Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/easytag-2.4.3/nautilus-extension/nautilus-easytag.c
Examining data/easytag-2.4.3/src/core_types.h
Examining data/easytag-2.4.3/src/file_list.c
Examining data/easytag-2.4.3/src/easytag.h
Examining data/easytag-2.4.3/src/application.c
Examining data/easytag-2.4.3/src/load_files_dialog.h
Examining data/easytag-2.4.3/src/status_bar.h
Examining data/easytag-2.4.3/src/tags/flac_private.c
Examining data/easytag-2.4.3/src/tags/id3_tag.c
Examining data/easytag-2.4.3/src/tags/gio_wrapper.cc
Examining data/easytag-2.4.3/src/tags/opus_header.h
Examining data/easytag-2.4.3/src/tags/id3_tag.h
Examining data/easytag-2.4.3/src/tags/mp4_tag.cc
Examining data/easytag-2.4.3/src/tags/flac_tag.c
Examining data/easytag-2.4.3/src/tags/wavpack_header.c
Examining data/easytag-2.4.3/src/tags/gio_wrapper.h
Examining data/easytag-2.4.3/src/tags/wavpack_tag.h
Examining data/easytag-2.4.3/src/tags/wavpack_private.c
Examining data/easytag-2.4.3/src/tags/wavpack_private.h
Examining data/easytag-2.4.3/src/tags/ogg_tag.c
Examining data/easytag-2.4.3/src/tags/mpeg_header.h
Examining data/easytag-2.4.3/src/tags/opus_tag.c
Examining data/easytag-2.4.3/src/tags/mp4_tag.h
Examining data/easytag-2.4.3/src/tags/flac_private.h
Examining data/easytag-2.4.3/src/tags/ogg_tag.h
Examining data/easytag-2.4.3/src/tags/wavpack_header.h
Examining data/easytag-2.4.3/src/tags/ape_tag.h
Examining data/easytag-2.4.3/src/tags/flac_header.h
Examining data/easytag-2.4.3/src/tags/vcedit.h
Examining data/easytag-2.4.3/src/tags/wavpack_tag.c
Examining data/easytag-2.4.3/src/tags/ape_tag.c
Examining data/easytag-2.4.3/src/tags/musepack_header.c
Examining data/easytag-2.4.3/src/tags/musepack_header.h
Examining data/easytag-2.4.3/src/tags/mp4_header.cc
Examining data/easytag-2.4.3/src/tags/mp4_header.h
Examining data/easytag-2.4.3/src/tags/mpeg_header.c
Examining data/easytag-2.4.3/src/tags/id3v24_tag.c
Examining data/easytag-2.4.3/src/tags/flac_tag.h
Examining data/easytag-2.4.3/src/tags/ogg_header.h
Examining data/easytag-2.4.3/src/tags/monkeyaudio_header.c
Examining data/easytag-2.4.3/src/tags/monkeyaudio_header.h
Examining data/easytag-2.4.3/src/tags/id3lib/c_wrapper.cpp
Examining data/easytag-2.4.3/src/tags/id3lib/id3_bugfix.h
Examining data/easytag-2.4.3/src/tags/opus_tag.h
Examining data/easytag-2.4.3/src/tags/ogg_header.c
Examining data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c
Examining data/easytag-2.4.3/src/tags/libapetag/info_mpc.c
Examining data/easytag-2.4.3/src/tags/libapetag/id3v2_read.h
Examining data/easytag-2.4.3/src/tags/libapetag/is_tag.c
Examining data/easytag-2.4.3/src/tags/libapetag/is_tag.h
Examining data/easytag-2.4.3/src/tags/libapetag/apetaglib.h
Examining data/easytag-2.4.3/src/tags/libapetag/info_mac.h
Examining data/easytag-2.4.3/src/tags/libapetag/apetaglib.c
Examining data/easytag-2.4.3/src/tags/libapetag/info_mpc.h
Examining data/easytag-2.4.3/src/tags/libapetag/info_mac.c
Examining data/easytag-2.4.3/src/tags/opus_header.c
Examining data/easytag-2.4.3/src/tags/flac_header.c
Examining data/easytag-2.4.3/src/tags/vcedit.c
Examining data/easytag-2.4.3/src/application_window.h
Examining data/easytag-2.4.3/src/file.h
Examining data/easytag-2.4.3/src/load_files_dialog.c
Examining data/easytag-2.4.3/src/browser.c
Examining data/easytag-2.4.3/src/file_area.h
Examining data/easytag-2.4.3/src/dlm.c
Examining data/easytag-2.4.3/src/scan.c
Examining data/easytag-2.4.3/src/et_core.c
Examining data/easytag-2.4.3/src/et_core.h
Examining data/easytag-2.4.3/src/file.c
Examining data/easytag-2.4.3/src/cddb_dialog.h
Examining data/easytag-2.4.3/src/file_tag.h
Examining data/easytag-2.4.3/src/file_name.c
Examining data/easytag-2.4.3/src/cddb_dialog.c
Examining data/easytag-2.4.3/src/file_name.h
Examining data/easytag-2.4.3/src/about.h
Examining data/easytag-2.4.3/src/setting.c
Examining data/easytag-2.4.3/src/file_description.h
Examining data/easytag-2.4.3/src/application_window.c
Examining data/easytag-2.4.3/src/about.c
Examining data/easytag-2.4.3/src/tag_area.h
Examining data/easytag-2.4.3/src/enums.c
Examining data/easytag-2.4.3/src/file_info.c
Examining data/easytag-2.4.3/src/charset.h
Examining data/easytag-2.4.3/src/win32/resource.h
