Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/easytag-2.4.3/nautilus-extension/nautilus-easytag.c Examining data/easytag-2.4.3/src/core_types.h Examining data/easytag-2.4.3/src/file_list.c Examining data/easytag-2.4.3/src/easytag.h Examining data/easytag-2.4.3/src/application.c Examining data/easytag-2.4.3/src/load_files_dialog.h Examining data/easytag-2.4.3/src/status_bar.h Examining data/easytag-2.4.3/src/tags/flac_private.c Examining data/easytag-2.4.3/src/tags/id3_tag.c Examining data/easytag-2.4.3/src/tags/gio_wrapper.cc Examining data/easytag-2.4.3/src/tags/opus_header.h Examining data/easytag-2.4.3/src/tags/id3_tag.h Examining data/easytag-2.4.3/src/tags/mp4_tag.cc Examining data/easytag-2.4.3/src/tags/flac_tag.c Examining data/easytag-2.4.3/src/tags/wavpack_header.c Examining data/easytag-2.4.3/src/tags/gio_wrapper.h Examining data/easytag-2.4.3/src/tags/wavpack_tag.h Examining data/easytag-2.4.3/src/tags/wavpack_private.c Examining data/easytag-2.4.3/src/tags/wavpack_private.h Examining data/easytag-2.4.3/src/tags/ogg_tag.c Examining data/easytag-2.4.3/src/tags/mpeg_header.h Examining data/easytag-2.4.3/src/tags/opus_tag.c Examining data/easytag-2.4.3/src/tags/mp4_tag.h Examining data/easytag-2.4.3/src/tags/flac_private.h Examining data/easytag-2.4.3/src/tags/ogg_tag.h Examining data/easytag-2.4.3/src/tags/wavpack_header.h Examining data/easytag-2.4.3/src/tags/ape_tag.h Examining data/easytag-2.4.3/src/tags/flac_header.h Examining data/easytag-2.4.3/src/tags/vcedit.h Examining data/easytag-2.4.3/src/tags/wavpack_tag.c Examining data/easytag-2.4.3/src/tags/ape_tag.c Examining data/easytag-2.4.3/src/tags/musepack_header.c Examining data/easytag-2.4.3/src/tags/musepack_header.h Examining data/easytag-2.4.3/src/tags/mp4_header.cc Examining data/easytag-2.4.3/src/tags/mp4_header.h Examining data/easytag-2.4.3/src/tags/mpeg_header.c Examining data/easytag-2.4.3/src/tags/id3v24_tag.c Examining data/easytag-2.4.3/src/tags/flac_tag.h Examining data/easytag-2.4.3/src/tags/ogg_header.h Examining data/easytag-2.4.3/src/tags/monkeyaudio_header.c Examining data/easytag-2.4.3/src/tags/monkeyaudio_header.h Examining data/easytag-2.4.3/src/tags/id3lib/c_wrapper.cpp Examining data/easytag-2.4.3/src/tags/id3lib/id3_bugfix.h Examining data/easytag-2.4.3/src/tags/opus_tag.h Examining data/easytag-2.4.3/src/tags/ogg_header.c Examining data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c Examining data/easytag-2.4.3/src/tags/libapetag/info_mpc.c Examining data/easytag-2.4.3/src/tags/libapetag/id3v2_read.h Examining data/easytag-2.4.3/src/tags/libapetag/is_tag.c Examining data/easytag-2.4.3/src/tags/libapetag/is_tag.h Examining data/easytag-2.4.3/src/tags/libapetag/apetaglib.h Examining data/easytag-2.4.3/src/tags/libapetag/info_mac.h Examining data/easytag-2.4.3/src/tags/libapetag/apetaglib.c Examining data/easytag-2.4.3/src/tags/libapetag/info_mpc.h Examining data/easytag-2.4.3/src/tags/libapetag/info_mac.c Examining data/easytag-2.4.3/src/tags/opus_header.c Examining data/easytag-2.4.3/src/tags/flac_header.c Examining data/easytag-2.4.3/src/tags/vcedit.c Examining data/easytag-2.4.3/src/application_window.h Examining data/easytag-2.4.3/src/file.h Examining data/easytag-2.4.3/src/load_files_dialog.c Examining data/easytag-2.4.3/src/browser.c Examining data/easytag-2.4.3/src/file_area.h Examining data/easytag-2.4.3/src/dlm.c Examining data/easytag-2.4.3/src/scan.c Examining data/easytag-2.4.3/src/et_core.c Examining data/easytag-2.4.3/src/et_core.h Examining data/easytag-2.4.3/src/file.c Examining data/easytag-2.4.3/src/cddb_dialog.h Examining data/easytag-2.4.3/src/file_tag.h Examining data/easytag-2.4.3/src/file_name.c Examining data/easytag-2.4.3/src/cddb_dialog.c Examining data/easytag-2.4.3/src/file_name.h Examining data/easytag-2.4.3/src/about.h Examining data/easytag-2.4.3/src/setting.c Examining data/easytag-2.4.3/src/file_description.h Examining data/easytag-2.4.3/src/application_window.c Examining data/easytag-2.4.3/src/about.c Examining data/easytag-2.4.3/src/tag_area.h Examining data/easytag-2.4.3/src/enums.c Examining data/easytag-2.4.3/src/file_info.c Examining data/easytag-2.4.3/src/charset.h Examining data/easytag-2.4.3/src/win32/resource.h Examining data/easytag-2.4.3/src/win32/win32dep.h Examining data/easytag-2.4.3/src/win32/win32dep.c Examining data/easytag-2.4.3/src/easytag.c Examining data/easytag-2.4.3/src/main.c Examining data/easytag-2.4.3/src/genres.h Examining data/easytag-2.4.3/src/preferences_dialog.h Examining data/easytag-2.4.3/src/file_info.h Examining data/easytag-2.4.3/src/application.h Examining data/easytag-2.4.3/src/playlist_dialog.h Examining data/easytag-2.4.3/src/log.c Examining data/easytag-2.4.3/src/crc32.h Examining data/easytag-2.4.3/src/file_list.h Examining data/easytag-2.4.3/src/scan_dialog.c Examining data/easytag-2.4.3/src/charset.c Examining data/easytag-2.4.3/src/tag_area.c Examining data/easytag-2.4.3/src/misc.h Examining data/easytag-2.4.3/src/progress_bar.h Examining