Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/matrix_test.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/matrixspecs.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/orbitbk.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/productinfo.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/products.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/tmp_strptime.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/unwrap.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/exceptions.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/geocode.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/processor.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc
Examining data/doris-5.0.3~beta+dfsg/doris_core/referencephase.cc
Examining data/doris-5.0.3~beta+dfsg/envisat_tools/envisat_dump_HH.c
Examining data/doris-5.0.3~beta+dfsg/envisat_tools/envisat_dump_VV.c
Examining data/doris-5.0.3~beta+dfsg/envisat_tools/envisat_dump_data.c
Examining data/doris-5.0.3~beta+dfsg/envisat_tools/envisat_dump_header.c
Examining data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/cpxconj.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/dateconv.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/flapjack.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/floatmask.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/floatmult.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/rasterheader.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/readrasterheader.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc
Examining data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc
FINAL RESULTS:
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:4795:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fileazi,TRACE.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:4832:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filerange,TRACE.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:329:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(odatafile,filtrangeinput.fomaster);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:330:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(processcf,processcontrol[pr_m_filtrange]); // control flag
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:334:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(odatafile,filtrangeinput.foslave);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:335:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(processcf,processcontrol[pr_s_filtrange]); // control flag
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:668:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile,interferogram.file);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:670:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cohfile,coherence.file);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:677:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile,filtphaseinput.fifiltphase);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:1259:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile,interferogram.file);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:1267:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile,filtphaseinput.fifiltphase);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:1645:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile,interferogram.file);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:1651:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile,filtphaseinput.fifiltphase);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:1978:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile,master.file);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2773:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(odatafile,filtrangeinput.fomaster);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2774:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(processcf,processcontrol[pr_m_filtrange]); // control flag
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2778:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(odatafile,filtrangeinput.foslave);
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2779:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(processcf,processcontrol[pr_s_filtrange]); // control flag
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1386:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(mread,processcontrol[pr_m_readfiles]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1392:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(mcrop,processcontrol[pr_m_crop]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1399:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(moversample,processcontrol[pr_m_oversample]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1406:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(mporbits,processcontrol[pr_m_porbits]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1412:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(mmorbits,processcontrol[pr_m_morbits]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1418:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(msimamp,processcontrol[pr_m_simamp]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1424:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(mtiming,processcontrol[pr_m_mtiming]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1430:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(mfiltazi,processcontrol[pr_m_filtazi]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1436:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(mfiltrange,processcontrol[pr_m_filtrange]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1442:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(mEXTRA,processcontrol[pr_m_EXTRA]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1448:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(sread,processcontrol[pr_s_readfiles]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1454:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(scrop,processcontrol[pr_s_crop]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1461:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(soversample,processcontrol[pr_s_oversample]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1468:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(sporbits,processcontrol[pr_s_porbits]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1474:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(smorbits,processcontrol[pr_s_morbits]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1480:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(sfiltazi,processcontrol[pr_s_filtazi]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1486:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(sfiltrange,processcontrol[pr_s_filtrange]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1492:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(sresample,processcontrol[pr_s_resample]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1498:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(sEXTRA,processcontrol[pr_s_EXTRA]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1504:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(icoarse,processcontrol[pr_i_coarse]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1510:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(icoarse2,processcontrol[pr_i_coarse2]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1516:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(ifine,processcontrol[pr_i_fine]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1522:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(itiming,processcontrol[pr_i_timing]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1528:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(idemassist,processcontrol[pr_i_demassist]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1534:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(icoregpm,processcontrol[pr_i_coregpm]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1540:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(iinterfero,processcontrol[pr_i_interfero]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1546:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(icoherence,processcontrol[pr_i_coherence]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1552:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(icomprefpha,processcontrol[pr_i_comprefpha]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1558:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(isubtrrefpha,processcontrol[pr_i_subtrrefpha]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1564:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(icomprefdem,processcontrol[pr_i_comprefdem]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1570:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(isubtrrefdem,processcontrol[pr_i_subtrrefdem]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1576:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(ifiltphase,processcontrol[pr_i_filtphase]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1582:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(iunwrap,processcontrol[pr_i_unwrap]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1588:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(iestorbits,processcontrol[pr_i_estorbits]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1594:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(islant2h,processcontrol[pr_i_slant2h]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1600:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(igeocoding,processcontrol[pr_i_geocoding]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1606:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(idinsar,processcontrol[pr_i_dinsar]);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1612:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(iEXTRA2,processcontrol[pr_i_EXTRA2]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:358:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:363:9: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:420:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:425:14: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:446:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:451:14: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:472:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:477:14: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:501:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:506:14: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:840:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_m_crop]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:924:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_m_oversample]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:997:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_m_simamp]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1199:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1204:9: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(cmd);// This does the actual work
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1254:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1259:14: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1280:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1285:14: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1306:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1311:14: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1335:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1340:14: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1699:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_s_crop]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1799:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_s_oversample]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1982:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(input_ms_filtazi.foname,input_ms_filtazi.fomaster);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1997:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_m_filtazi]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2013:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(input_ms_filtazi.foname,input_ms_filtazi.foslave);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2029:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_s_filtazi]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2079:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_m_filtrange]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2098:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_s_filtrange]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2140:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(input_fine_dem.firefdem, input_i_fine.firefdem);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2164:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(input_i_fine.forefdem, input_fine_dem.forefdem);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2204:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2208:35: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (input_i_fine.plotoffsets) system(cmd);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2395:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2399:31: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (input_i_coregpm.plot) system(cmd);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2593:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_s_resample]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2664:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_m_filtrange]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2683:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_s_filtrange]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2759:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_i_interfero]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2884:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_i_subtrrefpha]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2895:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(interferogram.file,input_i_subtrrefpha.forefpha);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2946:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_i_comprefdem]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3001:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_i_subtrrefdem]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3089:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_i_coherence]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3162:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_i_filtphase]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3217:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_i_dinsar]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3327:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_i_unwrap]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3446:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_i_slant2h]);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3641:11: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system("helpdoris");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3647:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3650:11: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(cmd);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3667:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(input_general.logfile,argv[1]); // store in logfile.
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:4071:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(scriptname,outfile.c_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:4076:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(scriptname,outfile.c_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:4170:5: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(DEBUG.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:4175:5: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/products.cc:2247:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(difffile,dinsarinput.fodinsar);
data/doris-5.0.3~beta+dfsg/doris_core/products.cc:2278:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(SECTIONID,processcontrol[pr_i_unwrap]);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1800:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fracsec1st,&c24zd1stazitime[index+1]);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1805:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fracseclst,&c24zdlstazitime[index+1]);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2287:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(c16bandazitot,c16prf);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2292:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(c16bandrangetot,c16samplingrate);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2899:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(c24zd1stazitime,"%11s %02d:%02d:%02d.%03d", datestring, hour,min,sec,msec);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3581:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3585:3: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3650:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3654:3: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3718:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3722:3: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3799:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3803:10: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3889:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3893:10: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3979:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(cmd, INFO.get_str());
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3983:10: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=system(cmd);// this does the work
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4481:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(infile,imageinfo.file);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4482:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(outfile,oversampleinput.fileoutovs);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1258:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(generalinput.m_resfile, keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1266:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(generalinput.s_resfile, keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1274:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(generalinput.logfile, keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1282:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(generalinput.i_resfile, keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1523:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(m_readfilesinput.volfile, word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1530:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(m_readfilesinput.leaderfile, word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1537:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(m_readfilesinput.nullfile, word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1544:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(m_readfilesinput.datfile, word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1646:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s_readfilesinput.volfile, word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1653:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s_readfilesinput.leaderfile, word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1660:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s_readfilesinput.nullfile, word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1667:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s_readfilesinput.datfile, word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1709:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(porbitsinput.m_orbdir, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1766:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(porbitsinput.s_orbdir, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1810:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(morbitsinputmaster.reforbitfile, word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1834:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(morbitsinputslave.reforbitfile, word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1845:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(m_cropinput.idcrop, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1852:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s_cropinput.idcrop, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1859:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(m_cropinput.filein1, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1866:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s_cropinput.filein1, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1873:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(m_cropinput.fileout1, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1880:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s_cropinput.fileout1, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1981:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(m_oversample.fileoutovs, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1988:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(s_oversample.fileoutovs, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2145:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(simampinput.firefdem, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2251:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(simampinput.fodem, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2259:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(simampinput.fosimamp, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2274:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(simampinput.fodemlp, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2280:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(simampinput.fothetalp, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2333:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mtiminginput.ifpositions, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2461:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filtaziinput.fomaster, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2468:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filtaziinput.foslave, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2532:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(coarsecorrinput.ifpositions, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2620:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fineinput.ifpositions, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2758:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fineinput.firefdem, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2929:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(demassistinput.firefdem, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3023:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(demassistinput.fodem, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3030:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(demassistinput.fodemi, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3037:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(demassistinput.forefdemhei, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3262:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filtrangeinput.fomaster, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3269:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filtrangeinput.foslave, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3332:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comprefphainput.ifpositions, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3454:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(resampleinput.fileout, word[1] ); // pass keyword (filename)
