Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/dcl-7.4.0/src/env1/colormap/cvcmap.c Examining data/dcl-7.4.0/src/env2/dclexec/dclexec.c Examining data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c Examining data/dcl-7.4.0/src/env2/dclver/dclver.c Examining data/dcl-7.4.0/src/grph1/swpack/cfnchr.c Examining data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c Examining data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c Examining data/dcl-7.4.0/src/math1/gt2dlib/g2qgrd.c Examining data/dcl-7.4.0/src/misc1/bitlib/bitlib.h Examining data/dcl-7.4.0/src/misc1/bitlib/iand.c Examining data/dcl-7.4.0/src/misc1/bitlib/ior.c Examining data/dcl-7.4.0/src/misc1/bitlib/ishift.c Examining data/dcl-7.4.0/src/misc1/clcklib/clckst.c Examining data/dcl-7.4.0/src/misc1/datelib/dateq3.c Examining data/dcl-7.4.0/src/misc1/misclib/dclvnm.c Examining data/dcl-7.4.0/src/misc1/timelib/timeq3.c Examining data/dcl-7.4.0/src/misc2/cwrap/cdcl.h Examining data/dcl-7.4.0/src/misc2/cwrap/cmsgdmp.c Examining data/dcl-7.4.0/src/misc2/cwrap/libf2cdcl.h FINAL RESULTS: data/dcl-7.4.0/src/env1/colormap/cvcmap.c:26:2: [4] (buffer) scanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. scanf ("%s", color); data/dcl-7.4.0/src/env2/dclexec/dclexec.c:22:6: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy (carg, argv[i]); data/dcl-7.4.0/src/env2/dclexec/dclexec.c:30:3: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (cmd, cpar); data/dcl-7.4.0/src/env2/dclexec/dclexec.c:35:2: [4] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). strcat (cmd, argv[1]); data/dcl-7.4.0/src/env2/dclexec/dclexec.c:36:7: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. retv=system (cmd); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:37:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nm,name); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:41:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(val,vl); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:50:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nm,name); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:54:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(val,vl); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:62:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nm,name); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:65:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nm,name); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:575:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (cout, "%s_%0*d.eps", dmpfile,dmpdgt, page); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:592:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (cout, "%s_%0*d.svg", dmpfile,dmpdgt, page); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:598:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (cout, "%s.pdf", dmpfile); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:600:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (cout, "%s_%0*d.pdf", dmpfile,dmpdgt, page); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:812:12: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanret=fscanf(stream, "%d : %s", &ncolor, c); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:814:14: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanret=fscanf(stream, "%6hd%6hd%6hd : %s", &rx[n], &gx[n], &bx[n], c); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:842:14: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanret=fscanf(stream, "%4d%4d%3d%3d%s", data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1032:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (cout, "%s_%0*d.%s", dmpfile,dmpdgt, page, imgfmt); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1067:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf (cout, "%s_%0*d.%s", dmpfile,dmpdgt, page, imgfmt); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1702:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&string[length], sup_span); length += strlen(sup_span); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1704:9: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&string[length], sub_span); length += strlen(sub_span); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1715:11: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&string[length], sup_span); length += strlen(sup_span); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1717:11: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&string[length], sub_span); length += strlen(sub_span); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1745:11: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(&string[length], over_span); length += strlen(over_span); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:2053:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(fontfamily, font); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:2109:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(selected_font, fontfamily); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:2679:12: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanret=fscanf(stream, "%d : %s", &ncolor, c); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:2681:14: [4] (buffer) fscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. fscanret=fscanf(stream, "%6hd%6hd%6hd : %s", &rx[n], &gx[n], &bx[n], c); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:53:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nm,name); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:57:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(val,vl); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:66:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nm,name); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:70:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(val,vl); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:78:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nm,name); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:81:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(nm,name); data/dcl-7.4.0/src/env1/colormap/cvcmap.c:18:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char color[16]; data/dcl-7.4.0/src/env2/dclexec/dclexec.c:11:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char carg[40], cmd[200], *cpar, *ceq; data/dcl-7.4.0/src/env2/dclexec/dclexec.c:20:2: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy (cmd, "env"); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:33:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nm[1024]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:34:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vl[1024]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:46:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nm[1024]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:47:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vl[1024]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:59:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nm[1024]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:120:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fdatbuff[80]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:148:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char number[17]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:149:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(number,"%f ",num); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:175:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cimgfmt[8]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:177:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char clrmap[2048],cbmmap[2048],file[2048],title[2048]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:179:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[1024]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:227:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pmname[2048]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:239:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pmname[2048]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:252:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pmname[2048]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:333:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char objname[2048]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:334:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comment[2048]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:348:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char objname[2048]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:389:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[2048]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:426:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[8096]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:446:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char selected_font[4096]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:455:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char family[4096]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:488:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[4096]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:696:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char clrmap[2048]; data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:713:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char recvBuffer[BUFSIZE];//receive temporary buffer data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:720:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char rmsg[8192]; data/dcl-7.4.0/src/env2/dclver/dclver.c:10:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vname[LENVN]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:82:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char dmpfile[80], xtitle[80]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:83:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char bmline[MAXBMP][260]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:114:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char