Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/elfutils-0.182/libasm/asm_end.c
Examining data/elfutils-0.182/libasm/asm_fill.c
Examining data/elfutils-0.182/libasm/asm_getelf.c
Examining data/elfutils-0.182/libasm/asm_adduleb128.c
Examining data/elfutils-0.182/libasm/asm_scngrp_newsignature.c
Examining data/elfutils-0.182/libasm/asm_adduint64.c
Examining data/elfutils-0.182/libasm/asm_newscngrp.c
Examining data/elfutils-0.182/libasm/symbolhash.h
Examining data/elfutils-0.182/libasm/asm_begin.c
Examining data/elfutils-0.182/libasm/symbolhash.c
Examining data/elfutils-0.182/libasm/disasm_str.c
Examining data/elfutils-0.182/libasm/asm_addint64.c
Examining data/elfutils-0.182/libasm/disasm_begin.c
Examining data/elfutils-0.182/libasm/libasmP.h
Examining data/elfutils-0.182/libasm/asm_abort.c
Examining data/elfutils-0.182/libasm/asm_adduint32.c
Examining data/elfutils-0.182/libasm/asm_newcomsym.c
Examining data/elfutils-0.182/libasm/asm_newscn_ingrp.c
Examining data/elfutils-0.182/libasm/asm_adduint8.c
Examining data/elfutils-0.182/libasm/asm_addint16.c
Examining data/elfutils-0.182/libasm/disasm_cb.c
Examining data/elfutils-0.182/libasm/asm_newscn.c
Examining data/elfutils-0.182/libasm/asm_adduint16.c
Examining data/elfutils-0.182/libasm/libasm.h
Examining data/elfutils-0.182/libasm/disasm_end.c
Examining data/elfutils-0.182/libasm/asm_newabssym.c
Examining data/elfutils-0.182/libasm/asm_addint8.c
Examining data/elfutils-0.182/libasm/asm_addsleb128.c
Examining data/elfutils-0.182/libasm/asm_align.c
Examining data/elfutils-0.182/libasm/asm_newsubscn.c
Examining data/elfutils-0.182/libasm/asm_addint32.c
Examining data/elfutils-0.182/libasm/asm_addstrz.c
Examining data/elfutils-0.182/libasm/asm_error.c
Examining data/elfutils-0.182/libasm/asm_newsym.c
Examining data/elfutils-0.182/backends/x86_64_retval.c
Examining data/elfutils-0.182/backends/riscv_symbol.c
Examining data/elfutils-0.182/backends/csky_attrs.c
Examining data/elfutils-0.182/backends/linux-core-note.c
Examining data/elfutils-0.182/backends/sparc_corenote.c
Examining data/elfutils-0.182/backends/m68k_retval.c
Examining data/elfutils-0.182/backends/ppc64_unwind.c
Examining data/elfutils-0.182/backends/x86_64_cfi.c
Examining data/elfutils-0.182/backends/x32_corenote.c
Examining data/elfutils-0.182/backends/aarch64_initreg.c
Examining data/elfutils-0.182/backends/s390_unwind.c
Examining data/elfutils-0.182/backends/aarch64_corenote.c
Examining data/elfutils-0.182/backends/ppc64_corenote.c
Examining data/elfutils-0.182/backends/sparc_init.c
Examining data/elfutils-0.182/backends/sparc_auxv.c
Examining data/elfutils-0.182/backends/s390_retval.c
Examining data/elfutils-0.182/backends/m68k_symbol.c
Examining data/elfutils-0.182/backends/ppc_corenote.c
Examining data/elfutils-0.182/backends/x86_64_regs.c
Examining data/elfutils-0.182/backends/s390_corenote.c
Examining data/elfutils-0.182/backends/i386_regs.c
Examining data/elfutils-0.182/backends/i386_symbol.c
Examining data/elfutils-0.182/backends/ppc_regs.c
Examining data/elfutils-0.182/backends/ppc64_resolve_sym.c
Examining data/elfutils-0.182/backends/sparc_symbol.c
Examining data/elfutils-0.182/backends/ia64_regs.c
Examining data/elfutils-0.182/backends/alpha_symbol.c
Examining data/elfutils-0.182/backends/alpha_retval.c
Examining data/elfutils-0.182/backends/i386_init.c
Examining data/elfutils-0.182/backends/ia64_retval.c
Examining data/elfutils-0.182/backends/aarch64_unwind.c
Examining data/elfutils-0.182/backends/sh_retval.c
Examining data/elfutils-0.182/backends/sh_symbol.c
Examining data/elfutils-0.182/backends/arm_regs.c
Examining data/elfutils-0.182/backends/riscv64_corenote.c
Examining data/elfutils-0.182/backends/s390_symbol.c
Examining data/elfutils-0.182/backends/sparc_regs.c
Examining data/elfutils-0.182/backends/m68k_initreg.c
Examining data/elfutils-0.182/backends/riscv_initreg.c
Examining data/elfutils-0.182/backends/ppc_attrs.c
Examining data/elfutils-0.182/backends/arm_corenote.c
Examining data/elfutils-0.182/backends/x86_64_symbol.c
Examining data/elfutils-0.182/backends/i386_auxv.c
Examining data/elfutils-0.182/backends/csky_corenote.c
Examining data/elfutils-0.182/backends/ppc_auxv.c
Examining data/elfutils-0.182/backends/m68k_corenote.c
Examining data/elfutils-0.182/backends/arm_cfi.c
Examining data/elfutils-0.182/backends/bpf_symbol.c
Examining data/elfutils-0.182/backends/ppc_cfi.c
Examining data/elfutils-0.182/backends/aarch64_retval.c
Examining data/elfutils-0.182/backends/csky_cfi.c
Examining data/elfutils-0.182/backends/x86_64_init.c
Examining data/elfutils-0.182/backends/alpha_regs.c
Examining data/elfutils-0.182/backends/sh_regs.c
Examining data/elfutils-0.182/backends/sparc_initreg.c
Examining data/elfutils-0.182/backends/arm_symbol.c