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3534:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(interferoinput.foint, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3541:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(interferoinput.focint, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3584:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(coherenceinput.focoh, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3591:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(coherenceinput.foccoh, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3639:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(subtrrefphainput.focint, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3646:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(subtrrefphainput.forefpha, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3677:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(subtrrefphainput.foh2ph, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3726:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filtphaseinput.fofiltphase, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3733:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filtphaseinput.fifiltphase , word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3799:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filtphaseinput.fikernel2d, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3808:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dinsarinput.fodinsar, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3814:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dinsarinput.foscaleduint, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3820:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dinsarinput.topomasterresfile, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3826:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dinsarinput.toposlaveresfile, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3832:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dinsarinput.topointresfile, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3865:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comprefdeminput.firefdem, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3979:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comprefdeminput.fodem, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3986:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comprefdeminput.fodemi, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3993:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comprefdeminput.forefdem, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4001:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comprefdeminput.foh2ph, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4009:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(comprefdeminput.forefdemhei, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4019:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(subtrrefdeminput.focint, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4082:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(unwrapinput.seedfile,keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4089:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(unwrapinput.fouint, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4122:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(unwrapinput.foregions, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4174:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(unwrapinput.snaphu_log, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4183:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(unwrapinput.snaphu_coh, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4360:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(slant2hinput.fohei, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4367:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(slant2hinput.fophi, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4374:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(slant2hinput.folam, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4389:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(geocodeinput.fophi, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4396:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(geocodeinput.folam, word[1] ); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4426:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(estorbitsinput.fiheightmap, word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4433:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(estorbitsinput.foresiduals, word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4470:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(estorbitsinput.ifpositions,word[1] );
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4533:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(estorbitsinput.reforbitfile, word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4540:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(estorbitsinput.foobsdata, word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:5006:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(filtphaseinput.fofiltphase,dummy127);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:5147:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dinsarinput.topomasterresfile,generalinput.m_resfile);
data/doris-5.0.3~beta+dfsg/doris_core/referencephase.cc:1306:19: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (outputdemi) strcpy(croppeddemi,demassistinput.fodemi);
data/doris-5.0.3~beta+dfsg/doris_core/referencephase.cc:2196:19: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if (outputdemi) strcpy(croppeddemi,refdeminput.fodemi);
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:299:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utc1,c12tijd0);
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:470:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(utc1,c12tijd0);
data/doris-5.0.3~beta+dfsg/doris_core/unwrap.cc:213:7: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(basecmdstring);
data/doris-5.0.3~beta+dfsg/doris_core/unwrap.cc:763:7: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(basecmdstring);
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:99:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(orbdir,inputorb.m_orbdir);
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:101:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(orbdir,inputorb.s_orbdir);
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:189:13: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
status=(system(strgetorb)); // run getorb / return positive values -1 --> 65280
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:1919:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pngFilename, filename);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:81:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(options.ofilename,argv[2]);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:84:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(options.ifilename,argv[1]);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxconj.cc:59:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,argv[2]); // output filename arg3
data/doris-5.0.3~beta+dfsg/sar_tools/cpxconj.cc:62:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile1,argv[1]); // input filename arg1
data/doris-5.0.3~beta+dfsg/sar_tools/cpxconj.cc:71:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,ifile1);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:67:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,argv[3]); // output filename arg3
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:70:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile2,argv[2]); // input filename arg1
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:73:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile1,argv[1]); // input filename arg1
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:82:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,ifile1);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:84:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,ifile2);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1793:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(input.cmap,optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1862:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(input.ifile,argv[optind]);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:63:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,argv[3]); // output filename arg3
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:66:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile2,argv[2]); // input filename arg1
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:69:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile1,argv[1]); // input filename arg1
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:78:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,ifile1);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:80:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,ifile2);
data/doris-5.0.3~beta+dfsg/sar_tools/dateconv.cc:43:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(indatestring,argv[1]);
data/doris-5.0.3~beta+dfsg/sar_tools/dateconv.cc:44:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(informat,argv[2]);
data/doris-5.0.3~beta+dfsg/sar_tools/dateconv.cc:45:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(outformat,argv[3]);
data/doris-5.0.3~beta+dfsg/sar_tools/flapjack.cc:72:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile,argv[1]); // input filename arg1
data/doris-5.0.3~beta+dfsg/sar_tools/flapjack.cc:97:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,omem.str().c_str());
data/doris-5.0.3~beta+dfsg/sar_tools/floatmask.cc:86:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile,argv[1]); // input filename arg1
data/doris-5.0.3~beta+dfsg/sar_tools/floatmask.cc:105:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,omem.str().c_str());
data/doris-5.0.3~beta+dfsg/sar_tools/floatmult.cc:68:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile,argv[1]); // input filename arg1
data/doris-5.0.3~beta+dfsg/sar_tools/floatmult.cc:87:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,omem.str().c_str());
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:68:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,argv[4]); // output filename arg4
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:72:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dummy,argv[3]); // interval: b
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:91:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(dummy,argv[2]); // interval: a
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:112:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ifile,argv[1]); // input filename arg1
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:126:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ofile,ifile);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1636:9: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
c = getopt_long(argc, argv, OPTSTRING, long_options, &option_index);
data/doris-5.0.3~beta+dfsg/sar_tools/rasterheader.cc:34:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "w:h:d:t:l:L:m:")) != -1)
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:261:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[ONE27]; // for errormessages
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:591:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[ONE27];// for errormessages
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:1104:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[ONE27]; // for errormessages
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:1503:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[ONE27]; // for errormessages
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:2531:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:3132:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
resfile=fopen("scratchresfine","a");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:3982:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4osfactor[4];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:3983:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10corrwinL[10];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:3984:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10corrwinP[10];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:3986:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (found) osfactor = uint(atoi(c4osfactor));
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:3988:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (found) corrwinL = int32(atoi(c10corrwinL));
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:3990:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (found) corrwinP = int32(atoi(c10corrwinP));
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:4555:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
cpm=fopen("CPM_Data","a");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:4794:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fileazi[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:4831:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filerange[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:4879:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:4880:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6054:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(PART[i],
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6227:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rsmethod[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6231:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"nearest neighbour");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6234:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"piecewise linear");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6237:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"4 point cubic convolution");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6240:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"6 point cubic convolution");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6243:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"6 point truncated sinc");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6246:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"8 point truncated sinc");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6249:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"16 point truncated sinc");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6252:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"4 point knab kernel");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6255:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"6 point knab kernel");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6258:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"8 point knab kernel");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6261:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"10 point knab kernel");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6264:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"16 point knab kernel");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6267:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"6 point raised cosine kernel");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6270:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsmethod,"12 point raised cosine kernel");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6277:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rsoformat[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6281:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsoformat,"complex_real4");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6284:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(rsoformat,"complex_short");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6410:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4osfactor[4];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6411:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10corrwinL[10];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6412:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10corrwinP[10];
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6414:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (found) osfactor = uint(atoi(c4osfactor));
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6416:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (found) corrwinL = int32(atoi(c10corrwinL));
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:6418:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (found) corrwinP = int32(atoi(c10corrwinP));
data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc:755:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfile.open(estorbitsinput.foobsdata, ios::out);
data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc:925:12: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
ofstream tmpfile("scratchtmp", ios::out | ios::trunc);
data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc:926:13: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
bk_assert(tmpfile,"disableOldOrbits: scratchtmp",__FILE__,__LINE__);
data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc:928:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc:932:7: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile << dummyline << endl;
data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc:937:5: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile << "#" << dummyline << endl;
data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc:944:7: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile << dummyline << endl;
data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc:948:3: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile.close();
data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc:1415:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/estorbit.cc:1775:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
resfile = fopen(estorbitsinput.foresiduals,"a");
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:312:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char oresfile[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:313:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char odatafile[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:314:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char odataformat[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:315:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char processcf[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:317:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(odataformat,"complex_real4");
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:319:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(odataformat,"complex_short");
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:328:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(oresfile,"scratchresMfiltrange");
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:333:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(oresfile,"scratchresSfiltrange");
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:666:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char infile[EIGHTY]; // file 2b filtered
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:667:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cohfile[EIGHTY]; // coherence file for modgoldstein
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:1258:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char infile[EIGHTY]; // file 2b filtered
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:1358:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[10*ONE27]; // take care of very large kernel
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:1644:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char infile[EIGHTY]; // file 2b filtered
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:1727:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[10*ONE27]; // prevent very large kernels
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:1977:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char infile[EIGHTY]; // file 2b filtered
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2754:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char oresfile[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2755:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char odatafile[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2756:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char odataformat[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2757:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char processcf[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2761:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(odataformat,"complex_real4");
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2763:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(odataformat,"complex_short");
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2772:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(oresfile,"scratchresMfiltrange");
data/doris-5.0.3~beta+dfsg/doris_core/filtering.cc:2777:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(oresfile,"scratchresSfiltrange");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:187:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test[64]={0};
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:213:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utc_ref[100] = "05-JAN-1985 01:02:03.000";
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:430:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ofile.open(file, ios::out | ios::app);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:605:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:696:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:697:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:801:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:810:12: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
ofstream tmpfile("scratchcopy", ios::out | ios::trunc); // temporary copy
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:811:13: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
bk_assert(tmpfile,"updateprocesscontrol: scratchcopy",__FILE__,__LINE__);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:822:5: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile << dummyline << endl; // copy line
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:827:3: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile.close();
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:846:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[EIGHTY]=" ";
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1025:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[4*ONE27] = " ";
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1059:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
resfile.open(file, ios::in);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1373:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *line,
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1383:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *endnormal[NUMPROCESSES];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1384:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mread[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1385:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mread,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1387:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(mread,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1390:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mcrop[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1391:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mcrop,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1393:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(mcrop,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1397:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char moversample[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1398:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(moversample,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1400:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(moversample,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1404:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mporbits[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1405:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mporbits,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1407:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(mporbits,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1410:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mmorbits[4*ONE27]; // [HB]
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1411:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mmorbits,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1413:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(mmorbits,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1416:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msimamp[4*ONE27]; // [MA]
