->BytesPerPixel); data/comskip-0.82.009+ds.1/ccextratorwin/608.c:150:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len=strlen (spell_correct[i]); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:695:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len =strlen (word); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:752:11: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). c =line+strlen (line)-1; data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:759:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (line)>32) data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:765:7: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (line)>0) data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:782:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (wbout1.filename != NULL && strlen(wbout1.filename) > 0 ) data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:896:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (argv[i+1])!=7 || argv[i+1][0]!='#') data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1109:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). basefilename = (char *) malloc (strlen (inputfile[0])+1); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1113:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wbout1.filename = (char *) malloc (strlen (inputfile[0])+3+strlen (extension)); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1113:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wbout1.filename = (char *) malloc (strlen (inputfile[0])+3+strlen (extension)); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1118:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wbout2.filename = (char *) malloc (strlen (inputfile[0])+3+strlen (extension)); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1118:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). wbout2.filename = (char *) malloc (strlen (inputfile[0])+3+strlen (extension)); data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1130:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (c=basefilename+strlen (basefilename)-1; c>basefilename && data/comskip-0.82.009+ds.1/ccextratorwin/ccextractor.c:1255:23: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). startbytes_avail=read (in,startbytes,STARTBYTESLENGTH); data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:222:9: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). i=read (in,fbuffer,bytes); data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:234:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). i =read (in, filebuffer+keep,FILEBUFFERSIZE-keep); data/comskip-0.82.009+ds.1/ccextratorwin/general_loop.c:256:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return copied+read(in,fbuffer,bytes); data/comskip-0.82.009+ds.1/comskip.c:2792:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(tsfilename); data/comskip-0.82.009+ds.1/comskip.c:2807:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(tsfilename); data/comskip-0.82.009+ds.1/comskip.c:4589:21: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy((char*)cc_text[j].text, (char*)cc_text[j + 1].text, sizeof(cc_text[j].text)); data/comskip-0.82.009+ds.1/comskip.c:8278:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str1 += strlen(str2); data/comskip-0.82.009+ds.1/comskip.c:8295:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(tmp); data/comskip-0.82.009+ds.1/comskip.c:8323:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str1 += strlen(str2); data/comskip-0.82.009+ds.1/comskip.c:8843:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). argument[i] = malloc(sizeof(char) * (strlen(argv[i]) + 1)); data/comskip-0.82.009+ds.1/comskip.c:8941:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(inbasename, "%.*s", (int)strlen(in->filename[0]) - (int)strlen(in->extension[0]), in->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:8941:73: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(inbasename, "%.*s", (int)strlen(in->filename[0]) - (int)strlen(in->extension[0]), in->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:8942:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(inbasename); data/comskip-0.82.009+ds.1/comskip.c:8971:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(inbasename, "%.*s", (int)strlen(in->filename[0]) - (int)strlen(in->extension[0]), in->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:8971:77: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(inbasename, "%.*s", (int)strlen(in->filename[0]) - (int)strlen(in->extension[0]), in->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:8972:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.mpg", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:8976:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.ts", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:8981:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.tp", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:8986:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.dvr-ms", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:8991:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.wtv", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:8996:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.mp4", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9001:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.mkv", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9014:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(inbasename); data/comskip-0.82.009+ds.1/comskip.c:9037:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(inbasename, "%.*s", (int)strlen(in->filename[0]) - (int)strlen(in->extension[0]), in->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:9037:77: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(inbasename, "%.