Examining data/elfutils-0.182/backends/sh_init.c
Examining data/elfutils-0.182/backends/sparc_attrs.c
Examining data/elfutils-0.182/backends/ia64_symbol.c
Examining data/elfutils-0.182/backends/m68k_cfi.c
Examining data/elfutils-0.182/backends/x86_64_corenote.c
Examining data/elfutils-0.182/backends/bpf_regs.c
Examining data/elfutils-0.182/backends/libebl_CPU.h
Examining data/elfutils-0.182/backends/riscv_corenote.c
Examining data/elfutils-0.182/backends/ppc_init.c
Examining data/elfutils-0.182/backends/i386_corenote.c
Examining data/elfutils-0.182/backends/csky_regs.c
Examining data/elfutils-0.182/backends/arm_retval.c
Examining data/elfutils-0.182/backends/riscv_init.c
Examining data/elfutils-0.182/backends/s390_initreg.c
Examining data/elfutils-0.182/backends/i386_retval.c
Examining data/elfutils-0.182/backends/riscv_regs.c
Examining data/elfutils-0.182/backends/ppc64_retval.c
Examining data/elfutils-0.182/backends/arm_auxv.c
Examining data/elfutils-0.182/backends/x86_64_unwind.c
Examining data/elfutils-0.182/backends/csky_symbol.c
Examining data/elfutils-0.182/backends/s390_init.c
Examining data/elfutils-0.182/backends/arm_attrs.c
Examining data/elfutils-0.182/backends/aarch64_init.c
Examining data/elfutils-0.182/backends/ppc_symbol.c
Examining data/elfutils-0.182/backends/alpha_init.c
Examining data/elfutils-0.182/backends/sparc64_corenote.c
Examining data/elfutils-0.182/backends/arm_init.c
Examining data/elfutils-0.182/backends/i386_initreg.c
Examining data/elfutils-0.182/backends/x86_64_initreg.c
Examining data/elfutils-0.182/backends/sparc_retval.c
Examining data/elfutils-0.182/backends/i386_unwind.c
Examining data/elfutils-0.182/backends/s390_regs.c
Examining data/elfutils-0.182/backends/sh_corenote.c
Examining data/elfutils-0.182/backends/alpha_corenote.c
Examining data/elfutils-0.182/backends/csky_initreg.c
Examining data/elfutils-0.182/backends/alpha_auxv.c
Examining data/elfutils-0.182/backends/riscv_cfi.c
Examining data/elfutils-0.182/backends/m68k_regs.c
Examining data/elfutils-0.182/backends/ppc64_init.c
Examining data/elfutils-0.182/backends/ppc64_symbol.c
Examining data/elfutils-0.182/backends/ppc_retval.c
Examining data/elfutils-0.182/backends/s390x_corenote.c
Examining data/elfutils-0.182/backends/arm_initreg.c
Examining data/elfutils-0.182/backends/m68k_init.c
Examining data/elfutils-0.182/backends/aarch64_symbol.c
Examining data/elfutils-0.182/backends/sparc_cfi.c
Examining data/elfutils-0.182/backends/ppc_initreg.c
Examining data/elfutils-0.182/backends/csky_init.c
Examining data/elfutils-0.182/backends/bpf_init.c
Examining data/elfutils-0.182/backends/aarch64_cfi.c
Examining data/elfutils-0.182/backends/x86_corenote.c
Examining data/elfutils-0.182/backends/s390_cfi.c
Examining data/elfutils-0.182/backends/common-reloc.c
Examining data/elfutils-0.182/backends/ia64_init.c
Examining data/elfutils-0.182/backends/aarch64_regs.c
Examining data/elfutils-0.182/backends/i386_cfi.c
Examining data/elfutils-0.182/backends/riscv_retval.c
Examining data/elfutils-0.182/debuginfod/debuginfod-find.c
Examining data/elfutils-0.182/debuginfod/debuginfod-client.c
Examining data/elfutils-0.182/debuginfod/debuginfod.cxx
Examining data/elfutils-0.182/debuginfod/debuginfod.h
Examining data/elfutils-0.182/lib/printversion.h
Examining data/elfutils-0.182/lib/list.h
Examining data/elfutils-0.182/lib/dynamicsizehash.c
Examining data/elfutils-0.182/lib/atomics.h
Examining data/elfutils-0.182/lib/libeu.h
Examining data/elfutils-0.182/lib/crc32_file.c
Examining data/elfutils-0.182/lib/color.c
Examining data/elfutils-0.182/lib/dynamicsizehash_concurrent.c
Examining data/elfutils-0.182/lib/printversion.c
Examining data/elfutils-0.182/lib/fixedsizehash.h
Examining data/elfutils-0.182/lib/bpf.h
Examining data/elfutils-0.182/lib/system.h
Examining data/elfutils-0.182/lib/dynamicsizehash_concurrent.h
Examining data/elfutils-0.182/lib/xmalloc.c
Examining data/elfutils-0.182/lib/next_prime.c
Examining data/elfutils-0.182/lib/xstrndup.c
Examining data/elfutils-0.182/lib/stdatomic-fbsd.h
Examining data/elfutils-0.182/lib/xstrdup.c
Examining data/elfutils-0.182/lib/color.h
Examining data/elfutils-0.182/lib/crc32.c
Examining data/elfutils-0.182/lib/dynamicsizehash.h
Examining data/elfutils-0.182/lib/eu-config.h
Examining data/elfutils-0.182/libdwfl/dwfl_module.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_eh_cfi.c
Examining data/elfutils-0.182/libdwfl/dwfl_lineinfo.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_info.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_dwarf_cfi.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_nextcu.c
Examining data/elfutils-0.182/libdwfl/linux-kernel-modules.c
Examining data/elfutils-0.182/libdwfl/dwfl_begin.c