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1417:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(msimamp,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1419:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(msimamp,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1422:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mtiming[4*ONE27]; // [MA]
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1423:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mtiming,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1425:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(mtiming,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1428:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mfiltazi[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1429:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mfiltazi,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1431:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(mfiltazi,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1434:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mfiltrange[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1435:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mfiltrange,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1437:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(mfiltrange,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1440:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mEXTRA[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1441:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mEXTRA,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1443:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(mEXTRA,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1446:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sread[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1447:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(sread,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1449:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(sread,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1452:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char scrop[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1453:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(scrop,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1455:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(scrop,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1459:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char soversample[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1460:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(soversample,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1462:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(soversample,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1466:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sporbits[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1467:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(sporbits,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1469:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(sporbits,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1472:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char smorbits[4*ONE27]; // [HB]
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1473:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(smorbits,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1475:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(smorbits,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1478:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sfiltazi[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1479:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(sfiltazi,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1481:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(sfiltazi,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1484:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sfiltrange[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1485:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(sfiltrange,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1487:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(sfiltrange,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1490:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sresample[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1491:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(sresample,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1493:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(sresample,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1496:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sEXTRA[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1497:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(sEXTRA,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1499:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(sEXTRA,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1502:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icoarse[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1503:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(icoarse,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1505:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(icoarse,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1508:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icoarse2[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1509:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(icoarse2,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1511:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(icoarse2,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1514:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifine[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1515:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ifine,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1517:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(ifine,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1520:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char itiming[4*ONE27]; //[FvL]
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1521:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(itiming,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1523:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(itiming,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1526:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char idemassist[4*ONE27]; //[FvL]
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1527:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(idemassist,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1529:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(idemassist,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1532:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icoregpm[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1533:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(icoregpm,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1535:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(icoregpm,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1538:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iinterfero[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1539:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(iinterfero,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1541:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(iinterfero,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1544:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icoherence[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1545:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(icoherence,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1547:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(icoherence,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1550:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icomprefpha[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1551:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(icomprefpha,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1553:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(icomprefpha,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1556:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char isubtrrefpha[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1557:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(isubtrrefpha,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1559:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(isubtrrefpha,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1562:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icomprefdem[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1563:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(icomprefdem,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1565:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(icomprefdem,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1568:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char isubtrrefdem[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1569:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(isubtrrefdem,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1571:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(isubtrrefdem,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1574:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifiltphase[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1575:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ifiltphase,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1577:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(ifiltphase,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1580:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iunwrap[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1581:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(iunwrap,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1583:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(iunwrap,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1586:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iestorbits[4*ONE27]; // [HB]
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1587:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(iestorbits,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1589:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(iestorbits,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1592:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char islant2h[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1593:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(islant2h,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1595:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(islant2h,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1598:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char igeocoding[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1599:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(igeocoding,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1601:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(igeocoding,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1604:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char idinsar[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1605:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(idinsar,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1607:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(idinsar,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1610:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iEXTRA2[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1611:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(iEXTRA2,"* End_");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1613:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(iEXTRA2,"_NORMAL");
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1741:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *line,
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1753:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[4*ONE27]; // should be enough
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1910:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1982:12: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
ofstream tmpfile("scratchtmp", ios::out | ios::trunc);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1983:13: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
bk_assert(tmpfile,"removedatleader: scratchtmp",__FILE__,__LINE__);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1986:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1990:5: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile << dummyline << endl;
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2005:5: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile << dummyline << endl;
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2011:3: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile.close();
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2288:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2289:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2358:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2359:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2426:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
stream.open(ifilename, ios::in);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2428:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
stream.open(ifilename, ios::in | ios::binary);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2458:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
stream.open(ofilename, ios::out | ios::trunc);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2460:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
stream.open(ofilename, ios::out | ios::binary | ios::trunc);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2475:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
stream.open(ofilename, ios::out);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:2477:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
stream.open(ofilename, ios::out | ios::binary);
data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc:212:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data[0],A.data[0],nsize*sizeof(Type));
data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc:257:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data[i],A[win.linelo+i]+win.pixlo,sizelin);
data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc:319:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data[i+l1]+p1,A[i],sizelin);
data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc:361:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data[i]+winin.pixlo,A[i-winin.linelo+winA.linelo]+winA.pixlo,sizelin);
data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc:388:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data[i],A[i+winA.linelo]+winA.pixlo,sizelin);
data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc:413:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Result[i],data[i+win.linelo]+win.pixlo,numpix*sizeof(Type));
data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc:431:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Result[0],data[line],ncols*sizeof(Type));
data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc:614:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data[line],LINE[0],ncols*sizeof(Type));
data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc:866:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data[0],A.data[0],nsize*sizeof(Type));
data/doris-5.0.3~beta+dfsg/doris_core/matrixbk.cc:2067:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pntB,pntA,A.size()*sizeof(Type));
data/doris-5.0.3~beta+dfsg/doris_core/orbitbk.cc:93:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/orbitbk.cc:94:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/orbitbk.cc:856:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ofile[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/orbitbk.cc:861:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ofile,"masterorbit.dat");
data/doris-5.0.3~beta+dfsg/doris_core/orbitbk.cc:868:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ofile,"slaveorbit.dat");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:305:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16checkvol1[17];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:306:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16checkvol2[17];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:307:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16checkvol3[17]; // check id of volume file
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:325:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c8checkleadat[9]; // check vol met lea en dat
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:330:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
readleader(input_m_readfiles, atoi(c8checkleadat)-1);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:341:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
readdat(input_m_readfiles, atoi(c8checkleadat)-1);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:357:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:692:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c8checkleadata[9]; // check vol met lea en dat
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:695:67: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
palsar_fine_dump_data(input_general,input_m_crop, atoi(c8checkleadata)-1);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:709:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c8checkleadat[9]; // check vol met lea en dat
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:712:54: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
writeslc(input_general,input_m_crop, atoi(c8checkleadat)-1);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:838:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:839:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:888:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char checkmultilook [20];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:900:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char checkmultilook[20];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:922:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:923:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:995:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:996:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1075:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6aztimingerrorlines[7]; // estimate azimuth timing error (lines)
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1076:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6rtimingerrorpixels[7]; // estimate range timing error (pixels)
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1077:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16aztimingerrorsec[17]; // estimate azimuth timing error (sec)
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1078:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16rtimingerrorsec[17]; // estimate range timing error (sec)
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1149:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16checkvol1[17];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1150:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16checkvol2[17];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1151:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16checkvol3[17]; // check id of volume file
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1170:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c8checkleadat[9]; // check vol met lea en dat
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1175:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
readleader(input_s_readfiles, atoi(c8checkleadat)-1);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1184:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
readdat(input_s_readfiles, atoi(c8checkleadat)-1);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1198:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1557:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c8checkleadata[9]; // check vol met lea en dat
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1560:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
palsar_fine_dump_data(input_general,input_s_crop, atoi(c8checkleadata)-1);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1574:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c8checkleadat[9]; // check vol met lea en dat
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1577:52: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
writeslc(input_general,input_s_crop, atoi(c8checkleadat)-1);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1697:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1698:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1749:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char checkmultilook[20];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1767:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char checkmultilook[20];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1797:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1798:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1846:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6initoffL[7]; // initial offset lines
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1847:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6initoffP[7]; // initial offset pixels
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1852:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slave.coarseoffsetL = atoi(c6initoffL); // used as initial value
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1853:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slave.coarseoffsetP = atoi(c6initoffP); // used as initial value
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1854:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slave.coarseorbitoffsetL = atoi(c6initoffL); // to estimate timing error[FvL]
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1855:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slave.coarseorbitoffsetP = atoi(c6initoffP); // to estimate timing error[FvL]
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1920:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6initoffL[7]; // initial offset lines
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1921:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6initoffP[7]; // initial offset pixels
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1926:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slave.coarseoffsetL = atoi(c6initoffL); // used as initial value
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1927:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slave.coarseoffsetP = atoi(c6initoffP); // used as initial value
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1932:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6slopeP[25];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1937:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6slopeL[25];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1942:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6realoffsetL[25];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1948:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6realoffsetP[25];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1995:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:1996:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2027:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2028:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2070:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10rfmethod[11]; // method
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2077:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2078:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2089:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10rfmethod[11]; // method
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2096:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2097:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2138:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(input_fine_dem.fodem,"demcrop.raw");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2139:6: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(input_fine_dem.forefdem, "refPhaseDEM.raw" );