Examining data/easytag-2.4.3/src/win32/win32dep.h
Examining data/easytag-2.4.3/src/win32/win32dep.c
Examining data/easytag-2.4.3/src/easytag.c
Examining data/easytag-2.4.3/src/main.c
Examining data/easytag-2.4.3/src/genres.h
Examining data/easytag-2.4.3/src/preferences_dialog.h
Examining data/easytag-2.4.3/src/file_info.h
Examining data/easytag-2.4.3/src/application.h
Examining data/easytag-2.4.3/src/playlist_dialog.h
Examining data/easytag-2.4.3/src/log.c
Examining data/easytag-2.4.3/src/crc32.h
Examining data/easytag-2.4.3/src/file_list.h
Examining data/easytag-2.4.3/src/scan_dialog.c
Examining data/easytag-2.4.3/src/charset.c
Examining data/easytag-2.4.3/src/tag_area.c
Examining data/easytag-2.4.3/src/misc.h
Examining data/easytag-2.4.3/src/progress_bar.h
Examining data/easytag-2.4.3/src/scan.h
Examining data/easytag-2.4.3/src/browser.h
Examining data/easytag-2.4.3/src/progress_bar.c
Examining data/easytag-2.4.3/src/scan_dialog.h
Examining data/easytag-2.4.3/src/search_dialog.h
Examining data/easytag-2.4.3/src/status_bar.c
Examining data/easytag-2.4.3/src/crc32.c
Examining data/easytag-2.4.3/src/file_area.c
Examining data/easytag-2.4.3/src/picture.h
Examining data/easytag-2.4.3/src/search_dialog.c
Examining data/easytag-2.4.3/src/dlm.h
Examining data/easytag-2.4.3/src/setting.h
Examining data/easytag-2.4.3/src/file_tag.c
Examining data/easytag-2.4.3/src/misc.c
Examining data/easytag-2.4.3/src/picture.c
Examining data/easytag-2.4.3/src/playlist_dialog.c
Examining data/easytag-2.4.3/src/log.h
Examining data/easytag-2.4.3/src/file_description.c
Examining data/easytag-2.4.3/src/preferences_dialog.c
Examining data/easytag-2.4.3/tests/test-dlm.c
Examining data/easytag-2.4.3/tests/test-file_tag.c
Examining data/easytag-2.4.3/tests/test-misc.c
Examining data/easytag-2.4.3/tests/test-file_info.c
Examining data/easytag-2.4.3/tests/test-scan.c
Examining data/easytag-2.4.3/tests/test-file_description.c
Examining data/easytag-2.4.3/tests/test-genres.c
Examining data/easytag-2.4.3/tests/test-picture.c
FINAL RESULTS:
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:38:20: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_D(x) fprintf( stdout, x )
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:39:23: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_D1(x,a) fprintf( stdout, x, a )
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:40:25: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_D2(x,a,b) fprintf( stdout, x, a,b)
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:41:27: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_D3(x,a,b,c) fprintf( stdout, x, a,b,c)
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:42:29: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_D4(x,a,b,c,d) fprintf( stdout, x, a,b,c,d)
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:43:31: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_D5(x,a,b,c,d,e) fprintf( stdout, x, a,b,c,d,e)
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:44:33: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_D6(x,a,b,c,d,e,f) fprintf( stdout, x, a,b,c,d,e,f)
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:45:35: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_D7(x,a,b,c,d,e,f,g) fprintf( stdout, x, a,b,c,d,e,f,g)
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:46:37: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_D8(x,a,b,c,d,e,f,g,i) fprintf( stdout, x, a,b,c,d,e,f,g,i)
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:47:39: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_D9(x,a,b,c,d,e,f,g,i,j) fprintf( stdout, x ,a,b,c,d,e,f,g,i,j )
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:61:22: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_ERR(x) fprintf( stderr, x )
data/easytag-2.4.3/src/tags/libapetag/apetaglib.h:62:26: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define PRINT_ERR1(x, a) fprintf( stderr, x ,a)
data/easytag-2.4.3/src/browser.c:247:33: [3] (buffer) g_get_home_dir:
This function is synonymous with 'getenv("HOME")';it returns untrustable
input if the environment can beset by an attacker. It can have any content
and length, and the same variable can be set more than once (CWE-807,
CWE-20). Check environment variables carefully before using them.