data/easytag-2.4.3/src/scan.h Examining data/easytag-2.4.3/src/browser.h Examining data/easytag-2.4.3/src/progress_bar.c Examining data/easytag-2.4.3/src/scan_dialog.h Examining data/easytag-2.4.3/src/search_dialog.h Examining data/easytag-2.4.3/src/status_bar.c Examining data/easytag-2.4.3/src/crc32.c Examining data/easytag-2.4.3/src/file_area.c Examining data/easytag-2.4.3/src/picture.h Examining data/easytag-2.4.3/src/search_dialog.c Examining data/easytag-2.4.3/src/dlm.h Examining data/easytag-2.4.3/src/setting.h Examining data/easytag-2.4.3/src/file_tag.c Examining data/easytag-2.4.3/src/misc.c Examining data/easytag-2.4.3/src/picture.c Examining data/easytag-2.4.3/src/playlist_dialog.c Examining data/easytag-2.4.3/src/log.h Examining data/easytag-2.4.3/src/file_description.c Examining data/easytag-2.4.3/src/preferences_dialog.c Examining data/easytag-2.4.3/tests/test-dlm.c Examining data/easytag-2.4.3/tests/test-file_tag.c Examining data/easytag-2.4.3/tests/test-misc.c Examining data/easytag-2.4.3/tests/test-file_info.c Examining data/easytag-2.4.3/tests/test-scan.c Examining data/easytag-2.4.3/tests/test-file_description.c Examining data/easytag-2.4.3/tests/test-genres.c Examining data/easytag-2.4.3/tests/test-picture.c FINAL RESULTS: data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:38:20: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_D(x) fprintf( stdout, x ) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:39:23: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_D1(x,a) fprintf( stdout, x, a ) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:40:25: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_D2(x,a,b) fprintf( stdout, x, a,b) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:41:27: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_D3(x,a,b,c) fprintf( stdout, x, a,b,c) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:42:29: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_D4(x,a,b,c,d) fprintf( stdout, x, a,b,c,d) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:43:31: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_D5(x,a,b,c,d,e) fprintf( stdout, x, a,b,c,d,e) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:44:33: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_D6(x,a,b,c,d,e,f) fprintf( stdout, x, a,b,c,d,e,f) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:45:35: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_D7(x,a,b,c,d,e,f,g) fprintf( stdout, x, a,b,c,d,e,f,g) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:46:37: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_D8(x,a,b,c,d,e,f,g,i) fprintf( stdout, x, a,b,c,d,e,f,g,i) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:47:39: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_D9(x,a,b,c,d,e,f,g,i,j) fprintf( stdout, x ,a,b,c,d,e,f,g,i,j ) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:61:22: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_ERR(x) fprintf( stderr, x ) data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:62:26: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define PRINT_ERR1(x, a) fprintf( stderr, x ,a) data/easytag-2.4.3/src/browser.c:247:33: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. file = g_file_new_for_path (g_get_home_dir ()); data/easytag-2.4.3/src/browser.c:3962:33: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. file = g_file_new_for_path (g_get_home_dir ()); data/easytag-2.4.3/src/setting.c:99:64: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. : g_get_home_dir ())); data/easytag-2.4.3/src/setting.c:534:45: [3] (buffer) g_get_home_dir: This function is synonymous with 'getenv("HOME")';it returns untrustable input if the environment can beset by an attacker. It can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. gchar *old_path = g_build_filename (g_get_home_dir (), data/easytag-2.4.3/src/cddb_dialog.c:1111:35: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cddbalbum->duration = atoi(strchr(cddb_out,':')+1); data/easytag-2.4.3/src/cddb_dialog.c:1192:44: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cddbtrackalbum->track_number = atoi(cddb_out+6)+1; data/easytag-2.4.3/src/cddb_dialog.c:1234:56: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cddbalbum->year = g_strdup_printf("%d",atoi(year_ptr+5)); data/easytag-2.4.3/src/cddb_dialog.c:1236:68: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cddbalbum->genre = g_strdup(Id3tag_Genre_To_String(atoi(genre_ptr+5))); data/easytag-2.4.3/src/cddb_dialog.c:2055:36: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). total_num_albums = atoi(cddb_out_tmp + strlen(sraf_str)); data/easytag-2.4.3/src/file.c:128:18: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). track1 = atoi (((File_Tag *)ETFile1->FileTag->data)->disc_number); data/easytag-2.4.3/src/file.c:138:18: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). track2 = atoi (((File_Tag *)ETFile2->FileTag->data)->disc_number); data/easytag-2.4.3/src/file.c:175:18: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). track1 = atoi( ((File_Tag *)ETFile1->FileTag->data)->track ); data/easytag-2.4.3/src/file.c:180:18: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). track2 = atoi( ((File_Tag *)ETFile2->FileTag->data)->track ); data/easytag-2.4.3/src/file.c:475:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). year1 = atoi( ((File_Tag *)ETFile1->FileTag->data)->year ); data/easytag-2.4.3/src/file.c:480:17: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). year2 = atoi( ((File_Tag *)ETFile2->FileTag->data)->year ); data/easytag-2.4.3/src/file.c:1139:57: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_total = et_disc_number_to_string (atoi (FileTagCur->disc_total)); data/easytag-2.4.3/src/file.c:1164:53: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track = et_track_number_to_string (atoi (FileTagCur->track)); data/easytag-2.4.3/src/file.c:1180:59: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track_total = et_track_number_to_string (atoi (FileTagCur->track_total)); data/easytag-2.4.3/src/tag_area.c:1182:13: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (atoi (year) <= atoi (tmp)) data/easytag-2.4.3/src/tag_area.c:1182:28: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). if (atoi (year) <= atoi (tmp)) data/easytag-2.4.3/src/tag_area.c:1184:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (current_year, "%d", atoi (current_year) - atoi (tmp)); data/easytag-2.4.3/src/tag_area.c:1184:42: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). sprintf (current_year, "%d", atoi (current_year) - atoi (tmp)); data/easytag-2.4.3/src/tag_area.c:1184:64: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). sprintf (current_year, "%d", atoi (current_year) - atoi (tmp)); data/easytag-2.4.3/src/tag_area.c:1185:43: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). tmp1 = g_strdup_printf ("%d", atoi (current_year) + atoi (year)); data/easytag-2.4.3/src/tag_area.c:1185:65: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). tmp1 = g_strdup_printf ("%d", atoi (current_year) + atoi (year)); data/easytag-2.4.3/src/tag_area.c:1191:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (current_year, "%d", atoi (current_year) - atoi (tmp) data/easytag-2.4.3/src/tag_area.c:1191:42: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). sprintf (current_year, "%d", atoi (current_year) - atoi (tmp) data/easytag-2.4.3/src/tag_area.c:1191:64: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). sprintf (current_year, "%d", atoi (current_year) - atoi (tmp) data/easytag-2.4.3/src/tag_area.c:1194:43: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). tmp1 = g_strdup_printf ("%d", atoi (current_year) + atoi (year)); data/easytag-2.4.3/src/tag_area.c:1194:65: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). tmp1 = g_strdup_printf ("%d", atoi (current_year) + atoi (year)); data/easytag-2.4.3/src/tag_area.c:2781:53: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track = et_track_number_to_string (atoi (buffer)); data/easytag-2.4.3/src/tag_area.c:2796:59: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track_total = et_track_number_to_string (atoi (buffer)); data/easytag-2.4.3/src/tags/ape_tag.c:128:61: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_total = et_disc_number_to_string (atoi (string1 data/easytag-2.4.3/src/tags/ape_tag.c:133:58: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_number = et_disc_number_to_string (atoi (string)); data/easytag-2.4.3/src/tags/ape_tag.c:157:63: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track_total = et_track_number_to_string (atoi (string1 data/easytag-2.4.3/src/tags/ape_tag.c:161:53: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track = et_track_number_to_string (atoi (string)); data/easytag-2.4.3/src/tags/flac_tag.c:308:69: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_total = et_disc_number_to_string (atoi (strings->data)); data/easytag-2.4.3/src/tags/flac_tag.c:328:73: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_total = et_disc_number_to_string (atoi (separator + 1)); data/easytag-2.4.3/src/tags/flac_tag.c:332:70: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_number = et_disc_number_to_string (atoi (strings->data)); data/easytag-2.4.3/src/tags/flac_tag.c:347:71: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track_total = et_track_number_to_string (atoi (strings->data)); data/easytag-2.4.3/src/tags/flac_tag.c:367:75: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track_total = et_track_number_to_string (atoi (separator + 1)); data/easytag-2.4.3/src/tags/flac_tag.c:371:65: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track = et_track_number_to_string (atoi (strings->data)); data/easytag-2.4.3/src/tags/gio_wrapper.cc:272:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[4096]; data/easytag-2.4.3/src/tags/gio_wrapper.cc:362:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char *buffer[4096]; data/easytag-2.4.3/src/tags/id3_tag.c:1470:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char