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2203:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2254:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6aztimingerrorlines[7]; // estimate azimuth timing error (lines)
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2255:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c6rtimingerrorpixels[7]; // estimate range timing error (pixels)
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2256:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16aztimingerrorsec[17]; // estimate azimuth timing error (sec)
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2257:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16rtimingerrorsec[17]; // estimate range timing error (sec)
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2269:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slave.az_timing_error = atoi(c6aztimingerrorlines);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2270:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slave.r_timing_error = atoi(c6rtimingerrorpixels);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2275:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
INFO << atoi(c6aztimingerrorlines);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2277:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
INFO << atoi(c6rtimingerrorpixels);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2308:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavel00[17]; // delta line slave00
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2309:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavep00[17]; // delta pixel slave00
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2310:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavel0N[17]; // delta line slave0N
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2311:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavep0N[17]; // delta pixel slave0N
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2312:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavelN0[17]; // delta line slaveN0
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2313:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavepN0[17]; // delta pixel slaveN0
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2314:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavelNN[17]; // delta line slaveNN
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2315:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavepNN[17]; // delta pixel slaveNN
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2394:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2408:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10offL[11];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2410:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int32 degreecpm = atoi(c10offL);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2425:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavel00[17]; // delta line slave00
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2426:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavep00[17]; // delta pixel slave00
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2427:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavel0N[17]; // delta line slave0N
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2428:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavep0N[17]; // delta pixel slave0N
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2429:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavelN0[17]; // delta line slaveN0
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2430:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavepN0[17]; // delta pixel slaveN0
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2431:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavelNN[17]; // delta line slaveNN
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2432:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16slavepNN[17]; // delta pixel slaveNN
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2591:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2592:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2655:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10rfmethod[11]; // method
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2662:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2663:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2674:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10rfmethod[11]; // method
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2681:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2682:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2709:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10offL[11];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2711:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int32 degreeflat = atoi(c10offL);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2757:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2758:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2820:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c10offL[11];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2822:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int32 degreeflat = atoi(c10offL);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2829:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int32 degreeh2ph = atoi(c10offL);
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2882:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2883:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2944:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2945:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:2999:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3000:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3087:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3088:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3160:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3161:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3215:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3216:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3325:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3326:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3444:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3445:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3646:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3726:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char libver [15];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:3728:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(libver,"lapack-%d.%d.%d", major, minor, patch); // lapack-3.1.1
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:4069:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char scriptname[127];
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:4072:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(scriptname,".bat");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:4074:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(scriptname,"./");// prevent error if "." is not in path (unix/linux/cygwin slash)
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:4077:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(scriptname,".sh");
data/doris-5.0.3~beta+dfsg/doris_core/processor.cc:4134:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
scriptfile.open(scriptname, ios::out);
data/doris-5.0.3~beta+dfsg/doris_core/productinfo.cc:82:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[4*ONE27]=" "; // MA 4*ONE27
data/doris-5.0.3~beta+dfsg/doris_core/productinfo.cc:83:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/productinfo.cc:271:12: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
ifstream tmpfile(file, ios::in);
data/doris-5.0.3~beta+dfsg/doris_core/productinfo.cc:272:7: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (tmpfile)
data/doris-5.0.3~beta+dfsg/doris_core/productinfo.cc:274:5: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile.seekg(0,ios::end); // internal filesize, normal one exists if not exists
data/doris-5.0.3~beta+dfsg/doris_core/productinfo.cc:276:38: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
const streamoff &filesizetrue = tmpfile.tellg(); // [MA] file > 4GB support, this fix eliminates wrong warning
data/doris-5.0.3~beta+dfsg/doris_core/productinfo.cc:305:5: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile.close();
data/doris-5.0.3~beta+dfsg/doris_core/products.cc:837:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char checkrefdemIncludeFE[20];
data/doris-5.0.3~beta+dfsg/doris_core/products.cc:2246:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char difffile[2*ONE27]; // output file name
data/doris-5.0.3~beta+dfsg/doris_core/products.cc:2276:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SECTIONID[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/products.cc:2277:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(SECTIONID,"*_Start_");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:145:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4dummy[5], // correctly 5 for \0
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:190:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c8logvoltime[9];
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:277:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numpointrec = atoi(c4dummy);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:298:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numrec = atoi(c4dummy);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:325:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numvol = atoi(c4dummy);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:572:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
<< atoi(c8nlins);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:669:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c2motioncomp[3],
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:945:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
uint scenecenterline = atoi(c8dummy);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:948:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
uint scenecenterpixel = atoi(c8dummy);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1132:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16incangle1strange[17], //bc
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1137:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4numvalid[5]; //bk
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1138:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4numinvalid[5]; //bk
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1139:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16incangle1strange, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1140:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16incanglecenrange, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1141:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16incanglelstrange, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1142:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(calK, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1143:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(repplspwr, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1144:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c4numvalid, "999");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1145:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c4numinvalid, "999");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1307:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numdatapoints = atoi(c4dummy);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1380:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4SWSTflag[5]; //bk
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1381:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4SWSTchange[5]; //bk
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1382:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4missingrawlines[5]; //bk
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1383:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4validperline[5]; //bk
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1387:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(c4SWSTflag) != 0)
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1392:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(c4SWSTchange) != 0)
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1400:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(c4missingrawlines) != 0)
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1598:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16semimajor[17];
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1599:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16inclination[17];
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1600:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16eccentricity[17];
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1601:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16argofperi[17];
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1602:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16lonofnode[17];
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1603:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c16meananomaly[17];
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1643:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numdatapoints = atoi(c4dummy);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1676:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int32 jd_statevector = julday(atoi(c4day),atoi(c4month),atoi(c4year));
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1676:45: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int32 jd_statevector = julday(atoi(c4day),atoi(c4month),atoi(c4year));
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1676:59: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int32 jd_statevector = julday(atoi(c4day),atoi(c4month),atoi(c4year));
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1755:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c32projection,"skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1756:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16numpix, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1757:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16numlin, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1760:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16interpix, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1761:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16interlin, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1762:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16orien, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1763:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16platincl, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1764:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16platascn, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1765:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16geocenter, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1766:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16platalt, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1767:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16platgs, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1768:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16plathead, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1769:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c32refellips, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1770:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16refmajor, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1771:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16refminor, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1772:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16lat11, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1773:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16lon11, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1774:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16lat1N, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1775:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16lon1N, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1776:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16latNN, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1777:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16lonNN, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1778:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16latN1, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1779:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c16lonN1, "skipped");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1799:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fracsec1st[25];
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1804:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fracseclst[25];
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2527:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(c16numlin) != checklines)
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2674:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4[5], // correctly 5 for \0
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2726:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numdatarec = atoi(c6);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2729:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lendatarec2 = atoi(c6);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2733:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numchannels = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2736:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numlines = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2740:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
leftborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2743:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numpixels = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2746:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rightborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2749:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
topborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2752:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
bottomborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2757:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numbytesdata = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2883:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datestring[13];// e.g., "25-Jan-1999"
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2885:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[9]; // e.g., "1999 191";
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2886:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"%4d %03d", acq_year,acq_day);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2893:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c24zd1stazitime[25];
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3054:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4[5], // correctly 5 for \0
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3089:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint numdatarec = atoi(c6);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3095:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint lendatarec2 = atoi(c6);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3101:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint numchannels = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3107:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
uint numlines = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3113:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint leftborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3118:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
uint numpixels = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3123:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint rightborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3128:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint topborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3133:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint bottomborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3140:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint numbytesdata = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3373:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4[5], // correctly 5 for \0
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3580:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3649:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3717:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3798:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3888:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3978:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[512];// command string
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4054:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4[5], // correctly 5 for \0
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4108:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint numdatarec = atoi(c6);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4114:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint lendatarec2 = atoi(c6);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4120:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint numchannels = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4126:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
uint numlines = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4132:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint leftborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4137:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
uint numpixels = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4142:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint rightborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4147:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint topborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4152:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint bottomborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4159:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint numbytesdata = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4479:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char infile[2*ONE27]; // Input file which is master/slave.raw renamed as .old // MA
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4480:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outfile[2*ONE27]; // Output file which is the oversampled version.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4852:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c4[5], // correctly 5 for \0
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4881:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint numdatarec = atoi(c6);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4887:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint lendatarec2 = atoi(c6);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4893:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint numchannels = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4899:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
uint numlines = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4905:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint leftborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4910:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
uint numpixels = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4915:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint rightborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4920:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint topborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4925:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint bottomborder = atoi(c4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4932:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const uint numbytesdata = atoi(c8);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:47:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char WARNS[6][ONE27]; // remember 6 last warnings in WARNS
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:198:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char eachline[4*ONE27]; // assuming maximum char lenght of the line is 4*ONE27. It should be sufficient.