file = g_file_new_for_path (g_get_home_dir ());
data/easytag-2.4.3/src/browser.c:3962:33: [3] (buffer) g_get_home_dir:
This function is synonymous with 'getenv("HOME")';it returns untrustable
input if the environment can beset by an attacker. It can have any content
and length, and the same variable can be set more than once (CWE-807,
CWE-20). Check environment variables carefully before using them.
file = g_file_new_for_path (g_get_home_dir ());
data/easytag-2.4.3/src/setting.c:99:64: [3] (buffer) g_get_home_dir:
This function is synonymous with 'getenv("HOME")';it returns untrustable
input if the environment can beset by an attacker. It can have any content
and length, and the same variable can be set more than once (CWE-807,
CWE-20). Check environment variables carefully before using them.
: g_get_home_dir ()));
data/easytag-2.4.3/src/setting.c:534:45: [3] (buffer) g_get_home_dir:
This function is synonymous with 'getenv("HOME")';it returns untrustable
input if the environment can beset by an attacker. It can have any content
and length, and the same variable can be set more than once (CWE-807,
CWE-20). Check environment variables carefully before using them.
gchar *old_path = g_build_filename (g_get_home_dir (),
data/easytag-2.4.3/src/cddb_dialog.c:1111:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cddbalbum->duration = atoi(strchr(cddb_out,':')+1);
data/easytag-2.4.3/src/cddb_dialog.c:1192:44: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cddbtrackalbum->track_number = atoi(cddb_out+6)+1;
data/easytag-2.4.3/src/cddb_dialog.c:1234:56: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cddbalbum->year = g_strdup_printf("%d",atoi(year_ptr+5));
data/easytag-2.4.3/src/cddb_dialog.c:1236:68: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cddbalbum->genre = g_strdup(Id3tag_Genre_To_String(atoi(genre_ptr+5)));
data/easytag-2.4.3/src/cddb_dialog.c:2055:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
total_num_albums = atoi(cddb_out_tmp + strlen(sraf_str));
data/easytag-2.4.3/src/file.c:128:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
track1 = atoi (((File_Tag *)ETFile1->FileTag->data)->disc_number);
data/easytag-2.4.3/src/file.c:138:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
track2 = atoi (((File_Tag *)ETFile2->FileTag->data)->disc_number);
data/easytag-2.4.3/src/file.c:175:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
track1 = atoi( ((File_Tag *)ETFile1->FileTag->data)->track );
data/easytag-2.4.3/src/file.c:180:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
track2 = atoi( ((File_Tag *)ETFile2->FileTag->data)->track );
data/easytag-2.4.3/src/file.c:475:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
year1 = atoi( ((File_Tag *)ETFile1->FileTag->data)->year );
data/easytag-2.4.3/src/file.c:480:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
year2 = atoi( ((File_Tag *)ETFile2->FileTag->data)->year );
data/easytag-2.4.3/src/file.c:1139:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_total = et_disc_number_to_string (atoi (FileTagCur->disc_total));
data/easytag-2.4.3/src/file.c:1164:53: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track = et_track_number_to_string (atoi (FileTagCur->track));
data/easytag-2.4.3/src/file.c:1180:59: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track_total = et_track_number_to_string (atoi (FileTagCur->track_total));
data/easytag-2.4.3/src/tag_area.c:1182:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi (year) <= atoi (tmp))
data/easytag-2.4.3/src/tag_area.c:1182:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi (year) <= atoi (tmp))
data/easytag-2.4.3/src/tag_area.c:1184:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (current_year, "%d", atoi (current_year) - atoi (tmp));
data/easytag-2.4.3/src/tag_area.c:1184:42: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sprintf (current_year, "%d", atoi (current_year) - atoi (tmp));
data/easytag-2.4.3/src/tag_area.c:1184:64: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sprintf (current_year, "%d", atoi (current_year) - atoi (tmp));
data/easytag-2.4.3/src/tag_area.c:1185:43: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp1 = g_strdup_printf ("%d", atoi (current_year) + atoi (year));
data/easytag-2.4.3/src/tag_area.c:1185:65: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp1 = g_strdup_printf ("%d", atoi (current_year) + atoi (year));
data/easytag-2.4.3/src/tag_area.c:1191:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (current_year, "%d", atoi (current_year) - atoi (tmp)
data/easytag-2.4.3/src/tag_area.c:1191:42: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sprintf (current_year, "%d", atoi (current_year) - atoi (tmp)
data/easytag-2.4.3/src/tag_area.c:1191:64: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sprintf (current_year, "%d", atoi (current_year) - atoi (tmp)
data/easytag-2.4.3/src/tag_area.c:1194:43: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp1 = g_strdup_printf ("%d", atoi (current_year) + atoi (year));
data/easytag-2.4.3/src/tag_area.c:1194:65: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp1 = g_strdup_printf ("%d", atoi (current_year) + atoi (year));
data/easytag-2.4.3/src/tag_area.c:2781:53: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track = et_track_number_to_string (atoi (buffer));
data/easytag-2.4.3/src/tag_area.c:2796:59: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track_total = et_track_number_to_string (atoi (buffer));