tmp[256]; data/easytag-2.4.3/src/tags/id3_tag.c:1471:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char tmp0[256]; data/easytag-2.4.3/src/tags/id3v24_tag.c:289:65: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_total = et_disc_number_to_string (atoi (string2 data/easytag-2.4.3/src/tags/id3v24_tag.c:294:62: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_number = et_disc_number_to_string (atoi (string1)); data/easytag-2.4.3/src/tags/id3v24_tag.c:324:67: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track_total = et_track_number_to_string (atoi (string2 + 1)); data/easytag-2.4.3/src/tags/id3v24_tag.c:327:57: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track = et_track_number_to_string (atoi (string1)); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:51:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char id[8]; /**< magic should equal 'APETAGEX' */ data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:52:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char version[4]; /**< version 1000 (v1.0) or 2000 (v 2.0) */ data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:53:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char length[4]; /**< the complete size of the tag, including footer, but no header for v2.0 */ data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:54:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char tagCount[4]; /**< the number of fields in the tag */ data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:55:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char flags[4]; /**< the tag flags (none currently defined for v 1.0) */ data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:56:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char reserved[8]; /**< reserved for later use */ data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:80:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char magic[3]; // `TAG` data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:81:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[30]; data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:82:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char artist[30]; data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:83:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char album[30]; data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:84:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char year[4]; data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:85:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char comment[30]; // if ([28]==0 and [29]!=0) track = [29] data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:214:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (mTag->value, value, sizeValue); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:215:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (mTag->name, name, sizeName); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:621:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char track[20]; data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:647:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (TagValuE, FramkA->value, \ data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:664:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (m->magic,"TAG",3); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:671:40: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). m->comment[29]=(unsigned char) atoi(framka->value); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:901:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char temp[4]; data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:972:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (p, ape_footer.id, sizeof (ape_footer)); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:986:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (p, temp, 4); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:989:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (p, temp, 4); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:992:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (p, mTag[n]->name, mTag[n]->sizeName); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:994:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (p, "\0", 1); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:996:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (p, mTag[n]->value, mTag[n]->sizeValue); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:1000:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (p, "\0", 1); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:1010:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (p, ape_footer.id, sizeof (ape_footer)); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:1014:10: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (p, &id3v1_tag , sizeof (struct _id3v1Tag)); data/easytag-2.4.3/src/tags/libapetag/info_mac.c:38:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char id[4]; // should equal 'MAC ' data/easytag-2.4.3/src/tags/libapetag/info_mpc.c:185:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (stream_info->Encoder, "<= 1.05"); // Buschmann 1.7.x, Klemm <= 1.05 data/easytag-2.4.3/src/tags/libapetag/info_mpc.c:192:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (stream_info->Encoder, "%u.