imgfmt[8]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:148:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char fontlist[255] = { 41, 42, 43, 44, 55, 66, 77, 85, 95 }; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:216:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pmn[8]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:233:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pmn[8]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:245:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char pmn[8]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:567:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cout[64]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:673:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c[80], cmapz[80], bmapz[80]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:805:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((stream = fopen(cmapz, "r")) == NULL) { data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:833:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((stream = fopen(bmapz, "r")) == NULL) { data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:942:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cout[64]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1006:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cout[64]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1011:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cnum[4]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1038:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(cnum, "%d", (int)(imgcmp*9)); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1042:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(cnum, "%d", (int)((1-imgcmp)*100)); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1073:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(cnum, "%d", (int)(imgcmp*9)); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1077:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(cnum, "%d", (int)((1-imgcmp)*100)); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1310:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sub_span[128] = {0}, sup_span[128]={0}; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1311:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char over_span[128]={0}; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1312:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dclextchar[2048]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1333:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(sup_span,"<span size='%d' rise='%d'>", (int)(sg_small*fontsize), sup_rise ); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1334:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(sub_span,"<span size='%d' rise='%d'>", (int)(sg_small*fontsize), sub_rise ); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1357:19: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&dclextchar[j], "\\L"); j += strlen("\\L"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1359:19: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&dclextchar[j], "\\R"); j += strlen("\\R"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1361:19: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&dclextchar[j], "\\B"); j += strlen("\\B"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1363:19: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&dclextchar[j], "\\K"); j += strlen("\\K"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1706:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "</span>"); length += strlen("</span>"); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1711:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "</span>"); length += strlen("</span>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1719:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "<span font_desc='DCLMarker Light'>"); length += strlen("<span font_desc='DCLMarker Light'>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1721:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "<span font_desc='DCLMarker Regular'>"); length += strlen("<span font_desc='DCLMarker Regular'>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1723:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "<span font_desc='DCLMarker Bold'>"); length += strlen("<span font_desc='DCLMarker Bold'>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1725:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "<span font_desc='DCLMarker Black'>"); length += strlen("<span font_desc='DCLMarker Black'>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1739:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(over_span,"<span letter_spacing='%d'> </span><span rise='%d' letter_spacing='%d'>", data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1742:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(over_span,"<span letter_spacing='%d'> </span><span rise='%d' letter_spacing='%d'>", data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1765:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "</span>"); length += strlen("</span>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1770:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "</span>"); length += strlen("</span>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1783:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "<span font_desc='DCLMarker "); length += strlen("<span font_desc='DCLMarker "); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1786:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "Light"); length += strlen("Light"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1788:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "Regular"); length += strlen("Regular"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1790:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "Bold"); length += strlen("Bold"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1792:11: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "Black"); length += strlen("Black"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1794:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "'>"); length += strlen("'>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1843:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "</span>"); length += strlen("</span>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1854:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "&"); length += strlen("&"); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1856:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "<"); length += strlen("<"); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1858:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], ">"); length += strlen(">"); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1875:5: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy(&string[length], "</span>"); length += strlen("</span>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1907:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[32768]={0} ; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1955:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char string[32768]={0}; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:2268:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char bitmap[16384]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:2661:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char c[80],cmapz[80]; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:2672:17: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if ((stream = fopen(cmapz, "r")) == NULL) { data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:26:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char recvBuffer[BUFSIZE];//receive temporary buffer data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:27:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char sendBuffer[BUFSIZE]; // send temporary buffer data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:49:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nm[1024]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:50:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vl[1024]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:62:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nm[1024]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:63:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char vl[1024]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:75:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char nm[1024]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:88:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char srvaddr[4096]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:90:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char number[16]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:202:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char number[17]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:206:3: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(number,"%f ",num); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:238:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fdatbuff[80]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:284:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char senddat[8]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:303:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char senddat[8]; data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:321:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char senddat[8]; data/dcl-7.4.0/src/misc1/misclib/dclvnm.c:32:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (cvname, buf, minlen); data/dcl-7.4.0/src/misc2/cwrap/cmsgdmp.c:60:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char cprc[32]; data/dcl-7.4.0/src/misc2/cwrap/cmsgdmp.c:63:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char clevx[1], cmsgx[200], csubx[32]; data/dcl-7.4.0/src/misc2/cwrap/cmsgdmp.c:216:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char cprc[32]; data/dcl-7.4.0/src/misc2/cwrap/cmsgdmp.c:219:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char