data/easytag-2.4.3/src/tags/ape_tag.c:128:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_total = et_disc_number_to_string (atoi (string1
data/easytag-2.4.3/src/tags/ape_tag.c:133:58: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_number = et_disc_number_to_string (atoi (string));
data/easytag-2.4.3/src/tags/ape_tag.c:157:63: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track_total = et_track_number_to_string (atoi (string1
data/easytag-2.4.3/src/tags/ape_tag.c:161:53: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track = et_track_number_to_string (atoi (string));
data/easytag-2.4.3/src/tags/flac_tag.c:308:69: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_total = et_disc_number_to_string (atoi (strings->data));
data/easytag-2.4.3/src/tags/flac_tag.c:328:73: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_total = et_disc_number_to_string (atoi (separator + 1));
data/easytag-2.4.3/src/tags/flac_tag.c:332:70: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_number = et_disc_number_to_string (atoi (strings->data));
data/easytag-2.4.3/src/tags/flac_tag.c:347:71: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track_total = et_track_number_to_string (atoi (strings->data));
data/easytag-2.4.3/src/tags/flac_tag.c:367:75: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track_total = et_track_number_to_string (atoi (separator + 1));
data/easytag-2.4.3/src/tags/flac_tag.c:371:65: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track = et_track_number_to_string (atoi (strings->data));
data/easytag-2.4.3/src/tags/gio_wrapper.cc:272:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[4096];
data/easytag-2.4.3/src/tags/gio_wrapper.cc:362:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *buffer[4096];
data/easytag-2.4.3/src/tags/id3_tag.c:1470:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tmp[256];
data/easytag-2.4.3/src/tags/id3_tag.c:1471:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tmp0[256];
data/easytag-2.4.3/src/tags/id3v24_tag.c:289:65: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_total = et_disc_number_to_string (atoi (string2
data/easytag-2.4.3/src/tags/id3v24_tag.c:294:62: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_number = et_disc_number_to_string (atoi (string1));
data/easytag-2.4.3/src/tags/id3v24_tag.c:324:67: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track_total = et_track_number_to_string (atoi (string2 + 1));
data/easytag-2.4.3/src/tags/id3v24_tag.c:327:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track = et_track_number_to_string (atoi (string1));
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:51:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char id[8]; /**< magic should equal 'APETAGEX' */
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:52:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char version[4]; /**< version 1000 (v1.0) or 2000 (v 2.0) */
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:53:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char length[4]; /**< the complete size of the tag, including footer, but no header for v2.0 */
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:54:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tagCount[4]; /**< the number of fields in the tag */
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:55:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char flags[4]; /**< the tag flags (none currently defined for v 1.0) */
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:56:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char reserved[8]; /**< reserved for later use */
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:80:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char magic[3]; // `TAG`
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:81:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char title[30];
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:82:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char artist[30];
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:83:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char album[30];
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:84:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char year[4];
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:85:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char comment[30]; // if ([28]==0 and [29]!=0) track = [29]
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:214:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (mTag->value, value, sizeValue);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:215:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (mTag->name, name, sizeName);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:621:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char track[20];
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:647:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (TagValuE, FramkA->value, \
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:664:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (m->magic,"TAG",3);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:671:40: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
m->comment[29]=(unsigned char) atoi(framka->value);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:901:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char temp[4];