*s", (int)strlen(in->filename[0]) - (int)strlen(in->extension[0]), in->filename[0]); data/comskip-0.82.009+ds.1/comskip.c:9038:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.mpg", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9042:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.ts", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9047:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.tp", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9052:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.dvr-ms", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9057:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.wtv", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9062:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.mp4", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9067:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(mpegfilename, "%.*s.mkv", (int)strlen(inbasename), inbasename); data/comskip-0.82.009+ds.1/comskip.c:9079:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(inbasename); data/comskip-0.82.009+ds.1/comskip.c:9108:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(outputdirname); data/comskip-0.82.009+ds.1/comskip.c:9124:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i = strlen(outputdirname); data/comskip-0.82.009+ds.1/comskip.c:12495:16: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). temp = getc(logo_file); data/comskip-0.82.009+ds.1/comskip.c:12502:20: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). temp = getc(logo_file); data/comskip-0.82.009+ds.1/comskip.c:12503:38: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (temp == '\n') temp = getc(logo_file); // If a carrage return was retrieved, get the next character data/comskip-0.82.009+ds.1/comskip.c:12521:16: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). temp = getc(logo_file); data/comskip-0.82.009+ds.1/comskip.c:12528:20: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). temp = getc(logo_file); data/comskip-0.82.009+ds.1/comskip.c:12529:38: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (temp == '\n') temp = getc(logo_file); // If a carrage return was retrieved, get the next character data/comskip-0.82.009+ds.1/comskip.c:12547:16: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). temp = getc(logo_file); data/comskip-0.82.009+ds.1/comskip.c:12556:24: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). temp = getc(logo_file); data/comskip-0.82.009+ds.1/comskip.c:12557:42: [1] (buffer) getc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (temp == '\n') temp = getc(logo_file); // If a carrage return was retrieved, get the next character data/comskip-0.82.009+ds.1/comskip.c:13380:40: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(array, "%.*s%i.frm", (int)(strlen(logfilename) - 4), logfilename,frame_number); data/comskip-0.82.009+ds.1/comskip.c:13451:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(array, "%.*s%s", (int)(strlen(logfilename) - 4), logfilename,extension); data/comskip-0.82.009+ds.1/comskip.c:13463:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(line) > 27) data/comskip-0.82.009+ds.1/comskip.c:13467:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(line) > 42) data/comskip-0.82.009+ds.1/comskip.c:13480:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). while (fgets(line, sizeof(line), raw) != NULL && strlen(line) > 1) data/comskip-0.82.009+ds.1/comskip.c:13482:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (line[strlen(line)-1] != '\n') data/comskip-0.82.009+ds.1/comskip.c:13484:13: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(&line[strlen(line)], "\n"); data/comskip-0.82.009+ds.1/comskip.c:13484:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcat(&line[strlen(line)], "\n"); data/comskip-0.82.009+ds.1/comskip.c:13542:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(array, "%.*s.dif", (int)(strlen(logfilename) - 4), logfilename); data/comskip-0.82.009+ds.1/comskip.c:13767:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(array, "%.*s.aspects", (int)(strlen(logfilename) - 4), logfilename); data/comskip-0.82.009+ds.1/comskip.c:13806:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(array, "%.*s.black.csv", (int)(strlen(logfilename) - 4), logfilename); data/comskip-0.82.009+ds.1/comskip.c:13848:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(array, "%.*s.csv", (int)(strlen(logfilename) - 4), logfilename); data/comskip-0.82.009+ds.1/comskip.c:14103:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(line) > 85) data/comskip-0.82.009+ds.1/comskip.c:14113:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(line) > 94) data/comskip-0.82.009+ds.1/comskip.c:14121:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(line) > 131) data/comskip-0.82.009+ds.1/comskip.c:14813:25: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(XDS_block[XDS_block_count].name, (const char*) &XDSbuf[2], n); data/comskip-0.82.009+ds.1/comskip.c:15800:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(phrase) < 1) continue; data/comskip-0.82.009+ds.1/mpeg2dec.c:386:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). i += strlen(p->name); data/comskip-0.82.009+ds.1/mpeg2dec.c:2193:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(ptr); data/comskip-0.82.009+ds.1/mpeg2dec.c:2195:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(HomeDir, ptr, len); data/comskip-0.82.009+ds.1/platform.h:129:15: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). #define _read read data/comskip-0.82.009+ds.1/platform.h:135:18: [1] (obsolete) usleep: This C routine is considered obsolete (as opposed to the shell command by the same name). The interaction of this function with SIGALRM and other timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead. #define Sleep(x) usleep((x)*1000L) data/comskip-0.82.009+ds.1/video_out_dx.c:983:10: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l = strlen(t); data/comskip-0.82.009+ds.1/video_out_dx.c:1001:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l = strlen(t); ANALYSIS SUMMARY: Hits = 491 Lines analyzed = 27125 in approximately 0.70 seconds (38770 lines/second) Physical Source Lines of Code (SLOC) = 21813 Hits@level = [0] 630 [1] 82 [2] 272 [3] 1 [4] 136 [5] 0 Hits@level+ = [0+] 1121 [1+] 491 [2+] 409 [3+] 137 [4+] 136 [5+] 0 Hits/KSLOC@level+ = [0+] 51.3914 [1+] 22.5095 [2+] 18.7503 [3+] 6.28066 [4+] 6.23481 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.