Examining data/elfutils-0.182/libdwfl/dwfl_onesrcline.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_addrsym.c
Examining data/elfutils-0.182/libdwfl/dwfl_getsrclines.c
Examining data/elfutils-0.182/libdwfl/dwfl_addrdie.c
Examining data/elfutils-0.182/libdwfl/dwfl_frame.c
Examining data/elfutils-0.182/libdwfl/zstd.c
Examining data/elfutils-0.182/libdwfl/frame_unwind.c
Examining data/elfutils-0.182/libdwfl/relocate.c
Examining data/elfutils-0.182/libdwfl/derelocate.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_return_value_location.c
Examining data/elfutils-0.182/libdwfl/dwfl_getmodules.c
Examining data/elfutils-0.182/libdwfl/dwfl_dwarf_line.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_getsrc_file.c
Examining data/elfutils-0.182/libdwfl/open.c
Examining data/elfutils-0.182/libdwfl/libdwfl.h
Examining data/elfutils-0.182/libdwfl/linux-pid-attach.c
Examining data/elfutils-0.182/libdwfl/dwfl_report_elf.c
Examining data/elfutils-0.182/libdwfl/dwfl_segment_report_module.c
Examining data/elfutils-0.182/libdwfl/dwfl_nextcu.c
Examining data/elfutils-0.182/libdwfl/segment.c
Examining data/elfutils-0.182/libdwfl/bzip2.c
Examining data/elfutils-0.182/libdwfl/dwfl_line_comp_dir.c
Examining data/elfutils-0.182/libdwfl/image-header.c
Examining data/elfutils-0.182/libdwfl/link_map.c
Examining data/elfutils-0.182/libdwfl/dwfl_addrmodule.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_getsym.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_getdwarf.c
Examining data/elfutils-0.182/libdwfl/dwfl_frame_regs.c
Examining data/elfutils-0.182/libdwfl/libdwflP.h
Examining data/elfutils-0.182/libdwfl/dwfl_error.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_report_build_id.c
Examining data/elfutils-0.182/libdwfl/find-debuginfo.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_getsrc.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_addrdie.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_register_names.c
Examining data/elfutils-0.182/libdwfl/dwfl_build_id_find_debuginfo.c
Examining data/elfutils-0.182/libdwfl/dwfl_validate_address.c
Examining data/elfutils-0.182/libdwfl/dwfl_getdwarf.c
Examining data/elfutils-0.182/libdwfl/gzip.c
Examining data/elfutils-0.182/libdwfl/lines.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_addrname.c
Examining data/elfutils-0.182/libdwfl/linux-proc-maps.c
Examining data/elfutils-0.182/libdwfl/dwfl_addrdwarf.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_getelf.c
Examining data/elfutils-0.182/libdwfl/libdwfl_crc32_file.c
Examining data/elfutils-0.182/libdwfl/core-file.c
Examining data/elfutils-0.182/libdwfl/dwfl_getsrc.c
Examining data/elfutils-0.182/libdwfl/dwfl_version.c
Examining data/elfutils-0.182/libdwfl/debuginfod-client.c
Examining data/elfutils-0.182/libdwfl/cu.c
Examining data/elfutils-0.182/libdwfl/dwfl_cumodule.c
Examining data/elfutils-0.182/libdwfl/offline.c
Examining data/elfutils-0.182/libdwfl/elf-from-memory.c
Examining data/elfutils-0.182/libdwfl/dwfl_end.c
Examining data/elfutils-0.182/libdwfl/dwfl_linemodule.c
Examining data/elfutils-0.182/libdwfl/linux-core-attach.c
Examining data/elfutils-0.182/libdwfl/libdwfl_crc32.c
Examining data/elfutils-0.182/libdwfl/lzma.c
Examining data/elfutils-0.182/libdwfl/dwfl_build_id_find_elf.c
Examining data/elfutils-0.182/libdwfl/dwfl_module_build_id.c
Examining data/elfutils-0.182/libdwfl/argp-std.c
Examining data/elfutils-0.182/libdwfl/dwfl_frame_pc.c
Examining data/elfutils-0.182/libdwfl/dwfl_linecu.c
Examining data/elfutils-0.182/src/ar.c
Examining data/elfutils-0.182/src/arlib.h
Examining data/elfutils-0.182/src/elfcmp.c
Examining data/elfutils-0.182/src/size.c
Examining data/elfutils-0.182/src/strings.c
Examining data/elfutils-0.182/src/nm.c
Examining data/elfutils-0.182/src/arlib2.c
Examining data/elfutils-0.182/src/arlib.c
Examining data/elfutils-0.182/src/elfcompress.c
Examining data/elfutils-0.182/src/elflint.c
Examining data/elfutils-0.182/src/objdump.c
Examining data/elfutils-0.182/src/findtextrel.c
Examining data/elfutils-0.182/src/stack.c
Examining data/elfutils-0.182/src/strip.c
Examining data/elfutils-0.182/src/readelf.c
Examining data/elfutils-0.182/src/elfclassify.c
Examining data/elfutils-0.182/src/debugpred.h
Examining data/elfutils-0.182/src/addr2line.c
Examining data/elfutils-0.182/src/unstrip.c
Examining data/elfutils-0.182/src/ranlib.c
Examining data/elfutils-0.182/src/arlib-argp.c
Examining data/elfutils-0.182/libdw/dwarf_decl_line.c
Examining data/elfutils-0.182/libdw/dwarf_lineop_index.c
Examining data/elfutils-0.182/libdw/dwarf_onearange.c
Examining data/elfutils-0.182/libdw/dwarf_entrypc.c
Examining data/elfutils-0.182/libdw/dwarf_getsrc_die.c
Examining data/elfutils-0.182/libdw/dwarf_begin_elf.c