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:972:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (p, ape_footer.id, sizeof (ape_footer));
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:986:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (p, temp, 4);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:989:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (p, temp, 4);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:992:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (p, mTag[n]->name, mTag[n]->sizeName);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:994:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (p, "\0", 1);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:996:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (p, mTag[n]->value, mTag[n]->sizeValue);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:1000:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (p, "\0", 1);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:1010:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (p, ape_footer.id, sizeof (ape_footer));
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:1014:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (p, &id3v1_tag , sizeof (struct _id3v1Tag));
data/easytag-2.4.3/src/tags/libapetag/info_mac.c:38:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id[4]; // should equal 'MAC '
data/easytag-2.4.3/src/tags/libapetag/info_mpc.c:185:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stream_info->Encoder, "<= 1.05"); // Buschmann 1.7.x, Klemm <= 1.05
data/easytag-2.4.3/src/tags/libapetag/info_mpc.c:192:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stream_info->Encoder, "%u.%u",
data/easytag-2.4.3/src/tags/libapetag/info_mpc.c:200:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stream_info->Encoder, "%u.%02u Beta",
data/easytag-2.4.3/src/tags/libapetag/info_mpc.c:205:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (stream_info->Encoder, "%u.%02u Alpha",
data/easytag-2.4.3/src/tags/libapetag/info_mpc.h:63:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Encoder[256]; /**< Encoder Version in string */
data/easytag-2.4.3/src/tags/libapetag/is_tag.c:58:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/easytag-2.4.3/src/tags/libapetag/is_tag.c:91:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/easytag-2.4.3/src/tags/libapetag/is_tag.c:127:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unsigned buf[32];
data/easytag-2.4.3/src/tags/libapetag/is_tag.c:159:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unsigned buf[32];
data/easytag-2.4.3/src/tags/ogg_tag.c:315:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_total = et_disc_number_to_string (atoi (strings->data));
data/easytag-2.4.3/src/tags/ogg_tag.c:334:65: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_total = et_disc_number_to_string (atoi (separator + 1));
data/easytag-2.4.3/src/tags/ogg_tag.c:338:62: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_number = et_disc_number_to_string (atoi (strings->data));
data/easytag-2.4.3/src/tags/ogg_tag.c:360:63: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track_total = et_track_number_to_string (atoi (strings->data));
data/easytag-2.4.3/src/tags/ogg_tag.c:379:67: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track_total = et_track_number_to_string (atoi (separator + 1));
data/easytag-2.4.3/src/tags/ogg_tag.c:383:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track = et_track_number_to_string (atoi (strings->data));
data/easytag-2.4.3/src/tags/ogg_tag.c:519:50: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
type = !et_str_empty (m->data) ? atoi (m->data)
data/easytag-2.4.3/src/tags/vcedit.c:213:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (op->packet, opb.buffer, oggpack_bytes (&opb));
data/easytag-2.4.3/src/tags/wavpack_tag.c:174:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_total = et_disc_number_to_string (atoi (tmp));
data/easytag-2.4.3/src/tags/wavpack_tag.c:183:58: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->disc_number = et_disc_number_to_string (atoi (tmp));
data/easytag-2.4.3/src/tags/wavpack_tag.c:217:59: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track_total = et_track_number_to_string (atoi (tmp));
data/easytag-2.4.3/src/tags/wavpack_tag.c:226:53: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
FileTag->track = et_track_number_to_string (atoi (tmp));
data/easytag-2.4.3/src/browser.c:997:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncasecmp(drive,nodeName, strlen(drive)) == 0)
data/easytag-2.4.3/src/browser.c:3321:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
path_shift = strlen (old_path);
data/easytag-2.4.3/src/cddb_dialog.c:975:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( (bytes_written=send(socket_id,cddb_in,strlen(cddb_in)+1,0)) < 0)
data/easytag-2.4.3/src/cddb_dialog.c:1082:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen (cddb_out) <= 3 && strstr (cddb_out, CDDB_END_STR) != NULL)
data/easytag-2.4.3/src/cddb_dialog.c:1613:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( (bytes_written=send(socket_id,cddb_in,strlen(cddb_in)+1,0)) < 0)
data/easytag-2.4.3/src/cddb_dialog.c:1719:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cddb_out_tmp = ptr_cat + strlen(cat_str);