%u", data/easytag-2.4.3/src/tags/libapetag/info_mpc.c:200:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (stream_info->Encoder, "%u.%02u Beta", data/easytag-2.4.3/src/tags/libapetag/info_mpc.c:205:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf (stream_info->Encoder, "%u.%02u Alpha", data/easytag-2.4.3/src/tags/libapetag/info_mpc.h:63:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Encoder[256]; /**< Encoder Version in string */ data/easytag-2.4.3/src/tags/libapetag/is_tag.c:58:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/easytag-2.4.3/src/tags/libapetag/is_tag.c:91:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[16]; data/easytag-2.4.3/src/tags/libapetag/is_tag.c:127:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char unsigned buf[32]; data/easytag-2.4.3/src/tags/libapetag/is_tag.c:159:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char unsigned buf[32]; data/easytag-2.4.3/src/tags/ogg_tag.c:315:61: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_total = et_disc_number_to_string (atoi (strings->data)); data/easytag-2.4.3/src/tags/ogg_tag.c:334:65: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_total = et_disc_number_to_string (atoi (separator + 1)); data/easytag-2.4.3/src/tags/ogg_tag.c:338:62: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_number = et_disc_number_to_string (atoi (strings->data)); data/easytag-2.4.3/src/tags/ogg_tag.c:360:63: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track_total = et_track_number_to_string (atoi (strings->data)); data/easytag-2.4.3/src/tags/ogg_tag.c:379:67: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track_total = et_track_number_to_string (atoi (separator + 1)); data/easytag-2.4.3/src/tags/ogg_tag.c:383:57: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track = et_track_number_to_string (atoi (strings->data)); data/easytag-2.4.3/src/tags/ogg_tag.c:519:50: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). type = !et_str_empty (m->data) ? atoi (m->data) data/easytag-2.4.3/src/tags/vcedit.c:213:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy (op->packet, opb.buffer, oggpack_bytes (&opb)); data/easytag-2.4.3/src/tags/wavpack_tag.c:174:57: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_total = et_disc_number_to_string (atoi (tmp)); data/easytag-2.4.3/src/tags/wavpack_tag.c:183:58: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->disc_number = et_disc_number_to_string (atoi (tmp)); data/easytag-2.4.3/src/tags/wavpack_tag.c:217:59: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track_total = et_track_number_to_string (atoi (tmp)); data/easytag-2.4.3/src/tags/wavpack_tag.c:226:53: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). FileTag->track = et_track_number_to_string (atoi (tmp)); data/easytag-2.4.3/src/browser.c:997:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncasecmp(drive,nodeName, strlen(drive)) == 0) data/easytag-2.4.3/src/browser.c:3321:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). path_shift = strlen (old_path); data/easytag-2.4.3/src/cddb_dialog.c:975:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (bytes_written=send(socket_id,cddb_in,strlen(cddb_in)+1,0)) < 0) data/easytag-2.4.3/src/cddb_dialog.c:1082:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen (cddb_out) <= 3 && strstr (cddb_out, CDDB_END_STR) != NULL) data/easytag-2.4.3/src/cddb_dialog.c:1613:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (bytes_written=send(socket_id,cddb_in,strlen(cddb_in)+1,0)) < 0) data/easytag-2.4.3/src/cddb_dialog.c:1719:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cddb_out_tmp = ptr_cat + strlen(cat_str); data/easytag-2.4.3/src/cddb_dialog.c:1720:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN); data/easytag-2.4.3/src/cddb_dialog.c:1728:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cddb_out_tmp = ptr_cat + strlen(cat_str) + 2; data/easytag-2.4.3/src/cddb_dialog.c:1729:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN); data/easytag-2.4.3/src/cddb_dialog.c:1737:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cddb_out_tmp = strstr(cddb_out_tmp,art_alb_str) + strlen(art_alb_str); data/easytag-2.4.3/src/cddb_dialog.c:1738:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN); data/easytag-2.4.3/src/cddb_dialog.c:1772:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cddb_out_tmp = strstr(cddb_out_tmp,end_str) + strlen(end_str); data/easytag-2.4.3/src/cddb_dialog.c:1959:52: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (bytes_written=send(socket_id,cddb_in,strlen(cddb_in)+1,0)) < 0) data/easytag-2.4.3/src/cddb_dialog.c:2055:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). total_num_albums = atoi(cddb_out_tmp + strlen(sraf_str)); data/easytag-2.4.3/src/cddb_dialog.c:2078:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cddb_out_tmp = ptr_cat + strlen(cat_str); data/easytag-2.4.3/src/cddb_dialog.c:2079:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN); data/easytag-2.4.3/src/cddb_dialog.c:2110:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cddb_out_tmp = ptr_cat + strlen(cat_str) + 2; data/easytag-2.4.3/src/cddb_dialog.c:2111:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN); data/easytag-2.4.3/src/cddb_dialog.c:2118:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cddb_out_tmp = strstr(cddb_out_tmp,art_alb_str) + strlen(art_alb_str); data/easytag-2.4.3/src/cddb_dialog.c:2119:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN); data/easytag-2.4.3/src/cddb_dialog.c:2882:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). l = strlen(buffer); data/easytag-2.4.3/src/cddb_dialog.c:2887:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). while ((l = strlen(buffer)) > 0 && buffer[l-1] == '\r') data/easytag-2.4.3/src/cddb_dialog.c:2959:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!*cddb_out || strlen (*cddb_out) < 10) data/easytag-2.4.3/src/cddb_dialog.c:3267:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (bytes_written=send(socket_id,cddb_in,strlen(cddb_in)+1,0)) < 0) data/easytag-2.4.3/src/cddb_dialog.c:3352:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (cddb_out_tmp && strlen (cddb_out_tmp) <= 3 data/easytag-2.4.3/src/cddb_dialog.c:3361:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( cddb_out_tmp && strlen(cddb_out_tmp)>3 data/easytag-2.4.3/src/cddb_dialog.c:3504:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). str_encoded = g_base64_encode((const guchar *)tempstr, strlen(tempstr)); data/easytag-2.4.3/src/dlm.c:39:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = strlen(s); data/easytag-2.4.3/src/dlm.c:40:9: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). m = strlen(t); data/easytag-2.4.3/src/file_list.c:1221:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (old_path[strlen (old_path) - 1] == G_DIR_SEPARATOR) data/easytag-2.4.3/src/file_list.c:1243:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strncmp (filename, old_path_tmp, strlen (old_path_tmp)) data/easytag-2.4.3/src/file_list.c:1250:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). (new_path[strlen (new_path) - 1] == G_DIR_SEPARATOR) ? "" : G_DIR_SEPARATOR_S, data/easytag-2.4.3/src/file_list.c:1251:63: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). &filename[strlen (old_path_tmp)],NULL); data/easytag-2.4.3/src/misc.c:433:24: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). old_mode = umask (077); data/easytag-2.4.3/src/misc.c:435:13: [1] (access) umask: Ensure that umask is given most restrictive possible setting (e.g., 066 or 077) (CWE-732). umask (old_mode); data/easytag-2.4.3/src/misc.c:566:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). last = strlen (filename_utf8) - 1; data/easytag-2.4.3/src/playlist_dialog.c:163:43: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( strncmp(filename,basedir,strlen(basedir))==0 ) data/easytag-2.4.3/src/playlist_dialog.c:242:62: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). gchar *filename_conv = g_strdup(filename+strlen(basedir)+1); data/easytag-2.4.3/src/playlist_dialog.c:267:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). to_write = g_string_new (filename+strlen(basedir)+1); data/easytag-2.4.3/src/playlist_dialog.c:496:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (tmp_string[strlen(tmp_string)-1]==G_DIR_SEPARATOR) data/easytag-2.4.3/src/playlist_dialog.c:497:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp_string[strlen(tmp_string)-1] = '\0'; data/easytag-2.4.3/src/playlist_dialog.c:515:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (playlist_path_utf8[strlen(playlist_path_utf8)-1]==G_DIR_SEPARATOR) data/easytag-2.4.3/src/playlist_dialog.c:516:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). playlist_path_utf8[strlen(playlist_path_utf8)-1] = '\0'; data/easytag-2.4.3/src/playlist_dialog.c:524:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (playlist_path_utf8[strlen(playlist_path_utf8)-1]==G_DIR_SEPARATOR) data/easytag-2.4.3/src/playlist_dialog.c:623:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(tmp)>1 && (tmp[1]=='t' || tmp[1]=='a' || tmp[1]=='b' || tmp[1]=='y' || data/easytag-2.4.3/src/playlist_dialog.c:628:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(mask+strlen(mask)-strlen(tmp)) = '\0'; data/easytag-2.4.3/src/playlist_dialog.c:628:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(mask+strlen(mask)-strlen(tmp)) = '\0'; data/easytag-2.4.3/src/scan.c:383:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (string, tmp, len); data/easytag-2.4.3/src/scan.c:390:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(string, utf8_character, g_unichar_to_utf8(g_unichar_toupper(c), utf8_character)); data/easytag-2.4.3/src/scan.c:413:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(word, utf8_character, g_unichar_to_utf8(g_unichar_toupper(c), utf8_character)); data/easytag-2.4.3/src/scan.c:424:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy (word, tmp, len); data/easytag-2.4.3/src/scan.c:431:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(word, utf8_character, g_unichar_to_utf8(g_unichar_toupper(c), utf8_character)); data/easytag-2.4.3/src/scan.c:442:58: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (g_ascii_strncasecmp(exempt[i], word, strlen(exempt[i])) == 0) data/easytag-2.4.3/src/scan.c:445:21: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(word, utf8_character, g_unichar_to_utf8(g_unichar_tolower(c), utf8_character)); data/easytag-2.4.3/src/scan.c:471:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(temp, utf8_character, g_unichar_to_utf8(g_unichar_toupper(c), utf8_character)); data/easytag-2.4.3/src/scan_dialog.c:536:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (tmp=strchr(mask_seq,'%')) == NULL || strlen(tmp) < 2 ) data/easytag-2.4.3/src/scan_dialog.c:552:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (len = strlen(mask_seq) - strlen(tmp)) > 0 ) data/easytag-2.4.3/src/scan_dialog.c:552:44: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (len = strlen(mask_seq) - strlen(tmp)) > 0 ) data/easytag-2.4.3/src/scan_dialog.c:579:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (tmp=strchr(mask_seq,'%')) == NULL || strlen(tmp) < 2 ) data/easytag-2.4.3/src/scan_dialog.c:582:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(mask_seq); data/easytag-2.4.3/src/scan_dialog.c:585:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(mask_seq) - strlen(tmp); data/easytag-2.4.3/src/scan_dialog.c:585:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(mask_seq) - strlen(tmp); data/easytag-2.4.3/src/scan_dialog.c:602:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(file_seq) - (tmp!=NULL?strlen(tmp):0); data/easytag-2.4.3/src/scan_dialog.c:602:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(file_seq) - (tmp!=NULL?strlen(tmp):0); data/easytag-2.4.3/src/scan_dialog.c:606:39: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_seq = file_seq + strlen(string) + strlen(separator); data/easytag-2.4.3/src/scan_dialog.c:606:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). file_seq = file_seq + strlen(string) + strlen(separator); data/easytag-2.4.3/src/scan_dialog.c:909:60: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). while ( mask!=NULL && (tmp=strrchr(mask,'%'))!=NULL && strlen(tmp)>1 ) data/easytag-2.4.3/src/scan_dialog.c:912:13: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(tmp)>2) data/easytag-2.4.3/src/scan_dialog.c:1067:119: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( filename_new_utf8 && mask_item_next->string && (strncmp(filename_new_utf8,mask_item_next->string,strlen(mask_item_next->string))==0) ) // To avoid crash if filename_new_utf8 is 'empty' data/easytag-2.4.3/src/scan_dialog.c:1070:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). filename_new_utf8 = g_strdup(filename_new_utf8+strlen(mask_item_next->string)); data/easytag-2.4.3/src/scan_dialog.c:1149:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). && strncmp (combo_text, path_utf8_cur, strlen (path_utf8_cur)) != 0) data/easytag-2.4.3/src/scan_dialog.c:2585:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( strlen(tmp)>1 data/easytag-2.4.3/src/scan_dialog.c:2591:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(mask+strlen(mask)-strlen(tmp)) = '\0'; data/easytag-2.4.3/src/scan_dialog.c:2591:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(mask+strlen(mask)-strlen(tmp)) = '\0'; data/easytag-2.4.3/src/scan_dialog.c:2602:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( strlen(tmp)>2 data/easytag-2.4.3/src/scan_dialog.c:2608:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(mask+strlen(mask)-strlen(tmp)) = '\0'; data/easytag-2.4.3/src/scan_dialog.c:2608:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(mask+strlen(mask)-strlen(tmp)) = '\0'; data/easytag-2.4.3/src/scan_dialog.c:2665:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( strlen(tmp)>1 data/easytag-2.4.3/src/scan_dialog.c:2672:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(mask+strlen(mask)-strlen(tmp)) = '\0'; data/easytag-2.4.3/src/scan_dialog.c:2672:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). *(mask+strlen(mask)-strlen(tmp)) = '\0'; data/easytag-2.4.3/src/tag_area.c:1171:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (!et_str_empty (year) && strlen (year) < 4) data/easytag-2.4.3/src/tag_area.c:1180:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tmp = ¤t_year[4-strlen(year)]; data/easytag-2.4.3/src/tag_area.c:1192:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). - (strlen (year) <= 0 ? 1 : strlen (year) <= 1 ? 10 : // pow(10,strlen(year)) returns 99 instead of 100 under Win32... data/easytag-2.4.3/src/tag_area.c:1192:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). - (strlen (year) <= 0 ? 