Examining data/elfutils-0.182/libdw/dwarf_die_addr_die.c
Examining data/elfutils-0.182/libdw/dwarf_entry_breakpoints.c
Examining data/elfutils-0.182/libdw/dwarf_getattrcnt.c
Examining data/elfutils-0.182/libdw/dwarf_getabbrevcode.c
Examining data/elfutils-0.182/libdw/dwarf_highpc.c
Examining data/elfutils-0.182/libdw/dwarf_getabbrev.c
Examining data/elfutils-0.182/libdw/dwarf_abbrevhaschildren.c
Examining data/elfutils-0.182/libdw/libdw_alloc.c
Examining data/elfutils-0.182/libdw/dwarf_decl_file.c
Examining data/elfutils-0.182/libdw/dwarf_hasattr.c
Examining data/elfutils-0.182/libdw/dwarf_hasform.c
Examining data/elfutils-0.182/libdw/dwarf_haspc.c
Examining data/elfutils-0.182/libdw/dwarf_getlocation.c
Examining data/elfutils-0.182/libdw/dwarf_formstring.c
Examining data/elfutils-0.182/libdw/dwarf_lowpc.c
Examining data/elfutils-0.182/libdw/dwarf_macro_param.c
Examining data/elfutils-0.182/libdw/dwarf_formblock.c
Examining data/elfutils-0.182/libdw/dwarf_getsrcfiles.c
Examining data/elfutils-0.182/libdw/dwarf_haschildren.c
Examining data/elfutils-0.182/libdw/dwarf_getscopes_die.c
Examining data/elfutils-0.182/libdw/dwarf_macro_param1.c
Examining data/elfutils-0.182/libdw/dwarf_func_inline.c
Examining data/elfutils-0.182/libdw/dwarf_linediscriminator.c
Examining data/elfutils-0.182/libdw/dwarf_macro_getsrcfiles.c
Examining data/elfutils-0.182/libdw/encoded-value.h
Examining data/elfutils-0.182/libdw/dwarf_filesrc.c
Examining data/elfutils-0.182/libdw/libdw_visit_scopes.c
Examining data/elfutils-0.182/libdw/libdw_findcu.c
Examining data/elfutils-0.182/libdw/libdw_form.c
Examining data/elfutils-0.182/libdw/dwarf_diename.c
Examining data/elfutils-0.182/libdw/dwarf_peel_type.c
Examining data/elfutils-0.182/libdw/dwarf_abbrev_hash.h
Examining data/elfutils-0.182/libdw/dwarf_cfi_end.c
Examining data/elfutils-0.182/libdw/dwarf_getpubnames.c
Examining data/elfutils-0.182/libdw/dwarf_formflag.c
Examining data/elfutils-0.182/libdw/dwarf_ranges.c
Examining data/elfutils-0.182/libdw/dwarf_bytesize.c
Examining data/elfutils-0.182/libdw/dwarf_linebeginstatement.c
Examining data/elfutils-0.182/libdw/dwarf_child.c
Examining data/elfutils-0.182/libdw/dwarf_getlocation_die.c
Examining data/elfutils-0.182/libdw/dwarf_diecu.c
Examining data/elfutils-0.182/libdw/dwarf_lineisa.c
Examining data/elfutils-0.182/libdw/dwarf_getcfi_elf.c
Examining data/elfutils-0.182/libdw/dwarf_cuoffset.c
Examining data/elfutils-0.182/libdw/cfi.c
Examining data/elfutils-0.182/libdw/dwarf_cfi_addrframe.c
Examining data/elfutils-0.182/libdw/known-dwarf.h
Examining data/elfutils-0.182/libdw/dwarf_getlocation_attr.c
Examining data/elfutils-0.182/libdw/frame-cache.c
Examining data/elfutils-0.182/libdw/dwarf_nextcu.c
Examining data/elfutils-0.182/libdw/dwarf_getfuncs.c
Examining data/elfutils-0.182/libdw/dwarf_bitsize.c
Examining data/elfutils-0.182/libdw/dwarf_offabbrev.c
Examining data/elfutils-0.182/libdw/dwarf_getcfi.c
Examining data/elfutils-0.182/libdw/dwarf_formaddr.c
Examining data/elfutils-0.182/libdw/dwarf_macro_opcode.c
Examining data/elfutils-0.182/libdw/dwarf_getscopes.c
Examining data/elfutils-0.182/libdw/dwarf_lineendsequence.c
Examining data/elfutils-0.182/libdw/dwarf_offdie.c
Examining data/elfutils-0.182/libdw/dwarf_begin.c
Examining data/elfutils-0.182/libdw/dwarf_lineno.c
Examining data/elfutils-0.182/libdw/dwarf_macro_getparamcnt.c
Examining data/elfutils-0.182/libdw/dwarf_hasattr_integrate.c
Examining data/elfutils-0.182/libdw/dwarf_default_lower_bound.c
Examining data/elfutils-0.182/libdw/fde.c
Examining data/elfutils-0.182/libdw/dwarf_onesrcline.c
Examining data/elfutils-0.182/libdw/dwarf_formudata.c
Examining data/elfutils-0.182/libdw/dwarf_cu_info.c
Examining data/elfutils-0.182/libdw/dwarf_abbrev_hash.c
Examining data/elfutils-0.182/libdw/dwarf_lineblock.c
Examining data/elfutils-0.182/libdw/dwarf_addrdie.c
Examining data/elfutils-0.182/libdw/memory-access.h
Examining data/elfutils-0.182/libdw/dwarf_next_lines.c
Examining data/elfutils-0.182/libdw/dwarf_line_file.c
Examining data/elfutils-0.182/libdw/dwarf_getstring.c
Examining data/elfutils-0.182/libdw/dwarf_arrayorder.c
Examining data/elfutils-0.182/libdw/dwarf_formref.c
Examining data/elfutils-0.182/libdw/dwarf_bitoffset.c
Examining data/elfutils-0.182/libdw/dwarf_decl_column.c
Examining data/elfutils-0.182/libdw/dwarf_lineepiloguebegin.c
Examining data/elfutils-0.182/libdw/dwarf_getscopevar.c
Examining data/elfutils-0.182/libdw/dwarf_getattrs.c
Examining data/elfutils-0.182/libdw/dwarf_frame_info.c
Examining data/elfutils-0.182/libdw/dwarf_getsrc_file.c
Examining data/elfutils-0.182/libdw/dwarf_frame_register.c
Examining data/elfutils-0.182/libdw/dwarf_getarangeinfo.c
Examining data/elfutils-0.182/libdw/cfi.h
Examining data/elfutils-0.182/libdw/dwarf_getsrclines.c