clevx[1], cmsgx[200], csubx[32]; data/dcl-7.4.0/src/misc2/cwrap/cmsgdmp.c:366:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char clv1[8], clv2[8]; data/dcl-7.4.0/src/misc2/cwrap/cmsgdmp.c:525:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(lp0, lp1, L); data/dcl-7.4.0/src/env2/dclexec/dclexec.c:34:2: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat (cmd, " "); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:21:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen=strlen(text); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:38:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen=strlen(nm); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:51:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen=strlen(nm); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:63:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen=strlen(nm); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:150:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(number,strlen(number)); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:396:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(text,strlen(text)); data/dcl-7.4.0/src/env2/dclsrv/dclsrv.c:449:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(selected_font,strlen(selected_font)); data/dcl-7.4.0/src/grph1/swpack/cfnchr.c:11:5: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (ch1, ch2, lch); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1357:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "\\L"); j += strlen("\\L"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1359:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "\\R"); j += strlen("\\R"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1361:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "\\B"); j += strlen("\\B"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1363:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "\\K"); j += strlen("\\K"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1369:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "・"); j += strlen("・"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1369:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "・"); j += strlen("・"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1371:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "+"); j += strlen("+"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1371:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "+"); j += strlen("+"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1373:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "*"); j += strlen("*"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1373:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "*"); j += strlen("*"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1375:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "○"); j += strlen("○"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1375:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "○"); j += strlen("○"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1377:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "×"); j += strlen("×"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1377:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "×"); j += strlen("×"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1379:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "□"); j += strlen("□"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1379:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "□"); j += strlen("□"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1381:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "△"); j += strlen("△"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1381:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "△"); j += strlen("△"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1383:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "◇"); j += strlen("◇"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1383:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "◇"); j += strlen("◇"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1385:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "☆"); j += strlen("☆"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1385:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "☆"); j += strlen("☆"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1387:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "●"); j += strlen("●"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1387:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "●"); j += strlen("●"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1389:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "■"); j += strlen("■"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1389:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "■"); j += strlen("■"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1391:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "▲"); j += strlen("▲"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1391:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "▲"); j += strlen("▲"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1393:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "◀"); j += strlen("◀"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1393:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "◀"); j += strlen("◀"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1395:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "▼"); j += strlen("▼"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1395:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "▼"); j += strlen("▼"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1397:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "▶"); j += strlen("▶"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1397:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "▶"); j += strlen("▶"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1399:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "★"); j += strlen("★"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1399:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "★"); j += strlen("★"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1401:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "⚑"); j += strlen("⚑"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1401:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "⚑"); j += strlen("⚑"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1403:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1403:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1405:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1405:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1407:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1407:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1409:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1409:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1411:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1411:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1413:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1413:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1415:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1415:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1417:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1417:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1419:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1419:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1421:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1421:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1423:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1423:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1425:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1425:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1427:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1427:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1429:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1429:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1433:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "②"); j += strlen("②"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1433:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "②"); j += strlen("②"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1435:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "○"); j += strlen("○"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1435:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "○"); j += strlen("○"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1437:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "③"); j += strlen("③"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1437:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "③"); j += strlen("③"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1439:21: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "①"); j += strlen("①"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1439:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "①"); j += strlen("①"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1455:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Α"); j += strlen("Α"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1455:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Α"); j += strlen("Α"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1457:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Β"); j += strlen("Β"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1457:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Β"); j += strlen("Β"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1459:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Γ"); j += strlen("Γ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1459:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Γ"); j += strlen("Γ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1461:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Δ"); j += strlen("Δ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1461:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Δ"); j += strlen("Δ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1463:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Ε"); j += strlen("Ε"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1463:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Ε"); j += strlen("Ε"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1465:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Ζ"); j += strlen("Ζ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1465:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Ζ"); j += strlen("Ζ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1467:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Η"); j += strlen("Η"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1467:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Η"); j += strlen("Η"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1469:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Θ"); j += strlen("Θ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1469:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Θ"); j += strlen("Θ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1471:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Ι"); j += strlen("Ι"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1471:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Ι"); j += strlen("Ι"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1473:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Κ"); j += strlen("Κ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1473:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Κ"); j += strlen("Κ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1475:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Λ"); j += strlen("Λ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1475:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Λ"); j += strlen("Λ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1477:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Μ"); j += strlen("Μ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1477:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Μ"); j += strlen("Μ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1479:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Ν"); j += strlen("Ν"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1479:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Ν"); j += strlen("Ν"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1481:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Ξ"); j += strlen("Ξ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1481:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Ξ"); j += strlen("Ξ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1483:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Ο"); j += strlen("Ο"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1483:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Ο"); j += strlen("Ο"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1485:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Π"); j += strlen("Π"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1485:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Π"); j += strlen("Π"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1487:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Ρ"); j += strlen("Ρ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1487:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Ρ"); j += strlen("Ρ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1489:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Σ"); j += strlen("Σ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1489:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Σ"); j += strlen("Σ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1491:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Τ"); j += strlen("Τ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1491:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Τ"); j += strlen("Τ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1493:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Υ"); j += strlen("Υ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1493:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Υ"); j += strlen("Υ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1495:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Φ"); j += strlen("Φ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1495:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Φ"); j += strlen("Φ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1497:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Χ"); j += strlen("Χ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1497:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Χ"); j += strlen("Χ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1499:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Ψ"); j += strlen("Ψ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1499:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Ψ"); j += strlen("Ψ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1501:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Ω"); j += strlen("Ω"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1501:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Ω"); j += strlen("Ω"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1503:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "α"); j += strlen("α"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1503:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "α"); j += strlen("α"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1505:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "β"); j += strlen("β"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1505:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "β"); j += strlen("β"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1507:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "γ"); j += strlen("γ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1507:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "γ"); j += strlen("γ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1509:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "δ"); j += strlen("δ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1509:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "δ"); j += strlen("δ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1511:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ε"); j += strlen("ε"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1511:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ε"); j += strlen("ε"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1513:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ζ"); j += strlen("ζ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1513:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ζ"); j += strlen("ζ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1515:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "η"); j += strlen("η"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1515:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "η"); j += strlen("η"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1517:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "θ"); j += strlen("θ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1517:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "θ"); j += strlen("θ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1519:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ι"); j += strlen("ι"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1519:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ι"); j += strlen("ι"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1521:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "κ"); j += strlen("κ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1521:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "κ"); j += strlen("κ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1523:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "λ"); j += strlen("λ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1523:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "λ"); j += strlen("λ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1525:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "μ"); j += strlen("μ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1525:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "μ"); j += strlen("μ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1527:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ν"); j += strlen("ν"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1527:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ν"); j += strlen("ν"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1529:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ξ"); j += strlen("ξ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1529:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ξ"); j += strlen("ξ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1531:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ο"); j += strlen("ο"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1531:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ο"); j += strlen("ο"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1533:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "π"); j += strlen("π"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1533:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "π"); j += strlen("π"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1535:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ρ"); j += strlen("ρ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1535:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ρ"); j += strlen("ρ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1537:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "σ"); j += strlen("σ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1537:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "σ"); j += strlen("σ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1539:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "τ"); j += strlen("τ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1539:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "τ"); j += strlen("τ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1541:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "υ"); j += strlen("υ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1541:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "υ"); j += strlen("υ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1543:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "φ"); j += strlen("φ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1543:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "φ"); j += strlen("φ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1545:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "χ"); j += strlen("χ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1545:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "χ"); j += strlen("χ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1547:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ψ"); j += strlen("ψ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1547:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ψ"); j += strlen("ψ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1549:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ω"); j += strlen("ω"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1549:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ω"); j += strlen("ω"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1551:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "‘"); j += strlen("‘"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1551:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "‘"); j += strlen("‘"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1553:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "’"); j += strlen("’"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1553:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "’"); j += strlen("’"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1555:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "→"); j += strlen("→"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1555:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "→"); j += strlen("→"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1557:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "↑"); j += strlen("↑"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1557:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "↑"); j += strlen("↑"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1559:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "←"); j += strlen("←"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1559:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "←"); j += strlen("←"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1561:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "↓"); j += strlen("↓"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1561:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "↓"); j += strlen("↓"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1563:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "‖"); j += strlen("‖"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1563:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "‖"); j += strlen("‖"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1565:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "⊥"); j += strlen("⊥"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1565:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "⊥"); j += strlen("⊥"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1567:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∠"); j += strlen("∠"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1567:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∠"); j += strlen("∠"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1569:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∴"); j += strlen("∴"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1569:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∴"); j += strlen("∴"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1571:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1571:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1573:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∾"); j += strlen("∾"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1573:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∾"); j += strlen("∾"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1575:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∞"); j += strlen("∞"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1575:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∞"); j += strlen("∞"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1577:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "−"); j += strlen("−"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1577:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "−"); j += strlen("−"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1579:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "+"); j += strlen("+"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1579:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "+"); j += strlen("+"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1581:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "±"); j += strlen("±"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1581:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "±"); j += strlen("±"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1583:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∓"); j += strlen("∓"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1583:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∓"); j += strlen("∓"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1585:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "×"); j += strlen("×"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1585:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "×"); j += strlen("×"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1587:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∙"); j += strlen("∙"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1587:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∙"); j += strlen("∙"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1589:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "÷"); j += strlen("÷"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1589:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "÷"); j += strlen("÷"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1591:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "="); j += strlen("="); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1591:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "="); j += strlen("="); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1593:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "≠"); j += strlen("≠"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1593:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "≠"); j += strlen("≠"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1595:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "≡"); j += strlen("≡"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1595:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "≡"); j += strlen("≡"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1597:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "<"); j += strlen("<"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1597:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "<"); j += strlen("<"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1599:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], ">"); j += strlen(">"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1599:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], ">"); j += strlen(">"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1601:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "≦"); j += strlen("≦"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1601:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "≦"); j += strlen("≦"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1603:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "≧"); j += strlen("≧"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1603:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "≧"); j += strlen("≧"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1605:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∝"); j += strlen("∝"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1605:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∝"); j += strlen("∝"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1607:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∼"); j += strlen("∼"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1607:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∼"); j += strlen("∼"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1609:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "^"); j += strlen("^"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1609:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "^"); j += strlen("^"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1611:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "´"); j += strlen("´"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1611:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "´"); j += strlen("´"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1613:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "`"); j += strlen("`"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1613:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "`"); j += strlen("`"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1615:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "⏝"); j += strlen("⏝"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1615:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "⏝"); j += strlen("⏝"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1617:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "√"); j += strlen("√"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1617:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "√"); j += strlen("√"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1619:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "⊂"); j += strlen("⊂"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1619:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "⊂"); j += strlen("⊂"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1621:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∪"); j += strlen("∪"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1621:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∪"); j += strlen("∪"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1623:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "⊃"); j += strlen("⊃"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1623:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "⊃"); j += strlen("⊃"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1625:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∩"); j += strlen("∩"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1625:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∩"); j += strlen("∩"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1627:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∈"); j += strlen("∈"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1627:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∈"); j += strlen("∈"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1629:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∂"); j += strlen("∂"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1629:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∂"); j += strlen("∂"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1631:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∇"); j += strlen("∇"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1631:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∇"); j += strlen("∇"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1633:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∫"); j += strlen("∫"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1633:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∫"); j += strlen("∫"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1635:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "∮"); j += strlen("∮"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1635:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "∮"); j += strlen("∮"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1637:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "‰"); j += strlen("‰"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1637:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "‰"); j += strlen("‰"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1639:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "Å"); j += strlen("Å"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1639:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "Å"); j += strlen("Å"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1641:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ℏ"); j += strlen("ℏ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1641:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ℏ"); j += strlen("ℏ"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1643:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1643:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1645:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "○"); j += strlen("○"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1645:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "○"); j += strlen("○"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1647:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1647:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1649:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1649:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], " "); j += strlen(" "); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1651:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "𝜖"); j += strlen("𝜖"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1651:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "𝜖"); j += strlen("𝜖"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1653:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "𝜗"); j += strlen("𝜗"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1653:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "𝜗"); j += strlen("𝜗"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1655:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "𝜛"); j += strlen("𝜛"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1655:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "𝜛"); j += strlen("𝜛"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1657:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "𝜚"); j += strlen("𝜚"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1657:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "𝜚"); j += strlen("𝜚"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1659:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "ς"); j += strlen("ς"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1659:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "ς"); j += strlen("ς"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1661:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "𝜙"); j += strlen("𝜙"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1661:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "𝜙"); j += strlen("𝜙"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1663:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "‐"); j += strlen("‐"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1663:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "‐"); j += strlen("‐"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1665:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "-"); j += strlen("–"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1665:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "-"); j += strlen("–"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1667:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&dclextchar[j], "—"); j += strlen("—"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1667:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&dclextchar[j], "—"); j += strlen("—"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1702:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], sup_span); length += strlen(sup_span); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1704:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], sub_span); length += strlen(sub_span); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1706:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "</span>"); length += strlen("</span>"); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1711:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "</span>"); length += strlen("</span>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1715:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], sup_span); length += strlen(sup_span); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1717:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], sub_span); length += strlen(sub_span); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1719:84: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "<span font_desc='DCLMarker Light'>"); length += strlen("<span font_desc='DCLMarker Light'>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1721:86: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "<span font_desc='DCLMarker Regular'>"); length += strlen("<span font_desc='DCLMarker Regular'>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1723:83: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "<span font_desc='DCLMarker Bold'>"); length += strlen("<span font_desc='DCLMarker Bold'>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1725:84: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "<span font_desc='DCLMarker Black'>"); length += strlen("<span font_desc='DCLMarker Black'>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1745:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], over_span); length += strlen(over_span); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1751:11: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "\\"); length += strlen("\\"); i++; flag_inspan = 0; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1751:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "\\"); length += strlen("\\"); i++; flag_inspan = 0; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1754:11: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "\\"); length += strlen("\\"); flag_inspan = 0; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1754:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "\\"); length += strlen("\\"); flag_inspan = 0; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1765:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "</span>"); length += strlen("</span>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1770:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "</span>"); length += strlen("</span>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1783:75: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "<span font_desc='DCLMarker "); length += strlen("<span font_desc='DCLMarker "); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1786:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "Light"); length += strlen("Light"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1788:57: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "Regular"); length += strlen("Regular"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1790:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "Bold"); length += strlen("Bold"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1792:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "Black"); length += strlen("Black"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1794:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "'>"); length += strlen("'>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1798:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "・"); length += strlen("・"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1798:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "・"); length += strlen("・"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1800:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "+"); length += strlen("+"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1800:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "+"); length += strlen("+"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1802:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "*"); length += strlen("*"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1802:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "*"); length += strlen("*"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1804:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "○"); length += strlen("○"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1804:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "○"); length += strlen("○"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1806:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "×"); length += strlen("×"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1806:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "×"); length += strlen("×"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1808:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "□"); length += strlen("□"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1808:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "□"); length += strlen("□"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1810:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "△"); length += strlen("△"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1810:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "△"); length += strlen("△"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1812:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "◇"); length += strlen("◇"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1812:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "◇"); length += strlen("◇"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1814:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "☆"); length += strlen("☆"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1814:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "☆"); length += strlen("☆"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1816:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "●"); length += strlen("●"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1816:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "●"); length += strlen("●"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1818:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "■"); length += strlen("■"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1818:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "■"); length += strlen("■"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1820:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "▲"); length += strlen("▲"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1820:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "▲"); length += strlen("▲"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1822:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "◀"); length += strlen("◀"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1822:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "◀"); length += strlen("◀"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1824:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "▼"); length += strlen("▼"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1824:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "▼"); length += strlen("▼"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1826:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "▶"); length += strlen("▶"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1826:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "▶"); length += strlen("▶"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1828:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "★"); length += strlen("★"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1828:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "★"); length += strlen("★"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1830:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "⚑"); length += strlen("⚑"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1830:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "⚑"); length += strlen("⚑"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1834:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "②"); length += strlen("②"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1834:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "②"); length += strlen("②"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1836:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "○"); length += strlen("○"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1836:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "○"); length += strlen("○"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1838:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "③"); length += strlen("③"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1838:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "③"); length += strlen("③"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1840:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "①"); length += strlen("①"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1840:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "①"); length += strlen("①"); break; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1843:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "</span>"); length += strlen("</span>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1850:9: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(&string[length], "−"); length += strlen("−"); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1850:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "−"); length += strlen("−"); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1854:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "&"); length += strlen("&"); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1856:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "<"); length += strlen("<"); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1858:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], ">"); length += strlen(">"); continue; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:1875:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strcpy(&string[length], "</span>"); length += strlen("</span>"); data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:2054:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). fontfamily[strlen(font)] = 0; data/dcl-7.4.0/src/grph1/swpack/zgpack.gtk.c:2211:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (i=0; i<strlen(family_name);i++){ data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:37:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen=strlen(text); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:54:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen=strlen(nm); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:67:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen=strlen(nm); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:79:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). slen=strlen(nm); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:207:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(number,strlen(number)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:415:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(cimgfmt,strlen(cimgfmt)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:417:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(clrmap,strlen(clrmap)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:418:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(cbmmap,strlen(cbmmap)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:419:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(file,strlen(file)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:420:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(title,strlen(title)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:475:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(objname,strlen(objname)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:476:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(comment,strlen(comment)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:486:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(objname,strlen(objname)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:579:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(text,strlen(text)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:605:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(family,strlen(family)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:646:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(string,strlen(string)); data/dcl-7.4.0/src/grph1/swpack/zgpack.socket.c:891:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). senddata(clrmap,strlen(clrmap)); data/dcl-7.4.0/src/misc1/misclib/dclvnm.c:30:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). lbuf = strlen (buf); ANALYSIS SUMMARY: Hits = 528 Lines analyzed = 7738 in approximately 1.23 seconds (6291 lines/second) Physical Source Lines of Code (SLOC) = 6512 Hits@level = [0] 54 [1] 389 [2] 104 [3] 0 [4] 35 [5] 0 Hits@level+ = [0+] 582 [1+] 528 [2+] 139 [3+] 35 [4+] 35 [5+] 0 Hits/KSLOC@level+ = [0+] 89.3735 [1+] 81.0811 [2+] 21.3452 [3+] 5.37469 [4+] 5.37469 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.