1 : strlen (year) <= 1 ? 10 : // pow(10,strlen(year)) returns 99 instead of 100 under Win32... data/easytag-2.4.3/src/tag_area.c:1193:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen (year) <= 2 ? 100 : strlen (year) <= 3 ? 1000 : 0)); data/easytag-2.4.3/src/tag_area.c:1193:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen (year) <= 2 ? 100 : strlen (year) <= 3 ? 1000 : 0)); data/easytag-2.4.3/src/tags/flac_tag.c:619:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). field.length = strlen (tag); data/easytag-2.4.3/src/tags/flac_tag.c:834:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). vce_field_vendor_string.length = strlen ((gchar *)vce_field_vendor_string.entry); data/easytag-2.4.3/src/tags/id3_tag.c:1192:56: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if ( (string_converted = g_convert(string, strlen(string), "ISO-8859-1", data/easytag-2.4.3/src/tags/id3_tag.c:1276:61: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). string_converted = convert_string_1(string, strlen(string), "UTF-8", data/easytag-2.4.3/src/tags/id3v24_tag.c:453:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen (EASYTAG_STRING_ENCODEDBY MULTIFIELD_SEPARATOR)) == 0) data/easytag-2.4.3/src/tags/id3v24_tag.c:1283:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). && (g_ascii_strncasecmp (str, param1, strlen (param1)) == 0)) data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:279:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return libapetag_maloc_cont (mem_cnt, flags, strlen (name), name, strlen (value), value); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:279:71: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return libapetag_maloc_cont (mem_cnt, flags, strlen (name), name, strlen (value), value); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:623:59: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). libapetag_maloc_cont_text(mem_cnt, 0, 5, "Track", strlen(track), track); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:632:17: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(genre_no(m.genre)), genre_no(m.genre)); data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:766:24: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sizeName = strlen((char *)p + 8); data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:133:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ItemSizE = strlen(APENamE) ; \ data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:169:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(item, convert[i].APEName, *item_len); data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:188:29: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(item + (*item_len),value_ds ,(value_len2 + 1)); data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:219:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(item, convert[i].APEName, *item_len); data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:248:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(item, convert[i].APEName, *item_len); data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:276:17: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(item, convert[i].APEName, *item_len); data/easytag-2.4.3/src/tags/ogg_tag.c:105:17: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read = (read << 8) + str[i]; data/easytag-2.4.3/src/tags/ogg_tag.c:108:12: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return read; data/easytag-2.4.3/src/tags/ogg_tag.c:1089:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). desclen = pic->description ? strlen (pic->description) : 0; data/easytag-2.4.3/src/tags/ogg_tag.c:1090:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ustring = g_malloc (4 * 8 + strlen (mime) + desclen + data_size); data/easytag-2.4.3/src/tags/ogg_tag.c:1097:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). convert_to_byte_array (strlen (mime), array); data/easytag-2.4.3/src/tags/ogg_tag.c:1100:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen (mime)); data/easytag-2.4.3/src/tags/vcedit.c:185:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). oggpack_write (&opb, strlen (vendor), 32); data/easytag-2.4.3/src/tags/vcedit.c:186:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). _v_writestring (&opb,vendor, strlen (vendor)); data/easytag-2.4.3/src/tags/wavpack_tag.c:332:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). return WavpackAppendTagItem (wpc, tag, value, strlen (value)); data/easytag-2.4.3/tests/test-picture.c:225:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen (pictures[i].data) + 1); ANALYSIS SUMMARY: Hits = 225 Lines analyzed = 52369 in approximately 1.19 seconds (44171 lines/second) Physical Source Lines of Code (SLOC) = 36123 Hits@level = [0] 12 [1] 113 [2] 96 [3] 4 [4] 12 [5] 0 Hits@level+ = [0+] 237 [1+] 225 [2+] 112 [3+] 16 [4+] 12 [5+] 0 Hits/KSLOC@level+ = [0+] 6.56092 [1+] 6.22872 [2+] 3.10052 [3+] 0.442931 [4+] 0.332198 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.