Examining data/elfutils-0.182/libdw/dwarf_sig8_hash.c
Examining data/elfutils-0.182/libdw/dwarf_srclang.c
Examining data/elfutils-0.182/libdw/dwarf_lineprologueend.c
Examining data/elfutils-0.182/libdw/dwarf_getelf.c
Examining data/elfutils-0.182/libdw/dwarf_attr.c
Examining data/elfutils-0.182/libdw/dwarf_linecol.c
Examining data/elfutils-0.182/libdw/dwarf_getalt.c
Examining data/elfutils-0.182/libdw/dwarf_setalt.c
Examining data/elfutils-0.182/libdw/dwarf_error.c
Examining data/elfutils-0.182/libdw/dwarf_lineaddr.c
Examining data/elfutils-0.182/libdw/dwarf_getarange_addr.c
Examining data/elfutils-0.182/libdw/dwarf_whatattr.c
Examining data/elfutils-0.182/libdw/dwarf_formref_die.c
Examining data/elfutils-0.182/libdw/dwarf_getmacros.c
Examining data/elfutils-0.182/libdw/dwarf_next_cfi.c
Examining data/elfutils-0.182/libdw/dwarf_getaranges.c
Examining data/elfutils-0.182/libdw/dwarf_linesrc.c
Examining data/elfutils-0.182/libdw/libdw_find_split_unit.c
Examining data/elfutils-0.182/libdw/dwarf_tag.c
Examining data/elfutils-0.182/libdw/dwarf_getlocation_implicit_pointer.c
Examining data/elfutils-0.182/libdw/dwarf_formsdata.c
Examining data/elfutils-0.182/libdw/libdwP.h
Examining data/elfutils-0.182/libdw/dwarf_end.c
Examining data/elfutils-0.182/libdw/dwarf_macro_param2.c
Examining data/elfutils-0.182/libdw/dwarf_getabbrevattr.c
Examining data/elfutils-0.182/libdw/dwarf.h
Examining data/elfutils-0.182/libdw/libdw.h
Examining data/elfutils-0.182/libdw/dwarf_getsrcdirs.c
Examining data/elfutils-0.182/libdw/dwarf_attr_integrate.c
Examining data/elfutils-0.182/libdw/dwarf_get_units.c
Examining data/elfutils-0.182/libdw/dwarf_whatform.c
Examining data/elfutils-0.182/libdw/dwarf_dieoffset.c
Examining data/elfutils-0.182/libdw/dwarf_siblingof.c
Examining data/elfutils-0.182/libdw/dwarf_frame_cfa.c
Examining data/elfutils-0.182/libdw/dwarf_cu_getdwarf.c
Examining data/elfutils-0.182/libdw/dwarf_aggregate_size.c
Examining data/elfutils-0.182/libdw/dwarf_sig8_hash.h
Examining data/elfutils-0.182/libdw/dwarf_getabbrevtag.c
Examining data/elfutils-0.182/libdw/dwarf_cu_die.c
Examining data/elfutils-0.182/libdw/cie.c
Examining data/elfutils-0.182/tests/get-units-invalid.c
Examining data/elfutils-0.182/tests/asm-tst6.c
Examining data/elfutils-0.182/tests/elfshphehdr.c
Examining data/elfutils-0.182/tests/dwarf-die-addr-die.c
Examining data/elfutils-0.182/tests/asm-tst9.c
Examining data/elfutils-0.182/tests/emptyfile.c
Examining data/elfutils-0.182/tests/allfcts.c
Examining data/elfutils-0.182/tests/backtrace-data.c
Examining data/elfutils-0.182/tests/dwfl-bug-fd-leak.c
Examining data/elfutils-0.182/tests/testfile_entry_value.c
Examining data/elfutils-0.182/tests/aggregate_size.c
Examining data/elfutils-0.182/tests/elfstrmerge.c
Examining data/elfutils-0.182/tests/dwfl-report-elf-align.c
Examining data/elfutils-0.182/tests/dwflmodtest.c
Examining data/elfutils-0.182/tests/newdata.c
Examining data/elfutils-0.182/tests/system-elf-libelf-test.c
Examining data/elfutils-0.182/tests/saridx.c
Examining data/elfutils-0.182/tests/get-pubnames.c
Examining data/elfutils-0.182/tests/get-files.c
Examining data/elfutils-0.182/tests/newfile.c
Examining data/elfutils-0.182/tests/low_high_pc.c
Examining data/elfutils-0.182/tests/scnnames.c
Examining data/elfutils-0.182/tests/find-prologues.c
Examining data/elfutils-0.182/tests/peel_type.c
Examining data/elfutils-0.182/tests/leb128.c
Examining data/elfutils-0.182/tests/next-lines.c
Examining data/elfutils-0.182/tests/dwfl-bug-getmodules.c
Examining data/elfutils-0.182/tests/test-elf_cntl_gelf_getshdr.c
Examining data/elfutils-0.182/tests/ecp.c
Examining data/elfutils-0.182/tests/test-nlist.c
Examining data/elfutils-0.182/tests/dwfl-report-segment-contiguous.c
Examining data/elfutils-0.182/tests/debuginfod-tars/pacman-sources/hello.c
Examining data/elfutils-0.182/tests/vdsosyms.c
Examining data/elfutils-0.182/tests/getphdrnum.c
Examining data/elfutils-0.182/tests/typeiter.c
Examining data/elfutils-0.182/tests/dwfl-addr-sect.c
Examining data/elfutils-0.182/tests/next-files.c
Examining data/elfutils-0.182/tests/early-offscn.c
Examining data/elfutils-0.182/tests/asm-tst1.c
Examining data/elfutils-0.182/tests/showptable.c
Examining data/elfutils-0.182/tests/asm-tst3.c
Examining data/elfutils-0.182/tests/elfstrtab.c
Examining data/elfutils-0.182/tests/addrcfi.c
Examining data/elfutils-0.182/tests/dwarf-ranges.c
Examining data/elfutils-0.182/tests/allregs.c
Examining data/elfutils-0.182/tests/backtrace-child.c
Examining data/elfutils-0.182/tests/deleted-lib.c
Examining data/elfutils-0.182/tests/testfile_const_type.c
Examining data/elfutils-0.182/tests/dwelf_elf_e_machine_string.c
Examining data/elfutils-0.182/tests/elfputzdata.c