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:221:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(generalinput.logfile, "log.out"); // default logfile
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:222:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(generalinput.m_resfile, "master_result.out"); // default resultfile
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:223:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(generalinput.s_resfile, "slave_result.out"); // default resultfile
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:224:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(generalinput.i_resfile, "interferogram.out"); // default interf_out
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:258:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(m_cropinput.idcrop,"master step01"); // default identifier
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:259:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(s_cropinput.idcrop,"slave step01"); // default identifier
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:260:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(m_cropinput.fileout1,"master.raw"); // default output filename
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:261:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(s_cropinput.fileout1,"slave.raw"); // default output filename
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:284:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(m_oversample.fileoutovs,"master_ovs.raw"); // Default output filename.
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:289:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(s_oversample.fileoutovs,"slave_ovs.raw"); // Default output filename.
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:298:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(simampinput.fodem,"demcrop_sam.raw"); // default name
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:308:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(simampinput.fosimamp,"master.sam"); // default name
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:336:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(filtaziinput.fomaster,"master.afilter"); // default
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:337:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(filtaziinput.foslave,"slave.afilter"); // default
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:389:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(demassistinput.fodem,"demcrop.raw"); // default name
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:418:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(filtrangeinput.fomaster,"master.rfilter"); // default
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:419:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(filtrangeinput.foslave,"slave.rfilter"); // default
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:426:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(resampleinput.fileout,"s_resampled.raw"); // default
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:454:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(subtrrefphainput.forefpha, "refphase.raw"); // default name
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:455:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(subtrrefphainput.focint,"cint.minrefpha.raw");// default
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:475:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(dinsarinput.fodinsar,"differentialinterf.raw");// default
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:488:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(comprefdeminput.forefdem,"refdem.raw"); // default name
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:489:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(comprefdeminput.fodem,"demcrop.raw"); // default name [FvL]
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:503:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(subtrrefdeminput.focint,"cint.minrefdem.raw"); // default name
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:507:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.fouint,"unwrapped_interferogram.raw"); // default name
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:508:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.foregions,"regions_unwrapped.raw"); // default name
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:514:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_mode,"DEFO"); // default to DEFO from TOPO
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:515:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_init,"MST"); // default method
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:516:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_verbose,"TRUE"); // default verbose
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:534:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(slant2hinput.fohei,"hei.raw"); // default
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:535:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(slant2hinput.fophi,"phi.raw"); // default
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:536:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(slant2hinput.folam,"lam.raw"); // default
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:538:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(geocodeinput.fophi,"geo_phi.raw"); // default name
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:539:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(geocodeinput.folam,"geo_lambda.raw"); // default name
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:608:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *word[ maxwords ];
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1300:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int32 degree = atoi(keyword2);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1349:40: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
generalinput.dumpbaselineL = atoi( keyword ) ;
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1350:40: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
generalinput.dumpbaselineP = atoi( keyword2 );
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1887:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
m_cropinput.dbow.linelo = atoi(word[1]); // pass keywords
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1888:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
m_cropinput.dbow.linehi = atoi(word[2]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1889:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
m_cropinput.dbow.pixlo = atoi(word[3]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1890:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
m_cropinput.dbow.pixhi = atoi(word[4]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1913:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
s_cropinput.dbow.linelo = atoi(word[1]); // pass keywords
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1914:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
s_cropinput.dbow.linehi = atoi(word[2]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1915:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
s_cropinput.dbow.pixlo = atoi(word[3]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:1916:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
s_cropinput.dbow.pixhi = atoi(word[4]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2396:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mtiminginput.initoffsetL = atoi(keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2397:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mtiminginput.initoffsetP = atoi(keyword2);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2520:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coarsecorrinput.Nwin = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2539:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coarsecorrinput.MasksizeL = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2540:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coarsecorrinput.MasksizeP = atoi(word[2]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2553:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coarsecorrinput.AccL = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2554:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coarsecorrinput.AccP = atoi(word[2]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2589:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coarsecorrinput.initoffsetL = atoi(keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2590:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coarsecorrinput.initoffsetP = atoi(keyword2);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2608:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fineinput.Nwin = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2627:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fineinput.MasksizeL = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2628:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fineinput.MasksizeP = atoi(word[2]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2641:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fineinput.AccL = atoi(word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2642:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fineinput.AccP = atoi(word[2]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2676:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fineinput.initoffsetL = atoi(keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2677:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fineinput.initoffsetP = atoi(keyword2);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2731:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fineinput.osfactor = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:2901:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
reltiminginput.maxiter = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3061:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coregpminput.degree = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3095:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coregpminput.maxiter = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3229:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
filtrangeinput.oversample = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3236:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
filtrangeinput.nlmean = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3248:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
filtrangeinput.fftlength = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3255:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
filtrangeinput.overlap = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3318:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
comprefphainput.degree = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3325:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
comprefphainput.Npoints = atoi(word[1]) ; // pass keyword // flat earth correction.
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3387:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
resampleinput.dbow.linelo = atoi(word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3388:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
resampleinput.dbow.linehi = atoi(word[2]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3389:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
resampleinput.dbow.pixlo = atoi(word[3]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3390:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
resampleinput.dbow.pixhi = atoi(word[4]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3552:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
interferoinput.multilookL = atoi(word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3553:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
interferoinput.multilookP = atoi(word[2]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3598:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coherenceinput.multilookL = atoi(word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3599:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coherenceinput.multilookP = atoi(word[2]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3607:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coherenceinput.cohsizeL = atoi(word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3608:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
coherenceinput.cohsizeP = atoi(word[2]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3686:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
subtrrefphainput.multilookL = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3691:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
subtrrefphainput.multilookP = atoi(keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3749:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
filtphaseinput.blocksize = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3763:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
filtphaseinput.overlap = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:3771:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const int32 sizekernel = atoi(keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4026:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
subtrrefdeminput.offsetL = atoi(word[1]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4027:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
subtrrefdeminput.offsetP = atoi(word[2]); // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4072:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unwrapinput.deltaLseed = atoi(keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4076:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unwrapinput.deltaPseed = atoi(keyword);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4133:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_mode,"TOPO"); // default TOPO
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4135:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_mode,"DEFO");
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4137:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_mode,"SMOOTH");
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4139:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_mode,"NOSTATCOSTS");
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4158:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_init,"MST"); // default mst
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4160:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_init,"MCF");
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4194:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_verbose,"FALSE");
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4199:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_verbose,"TRUE");
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4202:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(unwrapinput.snaphu_verbose,"TRUE");
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4212:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unwrapinput.ntilerow = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4225:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unwrapinput.ntilecol = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4239:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unwrapinput.rowovrlp = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4248:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unwrapinput.colovrlp = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4257:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unwrapinput.nproc = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4271:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
unwrapinput.tilecostthresh = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4332:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slant2hinput.Npoints = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4339:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slant2hinput.degree1d = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4346:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slant2hinput.degree2d = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4353:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
slant2hinput.Nheights = atoi(word[1]) ; // pass keyword
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4463:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
estorbitsinput.nobs = atoi(word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4490:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
estorbitsinput.maxiter = atoi(word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4547:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
estorbitsinput.poldegree = atoi(word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:4554:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int16 npar = atoi(word[1]);
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:5003:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummy127[ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:5020:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(filtphaseinput.fofiltphase,"cint.filtered");
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:5036:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(filtphaseinput.fofiltphase,"cint.filtered");
data/doris-5.0.3~beta+dfsg/doris_core/referencephase.cc:98:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[2*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/referencephase.cc:1304:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char croppeddemi[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/referencephase.cc:1305:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(croppeddemi,"NO output requested");
data/doris-5.0.3~beta+dfsg/doris_core/referencephase.cc:2194:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char croppeddemi[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/referencephase.cc:2195:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(croppeddemi,"NO output requested");
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:68:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(file,"unknown");
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:69:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(utc1,"unknown");
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:155:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[6*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:158:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[6*ONE27] = " ";
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:288:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c12tijd0[20];
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:289:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c12tijd0_tmp[20];// allow for .123456 ms ASAR in reading
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:302:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c12frac0[20]="0.";
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:459:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c12tijd0[20];
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:460:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c12tijd0_tmp[20];// allow for .123456 ms ASAR in reading
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:473:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char c12frac0[20]="0.";
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:672:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char next_word[4*ONE27] = " ";
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:1023:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[4*ONE27]=" ";
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:1024:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:1265:12: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
ifstream tmpfile(file, ios::in); // ex: files is name.cint ... etc
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:1266:7: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
if (tmpfile)
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:1268:5: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile.seekg(0,ios::end); // internal filesize, normal one exits if not exists
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:1270:38: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
const streamoff &filesizetrue = tmpfile.tellg(); // [MA] file > 4GB upport, this fix eliminates wrong warning
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:1300:5: [2] (tmpfile) tmpfile:
Function tmpfile() has a security flaw on some systems (e.g., older System
V systems) (CWE-377).