data/easytag-2.4.3/src/cddb_dialog.c:1720:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN);
data/easytag-2.4.3/src/cddb_dialog.c:1728:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cddb_out_tmp = ptr_cat + strlen(cat_str) + 2;
data/easytag-2.4.3/src/cddb_dialog.c:1729:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN);
data/easytag-2.4.3/src/cddb_dialog.c:1737:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cddb_out_tmp = strstr(cddb_out_tmp,art_alb_str) + strlen(art_alb_str);
data/easytag-2.4.3/src/cddb_dialog.c:1738:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN);
data/easytag-2.4.3/src/cddb_dialog.c:1772:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cddb_out_tmp = strstr(cddb_out_tmp,end_str) + strlen(end_str);
data/easytag-2.4.3/src/cddb_dialog.c:1959:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( (bytes_written=send(socket_id,cddb_in,strlen(cddb_in)+1,0)) < 0)
data/easytag-2.4.3/src/cddb_dialog.c:2055:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
total_num_albums = atoi(cddb_out_tmp + strlen(sraf_str));
data/easytag-2.4.3/src/cddb_dialog.c:2078:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cddb_out_tmp = ptr_cat + strlen(cat_str);
data/easytag-2.4.3/src/cddb_dialog.c:2079:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN);
data/easytag-2.4.3/src/cddb_dialog.c:2110:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cddb_out_tmp = ptr_cat + strlen(cat_str) + 2;
data/easytag-2.4.3/src/cddb_dialog.c:2111:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN);
data/easytag-2.4.3/src/cddb_dialog.c:2118:67: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cddb_out_tmp = strstr(cddb_out_tmp,art_alb_str) + strlen(art_alb_str);
data/easytag-2.4.3/src/cddb_dialog.c:2119:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer,cddb_out_tmp,MAX_STRING_LEN);
data/easytag-2.4.3/src/cddb_dialog.c:2882:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen(buffer);
data/easytag-2.4.3/src/cddb_dialog.c:2887:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while ((l = strlen(buffer)) > 0 && buffer[l-1] == '\r')
data/easytag-2.4.3/src/cddb_dialog.c:2959:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!*cddb_out || strlen (*cddb_out) < 10)
data/easytag-2.4.3/src/cddb_dialog.c:3267:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( (bytes_written=send(socket_id,cddb_in,strlen(cddb_in)+1,0)) < 0)
data/easytag-2.4.3/src/cddb_dialog.c:3352:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (cddb_out_tmp && strlen (cddb_out_tmp) <= 3
data/easytag-2.4.3/src/cddb_dialog.c:3361:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( cddb_out_tmp && strlen(cddb_out_tmp)>3
data/easytag-2.4.3/src/cddb_dialog.c:3504:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
str_encoded = g_base64_encode((const guchar *)tempstr, strlen(tempstr));
data/easytag-2.4.3/src/dlm.c:39:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = strlen(s);
data/easytag-2.4.3/src/dlm.c:40:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
m = strlen(t);
data/easytag-2.4.3/src/file_list.c:1221:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (old_path[strlen (old_path) - 1] == G_DIR_SEPARATOR)
data/easytag-2.4.3/src/file_list.c:1243:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (filename, old_path_tmp, strlen (old_path_tmp))
data/easytag-2.4.3/src/file_list.c:1250:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(new_path[strlen (new_path) - 1] == G_DIR_SEPARATOR) ? "" : G_DIR_SEPARATOR_S,
data/easytag-2.4.3/src/file_list.c:1251:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&filename[strlen (old_path_tmp)],NULL);
data/easytag-2.4.3/src/misc.c:433:24: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
old_mode = umask (077);
data/easytag-2.4.3/src/misc.c:435:13: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask (old_mode);
data/easytag-2.4.3/src/misc.c:566:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
last = strlen (filename_utf8) - 1;
data/easytag-2.4.3/src/playlist_dialog.c:163:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strncmp(filename,basedir,strlen(basedir))==0 )
data/easytag-2.4.3/src/playlist_dialog.c:242:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gchar *filename_conv = g_strdup(filename+strlen(basedir)+1);
data/easytag-2.4.3/src/playlist_dialog.c:267:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
to_write = g_string_new (filename+strlen(basedir)+1);
data/easytag-2.4.3/src/playlist_dialog.c:496:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (tmp_string[strlen(tmp_string)-1]==G_DIR_SEPARATOR)
data/easytag-2.4.3/src/playlist_dialog.c:497:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmp_string[strlen(tmp_string)-1] = '\0';
data/easytag-2.4.3/src/playlist_dialog.c:515:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (playlist_path_utf8[strlen(playlist_path_utf8)-1]==G_DIR_SEPARATOR)
data/easytag-2.4.3/src/playlist_dialog.c:516:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
playlist_path_utf8[strlen(playlist_path_utf8)-1] = '\0';
data/easytag-2.4.3/src/playlist_dialog.c:524:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (playlist_path_utf8[strlen(playlist_path_utf8)-1]==G_DIR_SEPARATOR)
data/easytag-2.4.3/src/playlist_dialog.c:623:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tmp)>1 && (tmp[1]=='t' || tmp[1]=='a' || tmp[1]=='b' || tmp[1]=='y' ||