Examining data/elfutils-0.182/tests/test-flag-nobits.c
Examining data/elfutils-0.182/tests/testfile_implicit_pointer.c
Examining data/elfutils-0.182/tests/get-units-split.c
Examining data/elfutils-0.182/tests/dwelfgnucompressed.c
Examining data/elfutils-0.182/tests/show-die-info.c
Examining data/elfutils-0.182/tests/arsymtest.c
Examining data/elfutils-0.182/tests/hash.c
Examining data/elfutils-0.182/tests/sectiondump.c
Examining data/elfutils-0.182/tests/backtrace-dwarf.c
Examining data/elfutils-0.182/tests/asm-tst2.c
Examining data/elfutils-0.182/tests/testfile-backtrace-demangle.cc
Examining data/elfutils-0.182/tests/elfgetzdata.c
Examining data/elfutils-0.182/tests/alldts.c
Examining data/elfutils-0.182/tests/typeiter2.c
Examining data/elfutils-0.182/tests/dwarf_default_lower_bound.c
Examining data/elfutils-0.182/tests/deleted.c
Examining data/elfutils-0.182/tests/read_unaligned.c
Examining data/elfutils-0.182/tests/update3.c
Examining data/elfutils-0.182/tests/next_cfi.c
Examining data/elfutils-0.182/tests/asm-tst7.c
Examining data/elfutils-0.182/tests/dwarfcfi.c
Examining data/elfutils-0.182/tests/addrscopes.c
Examining data/elfutils-0.182/tests/getsrc_die.c
Examining data/elfutils-0.182/tests/all-dwarf-ranges.c
Examining data/elfutils-0.182/tests/dwflsyms.c
Examining data/elfutils-0.182/tests/addsections.c
Examining data/elfutils-0.182/tests/buildid.c
Examining data/elfutils-0.182/tests/zstrptr.c
Examining data/elfutils-0.182/tests/dwfl-bug-report.c
Examining data/elfutils-0.182/tests/funcretval.c
Examining data/elfutils-0.182/tests/strptr.c
Examining data/elfutils-0.182/tests/dwarf-getmacros.c
Examining data/elfutils-0.182/tests/testfile_parameter_ref.c
Examining data/elfutils-0.182/tests/backtrace.c
Examining data/elfutils-0.182/tests/dwfl-bug-addr-overflow.c
Examining data/elfutils-0.182/tests/update1.c
Examining data/elfutils-0.182/tests/funcretval_test.c
Examining data/elfutils-0.182/tests/attr-integrate-skel.c
Examining data/elfutils-0.182/tests/get-lines.c
Examining data/elfutils-0.182/tests/msg_tst.c
Examining data/elfutils-0.182/tests/arls.c
Examining data/elfutils-0.182/tests/fillfile.c
Examining data/elfutils-0.182/tests/show-abbrev.c
Examining data/elfutils-0.182/tests/xlate_notes.c
Examining data/elfutils-0.182/tests/dwfllines.c
Examining data/elfutils-0.182/tests/debugaltlink.c
Examining data/elfutils-0.182/tests/elfgetchdr.c
Examining data/elfutils-0.182/tests/funcscopes.c
Examining data/elfutils-0.182/tests/dwarf-getstring.c
Examining data/elfutils-0.182/tests/elfrdwrnop.c
Examining data/elfutils-0.182/tests/asm-tst4.c
Examining data/elfutils-0.182/tests/dwfl-proc-attach.c
Examining data/elfutils-0.182/tests/varlocs.c
Examining data/elfutils-0.182/tests/unit-info.c
Examining data/elfutils-0.182/tests/debuglink.c
Examining data/elfutils-0.182/tests/cleanup-13.c
Examining data/elfutils-0.182/tests/rerequest_tag.c
Examining data/elfutils-0.182/tests/vendorelf.c
Examining data/elfutils-0.182/tests/asm-tst5.c
Examining data/elfutils-0.182/tests/get-aranges.c
Examining data/elfutils-0.182/tests/asm-tst8.c
Examining data/elfutils-0.182/tests/line2addr.c
Examining data/elfutils-0.182/tests/arextract.c
Examining data/elfutils-0.182/tests/update4.c
Examining data/elfutils-0.182/tests/testfile_implicit_value.c
Examining data/elfutils-0.182/tests/update2.c
Examining data/elfutils-0.182/tests/newscn.c
Examining data/elfutils-0.182/tests/rdwrmmap.c
Examining data/elfutils-0.182/tests/debuginfod_build_id_find.c
Examining data/elfutils-0.182/tests/elfcopy.c
Examining data/elfutils-0.182/libelf/elf64_newehdr.c
Examining data/elfutils-0.182/libelf/elf64_getehdr.c
Examining data/elfutils-0.182/libelf/elf_compress.c
Examining data/elfutils-0.182/libelf/elf_kind.c
Examining data/elfutils-0.182/libelf/elf_nextscn.c
Examining data/elfutils-0.182/libelf/gelf_update_symshndx.c
Examining data/elfutils-0.182/libelf/elf32_getshdr.c
Examining data/elfutils-0.182/libelf/gelf_xlatetof.c
Examining data/elfutils-0.182/libelf/elf_getdata.c
Examining data/elfutils-0.182/libelf/elf_readall.c
Examining data/elfutils-0.182/libelf/elf_fill.c
Examining data/elfutils-0.182/libelf/gelf_getauxv.c
Examining data/elfutils-0.182/libelf/gelf_update_auxv.c
Examining data/elfutils-0.182/libelf/elf_rand.c
Examining data/elfutils-0.182/libelf/elf64_updatenull.c
Examining data/elfutils-0.182/libelf/elf32_checksum.c
Examining data/elfutils-0.182/libelf/elf_flagehdr.c
Examining data/elfutils-0.182/libelf/chdr_xlate.h
Examining data/elfutils-0.182/libelf/gelf_fsize.c
Examining data/elfutils-0.182/libelf/elf_getarhdr.c
Examining data/elfutils-0.182/libelf/gelf_getmove.c
Examining data/elfutils-0.182/libelf/gelf_getverneed.c
Examining data/elfutils-0.182/libelf/elf64_updatefile.c
Examining data/elfutils-0.182/libelf/elf64_fsize.c