tmpfile.close();
data/doris-5.0.3~beta+dfsg/doris_core/unwrap.cc:75:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prog[ONE27] = "treef_ramon ";
data/doris-5.0.3~beta+dfsg/doris_core/unwrap.cc:76:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fileouttreeframon[ONE27] = "ramon.uw";
data/doris-5.0.3~beta+dfsg/doris_core/unwrap.cc:77:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/unwrap.cc:110:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char basecmdstring[3*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/unwrap.cc:420:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prog[ONE27] = "snaphu ";// run this executable
data/doris-5.0.3~beta+dfsg/doris_core/unwrap.cc:421:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char configfile[ONE27] = "snaphu.conf";// create this file
data/doris-5.0.3~beta+dfsg/doris_core/unwrap.cc:435:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char basecmdstring[3*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:92:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char orbdir[EIGHTY];
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:93:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[2*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:94:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char startt[13];
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:95:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endt[13];
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:159:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strgetorb[2*ONE27]; // unix system call
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:286:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[2*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:301:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[25]; // to be sure no round off
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:302:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char y[25]; // to be sure no round off
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:303:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char z[25]; // to be sure no round off
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:1410:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utc_ref[ONE27] = "01-JAN-1985 00:00:01.000";
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:1590:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char OFILE[2*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:1597:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
of.open(OFILE);
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:1603:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
of.open(OFILE);
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:1614:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
of.open(OFILE);
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:1906:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char filename[4*ONE27])
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:1918:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pngFilename[4*ONE27];
data/doris-5.0.3~beta+dfsg/doris_core/utilities.cc:1920:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(pngFilename,".png");
data/doris-5.0.3~beta+dfsg/envisat_tools/envisat_dump_HH.c:171:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outstream = fopen(outfile,"wb");
data/doris-5.0.3~beta+dfsg/envisat_tools/envisat_dump_VV.c:172:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outstream = fopen(outfile,"wb");
data/doris-5.0.3~beta+dfsg/envisat_tools/envisat_dump_data.c:152:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outstream = fopen(outfile,"wb");
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:27:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifilename[ONE27];
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:28:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ofilename[ONE27];
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:68:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(options.ifilename,"INFILE");
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:69:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(options.ofilename,"OUTFILE");
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:75:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
options.oformat = atoi(argv[4]);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:78:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
options.iformat = atoi(argv[3]);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:331:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data_schar[512];
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:332:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data_uchar[512];
data/doris-5.0.3~beta+dfsg/sar_tools/cpxconj.cc:51:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile1[ONE27]; // input file name
data/doris-5.0.3~beta+dfsg/sar_tools/cpxconj.cc:52:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ofile[ONE27] = " "; // output filename == "ifile.ml"
data/doris-5.0.3~beta+dfsg/sar_tools/cpxconj.cc:72:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(ofile,".conj");
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:54:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile1[ONE27]; // input file name
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:55:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile2[ONE27]; // input file name
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:56:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ofile[ONE27] = " "; // output filename == "ifile.ml"
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:83:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(ofile,".div.");
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:127:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile[1024]; // last argv [Prabu reported the long path names problem : MA fixed]
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:147:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmap[512]; // -c filename or identifier
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:176:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void makecmap(unsigned char CMAP[3][256], const commandlineinput &input);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:177:29: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void makecmapmixed(unsigned char CMAP[3][256], const commandlineinput &input);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:372:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char CMAP[3][256]; // colormap see rasterheader
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1061:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char CMAP[3][256],
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1455:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummyline[128*2];
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1498:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char CMAP[3][256],
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1509:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char CMAP_PHA16[3][16];
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1590:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(input.cmap,"default"); // default (mag. gray/ otherwise hsv)
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1624:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char OPTSTRING[40] = "w:e:f:l:L:m:o:p:P:q:s:S:M:c:B:H:r:bhV";
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1644:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
input.linelength = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1653:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
input.firstline = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1656:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
input.lastline = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1659:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
input.firstpixel = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1662:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
input.lastpixel = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1667:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subP[8];
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1674:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subL[8];
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1679:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
input.sublines = atoi(subL);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1680:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
input.subpixels = atoi(subP);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1774:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mlP[8];
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1782:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mlL[8];
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1786:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
input.multilookL = atoi(mlL);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1787:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
input.multilookP = atoi(mlP);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1804:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
input.headerlength = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1951:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(input.cmap,"gray") : strcpy(input.cmap,"hsv");
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1951:37: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(input.cmap,"gray") : strcpy(input.cmap,"hsv");
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1974:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(input.cmap,"hot");
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:50:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile1[ONE27]; // input file name
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:51:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile2[ONE27]; // input file name
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:52:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ofile[ONE27] = " "; // output filename == "ifile.ml"
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:79:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(ofile,".min.");
data/doris-5.0.3~beta+dfsg/sar_tools/dateconv.cc:40:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char indatestring[128];
data/doris-5.0.3~beta+dfsg/sar_tools/dateconv.cc:41:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char informat[128];
data/doris-5.0.3~beta+dfsg/sar_tools/dateconv.cc:42:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outformat[128];
data/doris-5.0.3~beta+dfsg/sar_tools/dateconv.cc:54:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outdatestring[128];// output
data/doris-5.0.3~beta+dfsg/sar_tools/flapjack.cc:61:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile[ONE27]; // input file name
data/doris-5.0.3~beta+dfsg/sar_tools/flapjack.cc:69:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
factor = atoi(argv[2]); // input filename arg1
data/doris-5.0.3~beta+dfsg/sar_tools/flapjack.cc:90:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ofile[ONE27]; // output filename == "ifile.flapjack"
data/doris-5.0.3~beta+dfsg/sar_tools/floatmask.cc:65:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile[ONE27]; // input file name
data/doris-5.0.3~beta+dfsg/sar_tools/floatmask.cc:98:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ofile[ONE27]; // output filename == "ifile.flapjack"
data/doris-5.0.3~beta+dfsg/sar_tools/floatmult.cc:57:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile[ONE27]; // input file name
data/doris-5.0.3~beta+dfsg/sar_tools/floatmult.cc:80:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ofile[ONE27]; // output filename == "ifile.flapjack"
data/doris-5.0.3~beta+dfsg/sar_tools/rasterheader.cc:39:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
width = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/rasterheader.cc:42:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
height = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/rasterheader.cc:45:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
depth = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/rasterheader.cc:48:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
datatype = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/rasterheader.cc:51:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
maplength = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/rasterheader.cc:54:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
length = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/rasterheader.cc:58:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
maptype = atoi(optarg);
data/doris-5.0.3~beta+dfsg/sar_tools/rasterheader.cc:130:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ofp=fopen("sunrasterheader","w");
data/doris-5.0.3~beta+dfsg/sar_tools/readrasterheader.cc:49:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char *map[3];
data/doris-5.0.3~beta+dfsg/sar_tools/readrasterheader.cc:105:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char CMAP[3][HEADER.maplength/3];
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:51:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ifile[ONE27]; // input file name
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:52:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ofile[ONE27] = " "; // output filename == "ifile.ml"
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:53:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummy[ONE27]; // dummy string
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:127:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(ofile,".wrap");
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:4052:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
DeltaLfile.read((char*)&deltaL,sizer8);
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:4053:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
DeltaPfile.read((char*)&deltaP,sizer8);
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:5818:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
DeltaLfile.read((char*)&deltaL_dem,sizer8);
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:5829:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
DeltaLfile.read((char*)&deltaL_dem,sizer8);
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:5854:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
DeltaLfile.read((char*)&deltaL_dem,sizeof(deltaL_dem)); // [MA] sizer8 --> sizeof(deltaL_dem)
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:5871:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
DeltaLfile.read((char*)&deltaL_dem,sizer8);
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:5954:24: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
DeltaLfile.read((char*)&deltaL_dem,sizer8);
data/doris-5.0.3~beta+dfsg/doris_core/coregistration.cc:5955:24: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
DeltaPfile.read((char*)&deltaP_dem,sizer8);
data/doris-5.0.3~beta+dfsg/doris_core/ioroutines.cc:1750:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int32 linesz = strlen(line); // w/o \0
data/doris-5.0.3~beta+dfsg/doris_core/matrixspecs.cc:287:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ifile.read((char*)el,SIZE); // element compli16 = 4
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:181:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c16physid,sizea16); // physical logical volume ID
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:183:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c16logvolid,sizea16); // logical volume ID
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:185:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c16setid,sizea16); // volume set ID
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:192:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c8logvoltime,sizea8); // Logical volume creation time
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:236:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:238:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:239:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:240:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:241:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:252:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&lenrec1,sizeb4); // length of record1
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:262:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c12logvol,sizea12); // logical volume etc.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:265:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c8date,sizea8); // generating date
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:267:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c8time,sizea8); // generating time
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:269:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c12country,sizea12); // generating country
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:271:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c8agency,sizea8); // generating agency
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:273:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c12facility,sizea12); // generating facility
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:275:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c4dummy,sizei4); // #pointer records in vol.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:296:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c4dummy,sizei4); // #records in vol.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:323:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c4dummy,sizei4); // #vol.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:339:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:341:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:342:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:343:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:344:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:356:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&lenrec2,sizeb4); // length of record2
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:366:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c16checkfilename,sizea16); // referenced file name
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:368:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c28leaderrefclass,sizea28); // referenced file class
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:376:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:378:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:379:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:380:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:381:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:392:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&lenrec3,sizeb4); // length of record3
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:402:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c16dataref,sizea16); // referenced file name
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:404:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c28datarefclass,sizea28); // referenced file class
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:407:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c8nlins,sizei8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:423:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:425:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:426:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:427:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:428:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:455:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&lenrec4,sizeb4); // length of record4
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:463:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&lenrec4,sizeb4); // length of record4
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:473:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c40typespec,sizea40); // product type specifier
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:475:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c60product,sizea60); // loc&date product gen.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:477:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c40physvolid,sizea40); // physical vol id
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:479:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c40sceneid,sizea40); // scene id
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:481:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
volumefile.read((char*)&c40sceneloc,sizea40); // scene loc
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:813:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:815:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:816:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:817:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:818:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:829:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&lenrec1,sizeb4); // length of record1