data/easytag-2.4.3/src/playlist_dialog.c:628:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*(mask+strlen(mask)-strlen(tmp)) = '\0';
data/easytag-2.4.3/src/playlist_dialog.c:628:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*(mask+strlen(mask)-strlen(tmp)) = '\0';
data/easytag-2.4.3/src/scan.c:383:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (string, tmp, len);
data/easytag-2.4.3/src/scan.c:390:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(string, utf8_character, g_unichar_to_utf8(g_unichar_toupper(c), utf8_character));
data/easytag-2.4.3/src/scan.c:413:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(word, utf8_character, g_unichar_to_utf8(g_unichar_toupper(c), utf8_character));
data/easytag-2.4.3/src/scan.c:424:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (word, tmp, len);
data/easytag-2.4.3/src/scan.c:431:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(word, utf8_character, g_unichar_to_utf8(g_unichar_toupper(c), utf8_character));
data/easytag-2.4.3/src/scan.c:442:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (g_ascii_strncasecmp(exempt[i], word, strlen(exempt[i])) == 0)
data/easytag-2.4.3/src/scan.c:445:21: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(word, utf8_character, g_unichar_to_utf8(g_unichar_tolower(c), utf8_character));
data/easytag-2.4.3/src/scan.c:471:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(temp, utf8_character, g_unichar_to_utf8(g_unichar_toupper(c), utf8_character));
data/easytag-2.4.3/src/scan_dialog.c:536:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( (tmp=strchr(mask_seq,'%')) == NULL || strlen(tmp) < 2 )
data/easytag-2.4.3/src/scan_dialog.c:552:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( (len = strlen(mask_seq) - strlen(tmp)) > 0 )
data/easytag-2.4.3/src/scan_dialog.c:552:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( (len = strlen(mask_seq) - strlen(tmp)) > 0 )
data/easytag-2.4.3/src/scan_dialog.c:579:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( (tmp=strchr(mask_seq,'%')) == NULL || strlen(tmp) < 2 )
data/easytag-2.4.3/src/scan_dialog.c:582:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(mask_seq);
data/easytag-2.4.3/src/scan_dialog.c:585:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(mask_seq) - strlen(tmp);
data/easytag-2.4.3/src/scan_dialog.c:585:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(mask_seq) - strlen(tmp);
data/easytag-2.4.3/src/scan_dialog.c:602:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(file_seq) - (tmp!=NULL?strlen(tmp):0);
data/easytag-2.4.3/src/scan_dialog.c:602:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(file_seq) - (tmp!=NULL?strlen(tmp):0);
data/easytag-2.4.3/src/scan_dialog.c:606:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file_seq = file_seq + strlen(string) + strlen(separator);
data/easytag-2.4.3/src/scan_dialog.c:606:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
file_seq = file_seq + strlen(string) + strlen(separator);
data/easytag-2.4.3/src/scan_dialog.c:909:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while ( mask!=NULL && (tmp=strrchr(mask,'%'))!=NULL && strlen(tmp)>1 )
data/easytag-2.4.3/src/scan_dialog.c:912:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tmp)>2)
data/easytag-2.4.3/src/scan_dialog.c:1067:119: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( filename_new_utf8 && mask_item_next->string && (strncmp(filename_new_utf8,mask_item_next->string,strlen(mask_item_next->string))==0) ) // To avoid crash if filename_new_utf8 is 'empty'
data/easytag-2.4.3/src/scan_dialog.c:1070:68: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
filename_new_utf8 = g_strdup(filename_new_utf8+strlen(mask_item_next->string));
data/easytag-2.4.3/src/scan_dialog.c:1149:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strncmp (combo_text, path_utf8_cur, strlen (path_utf8_cur)) != 0)
data/easytag-2.4.3/src/scan_dialog.c:2585:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(tmp)>1
data/easytag-2.4.3/src/scan_dialog.c:2591:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*(mask+strlen(mask)-strlen(tmp)) = '\0';
data/easytag-2.4.3/src/scan_dialog.c:2591:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*(mask+strlen(mask)-strlen(tmp)) = '\0';
data/easytag-2.4.3/src/scan_dialog.c:2602:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(tmp)>2
data/easytag-2.4.3/src/scan_dialog.c:2608:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*(mask+strlen(mask)-strlen(tmp)) = '\0';
data/easytag-2.4.3/src/scan_dialog.c:2608:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*(mask+strlen(mask)-strlen(tmp)) = '\0';
data/easytag-2.4.3/src/scan_dialog.c:2665:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(tmp)>1
data/easytag-2.4.3/src/scan_dialog.c:2672:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*(mask+strlen(mask)-strlen(tmp)) = '\0';
data/easytag-2.4.3/src/scan_dialog.c:2672:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
*(mask+strlen(mask)-strlen(tmp)) = '\0';
data/easytag-2.4.3/src/tag_area.c:1171:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!et_str_empty (year) && strlen (year) < 4)
data/easytag-2.4.3/src/tag_area.c:1180:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmp = ¤t_year[4-strlen(year)];
data/easytag-2.4.3/src/tag_area.c:1192:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
- (strlen (year) <= 0 ? 1 : strlen (year) <= 1 ? 10 : // pow(10,strlen(year)) returns 99 instead of 100 under Win32...