Examining data/elfutils-0.182/libelf/gelf_checksum.c
Examining data/elfutils-0.182/libelf/elf_compress_gnu.c
Examining data/elfutils-0.182/libelf/gelf_update_phdr.c
Examining data/elfutils-0.182/libelf/note_xlate.h
Examining data/elfutils-0.182/libelf/elf32_updatenull.c
Examining data/elfutils-0.182/libelf/libelfP.h
Examining data/elfutils-0.182/libelf/elf_ndxscn.c
Examining data/elfutils-0.182/libelf/elf_update.c
Examining data/elfutils-0.182/libelf/elf_hash.c
Examining data/elfutils-0.182/libelf/gelf_newehdr.c
Examining data/elfutils-0.182/libelf/elf32_newphdr.c
Examining data/elfutils-0.182/libelf/abstract.h
Examining data/elfutils-0.182/libelf/elf_flagphdr.c
Examining data/elfutils-0.182/libelf/gelf_update_vernaux.c
Examining data/elfutils-0.182/libelf/elf32_newehdr.c
Examining data/elfutils-0.182/libelf/gelf_update_rel.c
Examining data/elfutils-0.182/libelf/elf32_xlatetof.c
Examining data/elfutils-0.182/libelf/elf_cntl.c
Examining data/elfutils-0.182/libelf/exttypes.h
Examining data/elfutils-0.182/libelf/elf64_newphdr.c
Examining data/elfutils-0.182/libelf/elf_getbase.c
Examining data/elfutils-0.182/libelf/gelf_getsymshndx.c
Examining data/elfutils-0.182/libelf/elf_flagdata.c
Examining data/elfutils-0.182/libelf/elf32_getphdr.c
Examining data/elfutils-0.182/libelf/gelf.h
Examining data/elfutils-0.182/libelf/gelf_update_verneed.c
Examining data/elfutils-0.182/libelf/gelf_getlib.c
Examining data/elfutils-0.182/libelf/gnuhash_xlate.h
Examining data/elfutils-0.182/libelf/gelf_getdyn.c
Examining data/elfutils-0.182/libelf/gelf_getnote.c
Examining data/elfutils-0.182/libelf/elf_memory.c
Examining data/elfutils-0.182/libelf/elf-knowledge.h
Examining data/elfutils-0.182/libelf/elf_strptr.c
Examining data/elfutils-0.182/libelf/gelf_update_move.c
Examining data/elfutils-0.182/libelf/elf_getshdrstrndx.c
Examining data/elfutils-0.182/libelf/gelf_getsyminfo.c
Examining data/elfutils-0.182/libelf/elf_getarsym.c
Examining data/elfutils-0.182/libelf/gelf_getclass.c
Examining data/elfutils-0.182/libelf/elf_newscn.c
Examining data/elfutils-0.182/libelf/gelf_xlate.h
Examining data/elfutils-0.182/libelf/elf_scnshndx.c
Examining data/elfutils-0.182/libelf/elf64_getphdr.c
Examining data/elfutils-0.182/libelf/elf32_xlatetom.c
Examining data/elfutils-0.182/libelf/elf_getdata_rawchunk.c
Examining data/elfutils-0.182/libelf/elf_flagscn.c
Examining data/elfutils-0.182/libelf/gelf_offscn.c
Examining data/elfutils-0.182/libelf/gelf_getrela.c
Examining data/elfutils-0.182/libelf/gelf_getchdr.c
Examining data/elfutils-0.182/libelf/libelf_next_prime.c
Examining data/elfutils-0.182/libelf/gelf_xlate.c
Examining data/elfutils-0.182/libelf/gelf_update_ehdr.c
Examining data/elfutils-0.182/libelf/gelf_update_lib.c
Examining data/elfutils-0.182/libelf/elf64_xlatetof.c
Examining data/elfutils-0.182/libelf/elf64_checksum.c
Examining data/elfutils-0.182/libelf/elf_error.c
Examining data/elfutils-0.182/libelf/gelf_getehdr.c
Examining data/elfutils-0.182/libelf/elf32_getehdr.c
Examining data/elfutils-0.182/libelf/gelf_getversym.c
Examining data/elfutils-0.182/libelf/elf_getshdrnum.c
Examining data/elfutils-0.182/libelf/elf_getscn.c
Examining data/elfutils-0.182/libelf/elf_end.c
Examining data/elfutils-0.182/libelf/nlist.h
Examining data/elfutils-0.182/libelf/gelf_update_sym.c
Examining data/elfutils-0.182/libelf/elf_newdata.c
Examining data/elfutils-0.182/libelf/dl-hash.h
Examining data/elfutils-0.182/libelf/gelf_update_shdr.c
Examining data/elfutils-0.182/libelf/common.h
Examining data/elfutils-0.182/libelf/gelf_update_versym.c
Examining data/elfutils-0.182/libelf/elf_clone.c
Examining data/elfutils-0.182/libelf/elf64_xlatetom.c
Examining data/elfutils-0.182/libelf/gelf_update_verdef.c
Examining data/elfutils-0.182/libelf/gelf_getvernaux.c
Examining data/elfutils-0.182/libelf/elf_getident.c
Examining data/elfutils-0.182/libelf/elf_version.c
Examining data/elfutils-0.182/libelf/gelf_xlatetom.c
Examining data/elfutils-0.182/libelf/elf32_updatefile.c
Examining data/elfutils-0.182/libelf/libelf.h
Examining data/elfutils-0.182/libelf/version_xlate.h
Examining data/elfutils-0.182/libelf/gelf_getphdr.c
Examining data/elfutils-0.182/libelf/gelf_getverdef.c
Examining data/elfutils-0.182/libelf/elf_flagshdr.c
Examining data/elfutils-0.182/libelf/elf64_getchdr.c
Examining data/elfutils-0.182/libelf/gelf_newphdr.c
Examining data/elfutils-0.182/libelf/gelf_update_syminfo.c
Examining data/elfutils-0.182/libelf/gelf_update_dyn.c
Examining data/elfutils-0.182/libelf/elf_begin.c
Examining data/elfutils-0.182/libelf/gelf_getrel.c
Examining data/elfutils-0.182/libelf/elf_getaroff.c
Examining data/elfutils-0.182/libelf/elf_getphdrnum.c
Examining data/elfutils-0.182/libelf/elf_rawfile.c
Examining data/elfutils-0.182/libelf/elf32_offscn.c