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:841:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16leafilename,sizea16); // file name
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:849:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:851:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:852:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:853:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:854:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:869:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&lenrec2,sizeb4); // length of record2
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:908:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32sceneref,sizea32);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:914:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32sceneref,sizea32); // scene ref. number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:917:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32scenetime,sizea32); // scene center time
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:920:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16centerlat,sizef16); // centre latitude
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:922:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16centerlon,sizef16); // centre longitude
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:924:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16centerheading,sizef16); // center true heading
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:926:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16ellipsoid,sizea16); // ell. designated
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:928:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16semimajor,sizef16); // ell. semi major
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:930:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16semiminor,sizef16); // ell. semi minor
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:932:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16GM,sizef16); // GM
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:934:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // dummy
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:935:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16J2,sizef16); // J2
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:937:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16J3,sizef16); // J3
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:939:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16J4,sizef16); // J4
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:941:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // dummy
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:942:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // dummy
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:943:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8dummy,sizei8); // center line#
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:946:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8dummy,sizei8); // center pixel#
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:949:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16scenelength,sizef16); // scene length
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:951:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16scenewidth,sizef16); // scene width
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:956:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16platformid,sizea16); // platform mission id
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:958:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32sensorid,sizea32); // sensor id
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:960:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8orbitnr,sizea8); // orbit number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:962:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8platformlat,sizea8); // platform latitude
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:964:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8platformlon,sizea8); // platform longitude
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:966:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8platformheading,sizea8); // platform heading
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:968:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8clockangle,sizea8); // sensor clock angle
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:970:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8incidence,sizea8); // incidence angle
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:972:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8freq,sizea8); // radar frequency
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:974:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16wavelength,sizea16); // radar wavelength
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:976:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c2motioncomp,sizea2); // indicator for compensation
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:978:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16pulse,sizea16); // range pulse code specifier
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:980:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16ampconst,sizef16); // amplitude constant term
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:982:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16amplinear,sizef16); // amplitude linear term
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:984:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16ampquadratic,sizef16); // amplitude quadrati term
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:986:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16ampcubic,sizef16); // amplitude cubic term
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:988:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16ampquartic,sizef16); // amplitude quartic term
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:990:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16phaseconst,sizef16); // phase constant term
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:992:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16phaselinear,sizef16); // phase linear term
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:994:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16phasequadratic,sizef16); // phase quadratic term
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:996:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16phasecubic,sizef16); // phase cubicterm
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:998:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16phasequartic,sizef16); // phase quartic term
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1000:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8extindex,sizei8); // chirp extraction
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1002:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8dummy,sizei8); // spare
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1003:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16samplingrate,sizef16); // range sampling rate
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1005:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16rangedelay,sizef16); // delay
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1007:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16ranpulselen,sizef16); // range pulselength
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1009:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4conversion,sizea4); // flag
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1011:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4compression,sizea4); // flag
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1013:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // reserved
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1014:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // reserved
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1015:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8qperch,sizei8); // quantization
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1017:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c12qdesc,sizea12); // quantization description
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1019:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dci,sizef16); // bias for i comp.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1021:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dcq,sizef16); // bias for q comp.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1023:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16imbalance,sizef16); // gain imbalance i&q
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1025:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // spare
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1026:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // spare
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1027:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // reserved
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1028:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16boresight,sizef16); // antenna
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1030:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4dummy,sizea4); // reserved
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1031:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16prf,sizef16); // pulse repetition frequency
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1036:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16sattimecode,sizei16); // sat time code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1038:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32sattime,sizea32); // sat time
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1040:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8satclockstep,sizei8); // sat clock step length
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1045:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16facilityid,sizea16); // proc. facility id
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1047:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8systemid,sizea8); // proc. system id
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1049:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8versionid,sizea8); // proc. version id
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1051:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // dummy
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1052:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // dummy
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1053:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32typespec,sizea32); // produkt type spec.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1055:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32algid,sizea32); // proc. alg. id
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1057:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16looksazi,sizef16); // number of looks
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1059:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16looksrange,sizef16); // number of looks
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1061:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16bandazi,sizef16); // bandwidth
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1063:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16bandrange,sizef16); // bandwidth
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1065:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16bandazitot,sizef16); // bandwidth
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1067:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16bandrangetot,sizef16); // bandwidth
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1069:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32weightazi,sizea32); // weighting function
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1071:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32weightrange,sizea32); // weighting function
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1073:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16inputsource,sizea16); // data input
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1075:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16resrange,sizef16); // resolution
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1077:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16resazi,sizef16); // resolution
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1079:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // reserved
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1080:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // reserved
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1081:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16atdoppcconst,sizef16); // along track centroid
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1083:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16atdoppclinear,sizef16); // along track centroid
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1085:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16atdoppcquadratic,sizef16); // along track centroid
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1087:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // spare
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1088:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16xtdoppcconst,sizef16); // cross track centroid
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1090:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16xtdoppclinear,sizef16); // cross track centroid
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1092:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16xtdoppcquadratic,sizef16); // cross track centroid
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1094:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8timepix,sizea8); // time direction
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1096:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8timeline,sizea8); // time direction
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1098:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16atdopprconst,sizef16); // along track rate
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1100:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16atdopprlinear,sizef16); // along track rate
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1102:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16atdopprquadratic,sizef16); // along track rate
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1104:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // spare
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1105:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16xtdopprconst,sizef16); // cross track rate
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1107:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16xtdopprlinear,sizef16); // cross track rate
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1109:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16xtdopprquadratic,sizef16); // cross track rate
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1111:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16dummy,sizef16); // spare
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1112:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c8linecontent,sizea8); // indicator
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1114:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4clutterlock,sizea4); // flag
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1116:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4autofocus,sizea4); // flag
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1118:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16linespace,sizef16); //
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1120:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16pixspace,sizef16); //
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1122:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16rcompdes,sizea16); // range compression designator
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1158:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16zd1strange,sizef16); // zero doppler 1st pixel
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1160:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16zdcenrange,sizef16); // zero doppler centre pixel
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1162:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16zdlstrange,sizef16); // zero doppler last pixel 2way
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1164:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c24zd1stazitime,sizea24); // zero doppler 1st pixel
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1166:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c24zdcenazitime,sizea24); // zero doppler 1st pixel
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1168:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c24zdlstazitime,sizea24); // zero doppler 1st pixel
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1176:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1178:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1179:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1180:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1181:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1196:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&lenrec3,sizeb4); // length of record3
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1237:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32projection,sizea32); // map proj. descr.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1239:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16numpix,sizei16); // numpixels
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1241:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16numlin,sizei16); // numlines
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1246:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16interpix,sizef16); // dist inter-pixel
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1248:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16interlin,sizef16); // dist inter-lines
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1250:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16orien,sizef16); // orientation at output
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1252:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16platincl,sizef16); // actual platform inclination
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1254:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16platascn,sizef16); // actual ascending node
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1256:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16geocenter,sizef16); //
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1258:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16platalt,sizef16); // altitude
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1260:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16platgs,sizef16); // ground speed
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1262:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16plathead,sizef16); // heading
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1264:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c32refellips,sizea32); // ellipsoid
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1266:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16refmajor,sizef16); // semi major
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1268:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16refminor,sizef16); // semi minor
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1273:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16lat11,sizef16); // lat. 1st line 1st pix.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1275:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16lon11,sizef16); // lon. 1st line 1st pix.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1277:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16lat1N,sizef16); // lat. 1st line last pix.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1279:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16lon1N,sizef16); // lon. 1st line last pix.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1281:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16latNN,sizef16); // lat. last line last pix.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1283:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16lonNN,sizef16); // lon. last line last pix.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1285:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16latN1,sizef16); // lat. last line 1st pix.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1287:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16lonN1,sizef16); // lon. last line 1st pix.