data/easytag-2.4.3/src/tag_area.c:1192:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
- (strlen (year) <= 0 ? 1 : strlen (year) <= 1 ? 10 : // pow(10,strlen(year)) returns 99 instead of 100 under Win32...
data/easytag-2.4.3/src/tag_area.c:1193:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (year) <= 2 ? 100 : strlen (year) <= 3 ? 1000 : 0));
data/easytag-2.4.3/src/tag_area.c:1193:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (year) <= 2 ? 100 : strlen (year) <= 3 ? 1000 : 0));
data/easytag-2.4.3/src/tags/flac_tag.c:619:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
field.length = strlen (tag);
data/easytag-2.4.3/src/tags/flac_tag.c:834:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vce_field_vendor_string.length = strlen ((gchar *)vce_field_vendor_string.entry);
data/easytag-2.4.3/src/tags/id3_tag.c:1192:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( (string_converted = g_convert(string, strlen(string), "ISO-8859-1",
data/easytag-2.4.3/src/tags/id3_tag.c:1276:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
string_converted = convert_string_1(string, strlen(string), "UTF-8",
data/easytag-2.4.3/src/tags/id3v24_tag.c:453:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (EASYTAG_STRING_ENCODEDBY MULTIFIELD_SEPARATOR)) == 0)
data/easytag-2.4.3/src/tags/id3v24_tag.c:1283:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& (g_ascii_strncasecmp (str, param1, strlen (param1)) == 0))
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:279:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return libapetag_maloc_cont (mem_cnt, flags, strlen (name), name, strlen (value), value);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:279:71: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return libapetag_maloc_cont (mem_cnt, flags, strlen (name), name, strlen (value), value);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:623:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
libapetag_maloc_cont_text(mem_cnt, 0, 5, "Track", strlen(track), track);
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:632:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(genre_no(m.genre)), genre_no(m.genre));
data/easytag-2.4.3/src/tags/libapetag/apetaglib.c:766:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sizeName = strlen((char *)p + 8);
data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:133:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ItemSizE = strlen(APENamE) ; \
data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:169:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(item, convert[i].APEName, *item_len);
data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:188:29: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(item + (*item_len),value_ds ,(value_len2 + 1));
data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:219:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(item, convert[i].APEName, *item_len);
data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:248:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(item, convert[i].APEName, *item_len);
data/easytag-2.4.3/src/tags/libapetag/id3v2_read.c:276:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(item, convert[i].APEName, *item_len);
data/easytag-2.4.3/src/tags/ogg_tag.c:105:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read = (read << 8) + str[i];
data/easytag-2.4.3/src/tags/ogg_tag.c:108:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read;
data/easytag-2.4.3/src/tags/ogg_tag.c:1089:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
desclen = pic->description ? strlen (pic->description) : 0;
data/easytag-2.4.3/src/tags/ogg_tag.c:1090:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ustring = g_malloc (4 * 8 + strlen (mime) + desclen + data_size);
data/easytag-2.4.3/src/tags/ogg_tag.c:1097:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
convert_to_byte_array (strlen (mime), array);
data/easytag-2.4.3/src/tags/ogg_tag.c:1100:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (mime));
data/easytag-2.4.3/src/tags/vcedit.c:185:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
oggpack_write (&opb, strlen (vendor), 32);
data/easytag-2.4.3/src/tags/vcedit.c:186:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
_v_writestring (&opb,vendor, strlen (vendor));
data/easytag-2.4.3/src/tags/wavpack_tag.c:332:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return WavpackAppendTagItem (wpc, tag, value, strlen (value));
data/easytag-2.4.3/tests/test-picture.c:225:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (pictures[i].data) + 1);
ANALYSIS SUMMARY:
Hits = 225
Lines analyzed = 52369 in approximately 1.19 seconds (44171 lines/second)
Physical Source Lines of Code (SLOC) = 36123
Hits@level = [0] 12 [1] 113 [2] 96 [3] 4 [4] 12 [5] 0
Hits@level+ = [0+] 237 [1+] 225 [2+] 112 [3+] 16 [4+] 12 [5+] 0
Hits/KSLOC@level+ = [0+] 6.56092 [1+] 6.22872 [2+] 3.10052 [3+] 0.442931 [4+] 0.332198 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.