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1296:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&lenrec4,sizeb4); // length of record4
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1305:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4dummy,sizei4); // number of data points
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1308:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4year,sizei4); // year
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1310:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4month,sizei4); // month
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1312:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4day,sizei4); // day
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1314:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4dayofyear,sizei4); // day of year
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1316:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c22seconds,sized22); // sec
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1318:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c22interval,sized22); // interval time
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1320:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c64rcs,sizea64); // ref. coord. system
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1322:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c22gmha,sized22); // greenwich mean hour angle
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1324:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16ltposerr,sizef16); // along track pos. error
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1326:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16ctposerr,sizef16); // across track pos. error
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1328:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16rposerr,sizef16); // radial pos. error
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1347:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c22dummy,sized22);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1358:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&lenrec5,sizeb4); //bc length of record4
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1367:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16incangle1strange,sizef16); //bc
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1369:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16incanglecenrange,sizef16); //bc
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1371:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16incanglelstrange,sizef16); //bc
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1374:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&calK,sizef16); //gk
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1377:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&repplspwr,sizef16); //gk
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1385:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4SWSTflag,sizei4); // numsamples
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1390:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4SWSTchange,sizei4); // numsamples
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1398:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4missingrawlines,sizei4); // numsamples
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1406:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4validperline,sizei4); // numsamples
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1443:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1445:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1446:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1447:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1448:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1459:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&lenrec3,sizeb4);// length of record3
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1474:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1476:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1477:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1478:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1479:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1490:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&lenrec4,sizeb4);// length of record4
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1505:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1507:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1508:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1509:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1510:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1521:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&lenrec5,sizeb4);// length of record5
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1536:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1538:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1539:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1540:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1541:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1552:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&lenrec6,sizeb4);// length of record5
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1572:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1574:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1575:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1576:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1577:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1587:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&lenrec7,sizeb4);// length of record5
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1608:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16semimajor,sizef16);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1610:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16inclination,sizef16);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1612:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16eccentricity,sizef16);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1614:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16argofperi,sizef16);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1616:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16lonofnode,sizef16);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1618:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16meananomaly,sizef16);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1641:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4dummy,sizei4); // number of data points
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1644:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4year,sizei4); // year of first data point
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1646:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4month,sizei4); // month of first data point
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1648:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4day,sizei4); // day of first data point
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1650:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c4dayofyear,sizei4); // daynumber of year
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1652:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c22seconds,sized22); // sec of day of first point
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1654:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c22interval,sized22); // interval time
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1656:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c64rcs,sizea64); // ref. coord. system
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1658:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c22gmha,sized22); // greenwich mean hour angle
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1660:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16ltposerr,sizef16); // along track pos. error
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1662:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16ctposerr,sizef16); // across track pos. error
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1664:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c16rposerr,sizef16); // radial pos. error
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:1688:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
leaderfile.read((char*)&c22dummy,sized22);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2351:11: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(c16centerlat,"0");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2353:11: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(c16centerlon,"0");
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2694:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2696:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2697:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2698:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2699:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2713:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&lenrec1,sizeb4);// length of record
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2724:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c6,sizei6); // number of SAR DATA records (lines)
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2727:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c6,sizei6); // SAR DATA record length
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2731:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2734:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2738:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2741:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8); // number of pixels
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2744:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2747:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2750:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2755:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2807:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2809:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2810:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2811:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2812:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2826:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&lenrec2,sizeb4);// length of record
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2839:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&zdmsecofday1,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2842:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&zdmsecofday2,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2845:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&zdmsecofdayN,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2874:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&acq_year,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2876:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&acq_day,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2911:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&range1st,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2921:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&range1st,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:2924:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rangelst,sizeb4);// range to last pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3074:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&lenrec1,sizeb4); // length of record1
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3087:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c6,sizei6); // number of SAR DATA records (lines)
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3093:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c6,sizei6); // SAR DATA record length
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3099:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3105:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3111:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3116:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8); // number of pixels
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3121:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3126:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3131:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3138:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:3257:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&lenrec2,sizeb4); // length of first record
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4079:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4081:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4082:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4083:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4084:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4097:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&lenrec1,sizeb4);// length of record
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4106:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c6,sizei6); // number of SAR DATA records (lines)
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4112:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c6,sizei6); // SAR DATA record length
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4118:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4124:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4130:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4135:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8); // number of pixels
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4140:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4145:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4150:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4157:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4229:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_seq,sizeb4);// record number
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4231:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub1,sizeb1);// first record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4232:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_type,sizeb1);// record type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4233:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub2,sizeb1);// second record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4234:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rec_sub3,sizeb1);// third record sub type code
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4247:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&lenrec2,sizeb4);// length of record
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4260:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&zdmsecofday1,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4263:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&zdmsecofday2,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4266:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&zdmsecofdayN,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4290:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&range1st,sizeb4);// range to first pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4293:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&rangelst,sizeb4);// range to last pix
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4351:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&lenrec2,sizeb4); // length of first record
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4867:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&lenrec1,sizeb4); // length of record1
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4879:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c6,sizei6); // number of SAR DATA records (lines)
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4885:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c6,sizei6); // SAR DATA record length
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4891:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4897:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4903:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4908:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8); // number of pixels
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4913:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4918:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4923:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c4,sizei4);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:4930:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&c8,sizei8);
data/doris-5.0.3~beta+dfsg/doris_core/readdata.cc:5057:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
datfile.read((char*)&lenrec2,sizeb4); // length of first record
data/doris-5.0.3~beta+dfsg/doris_core/readinput.cc:653:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (!strlen(keyword)) // empty line
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:294:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(c12tijd0,c12tijd0_tmp,12);
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:298:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utc1," ");
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:465:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(c12tijd0,c12tijd0_tmp,12);
data/doris-5.0.3~beta+dfsg/doris_core/slcimage.cc:469:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(utc1," ");
data/doris-5.0.3~beta+dfsg/doris_core/tmp_strptime.cc:137:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
({ size_t len = strlen (cs1); \
data/doris-5.0.3~beta+dfsg/doris_core/tmp_strptime.cc:144:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strncasecmp ((cs1), (s2), strlen (cs1)) ? 0 : ((s2) += strlen (cs1), 1))
data/doris-5.0.3~beta+dfsg/doris_core/tmp_strptime.cc:144:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strncasecmp ((cs1), (s2), strlen (cs1)) ? 0 : ((s2) += strlen (cs1), 1))
data/doris-5.0.3~beta+dfsg/doris_core/tmp_strptime.cc:171:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen (alts); \
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:349:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ifile.read((char*)&data_schar[0],buffersize*options.bytesperelement.ifile);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:354:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ifile.read((char*)&data_uchar[0],buffersize*options.bytesperelement.ifile);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:359:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ifile.read((char*)&data_sshort[0],buffersize*options.bytesperelement.ifile);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:364:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ifile.read((char*)&data_ushort[0],buffersize*options.bytesperelement.ifile);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:369:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ifile.read((char*)&data_sint[0],buffersize*options.bytesperelement.ifile);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:374:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ifile.read((char*)&data_uint[0],buffersize*options.bytesperelement.ifile);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:379:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ifile.read((char*)&data_sfloat[0],buffersize*options.bytesperelement.ifile);
data/doris-5.0.3~beta+dfsg/sar_tools/bkconvert.cc:391:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ifile.read((char*)&data_sdouble[0],buffersize*options.bytesperelement.ifile);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxconj.cc:109:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile1.read((char*)&value1,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:135:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile1.read((char*)&value1,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:136:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile2.read((char*)&value2,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:150:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile1.read((char*)&value1,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxdiv.cc:151:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile2.read((char*)&value2,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:407:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
inf.read((char*)&LINE[0],
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:557:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
inf.read((char*)&LINE[0],(input.lastpixel-input.firstpixel+1)*input.bytesperpixel);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:608:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
inf.read((char*)&LINEML[0],
data/doris-5.0.3~beta+dfsg/sar_tools/cpxfiddle.cc:1783:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (j=0; j<strlen(optarg)-i; ++j)
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:136:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile1.read((char*)&value1,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:137:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile2.read((char*)&value2,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:151:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile1.read((char*)&value1,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/cpxmult.cc:152:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile2.read((char*)&value2,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/flapjack.cc:135:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile1.read((char*)&value,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/flapjack.cc:151:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile1.read((char*)&value,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/flapjack.cc:167:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile1.read((char*)&value,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/floatmask.cc:140:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile1.read((char*)&value,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/floatmult.cc:122:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
infile1.read((char*)&value,sizeofelement);
data/doris-5.0.3~beta+dfsg/sar_tools/readrasterheader.cc:73:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ifp.read(((char *) &HEADER), sizeof(HEADER));
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:73:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = (int)strlen(dummy);
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:92:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = (int)strlen(dummy);
data/doris-5.0.3~beta+dfsg/sar_tools/wrap.cc:179:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
image.read((char*)&phase,sizeofelement);
ANALYSIS SUMMARY:
Hits = 1414
Lines analyzed = 56236 in approximately 1.76 seconds (31892 lines/second)
Physical Source Lines of Code (SLOC) = 40902
Hits@level = [0] 209 [1] 410 [2] 744 [3] 2 [4] 258 [5] 0
Hits@level+ = [0+] 1623 [1+] 1414 [2+] 1004 [3+] 260 [4+] 258 [5+] 0
Hits/KSLOC@level+ = [0+] 39.6802 [1+] 34.5704 [2+] 24.5465 [3+] 6.35666 [4+] 6.30776 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.