Examining data/elfutils-0.182/libelf/elf_next.c
Examining data/elfutils-0.182/libelf/elf32_fsize.c
Examining data/elfutils-0.182/libelf/elf.h
Examining data/elfutils-0.182/libelf/gelf_update_verdaux.c
Examining data/elfutils-0.182/libelf/gelf_getshdr.c
Examining data/elfutils-0.182/libelf/elf64_getshdr.c
Examining data/elfutils-0.182/libelf/nlist.c
Examining data/elfutils-0.182/libelf/gelf_getverdaux.c
Examining data/elfutils-0.182/libelf/elf_gnu_hash.c
Examining data/elfutils-0.182/libelf/gelf_getsym.c
Examining data/elfutils-0.182/libelf/elf_flagelf.c
Examining data/elfutils-0.182/libelf/libelf_crc32.c
Examining data/elfutils-0.182/libelf/elf64_offscn.c
Examining data/elfutils-0.182/libelf/elf_rawdata.c
Examining data/elfutils-0.182/libelf/elf32_getchdr.c
Examining data/elfutils-0.182/libelf/gelf_update_rela.c
Examining data/elfutils-0.182/libebl/eblnormalizepc.c
Examining data/elfutils-0.182/libebl/eblobjnote.c
Examining data/elfutils-0.182/libebl/eblbsspltp.c
Examining data/elfutils-0.182/libebl/eblmachineflagcheck.c
Examining data/elfutils-0.182/libebl/ebldynamictagcheck.c
Examining data/elfutils-0.182/libebl/eblauxvinfo.c
Examining data/elfutils-0.182/libebl/eblreginfo.c
Examining data/elfutils-0.182/libebl/eblsectiontypename.c
Examining data/elfutils-0.182/libebl/ebl_check_special_section.c
Examining data/elfutils-0.182/libebl/eblrelocvaliduse.c
Examining data/elfutils-0.182/libebl/eblstother.c
Examining data/elfutils-0.182/libebl/eblosabiname.c
Examining data/elfutils-0.182/libebl/eblobjnotetypename.c
Examining data/elfutils-0.182/libebl/eblcopyrelocp.c
Examining data/elfutils-0.182/libebl/eblsysvhashentrysize.c
Examining data/elfutils-0.182/libebl/eblsymboltypename.c
Examining data/elfutils-0.182/libebl/eblcorenotetypename.c
Examining data/elfutils-0.182/libebl/eblmachinesectionflagcheck.c
Examining data/elfutils-0.182/libebl/eblretval.c
Examining data/elfutils-0.182/libebl/eblreloctypecheck.c
Examining data/elfutils-0.182/libebl/eblgotpcreloccheck.c
Examining data/elfutils-0.182/libebl/eblclosebackend.c
Examining data/elfutils-0.182/libebl/libeblP.h
Examining data/elfutils-0.182/libebl/eblelfclass.c
Examining data/elfutils-0.182/libebl/eblmachineflagname.c
Examining data/elfutils-0.182/libebl/eblbackendname.c
Examining data/elfutils-0.182/libebl/eblrelativerelocp.c
Examining data/elfutils-0.182/libebl/ebl_data_marker_symbol.c
Examining data/elfutils-0.182/libebl/eblcheckobjattr.c
Examining data/elfutils-0.182/libebl/eblelfdata.c
Examining data/elfutils-0.182/libebl/ebldwarftoregno.c
Examining data/elfutils-0.182/libebl/ebldynamictagname.c
Examining data/elfutils-0.182/libebl/eblsectionname.c
Examining data/elfutils-0.182/libebl/eblabicfi.c
Examining data/elfutils-0.182/libebl/eblcheckreloctargettype.c
Examining data/elfutils-0.182/libebl/eblelfmachine.c
Examining data/elfutils-0.182/libebl/eblopenbackend.c
Examining data/elfutils-0.182/libebl/eblsegmenttypename.c
Examining data/elfutils-0.182/libebl/ebl-hooks.h
Examining data/elfutils-0.182/libebl/ebldebugscnp.c
Examining data/elfutils-0.182/libebl/eblreloctypename.c
Examining data/elfutils-0.182/libebl/eblsymbolbindingname.c
Examining data/elfutils-0.182/libebl/eblunwind.c
Examining data/elfutils-0.182/libebl/eblcorenote.c
Examining data/elfutils-0.182/libebl/eblnonerelocp.c
Examining data/elfutils-0.182/libebl/eblresolvesym.c
Examining data/elfutils-0.182/libebl/ebl_check_special_symbol.c
Examining data/elfutils-0.182/libebl/eblrelocsimpletype.c
Examining data/elfutils-0.182/libebl/libebl.h
Examining data/elfutils-0.182/libebl/eblinitreg.c
Examining data/elfutils-0.182/libebl/eblsectionstripp.c
Examining data/elfutils-0.182/libcpu/i386_disasm.c
Examining data/elfutils-0.182/libcpu/x86_64_disasm.c
Examining data/elfutils-0.182/libcpu/i386_lex.c
Examining data/elfutils-0.182/libcpu/riscv_disasm.c
Examining data/elfutils-0.182/libcpu/x86_64_dis.h
Examining data/elfutils-0.182/libcpu/i386_parse.h
Examining data/elfutils-0.182/libcpu/i386_data.h
Examining data/elfutils-0.182/libcpu/memory-access.h
Examining data/elfutils-0.182/libcpu/i386_parse.c
Examining data/elfutils-0.182/libcpu/i386_dis.h
Examining data/elfutils-0.182/libcpu/bpf_disasm.c
Examining data/elfutils-0.182/libcpu/i386_gendis.c
Examining data/elfutils-0.182/libdwelf/dwelf_scn_gnu_compressed_size.c
Examining data/elfutils-0.182/libdwelf/dwelf_elf_begin.c
Examining data/elfutils-0.182/libdwelf/dwelf_elf_gnu_debuglink.c
Examining data/elfutils-0.182/libdwelf/dwelf_elf_e_machine_string.c
Examining data/elfutils-0.182/libdwelf/libdwelfP.h
Examining data/elfutils-0.182/libdwelf/dwelf_dwarf_gnu_debugaltlink.c
Examining data/elfutils-0.182/libdwelf/dwelf_strtab.c
Examining data/elfutils-0.182/libdwelf/libdwelf.h
Examining data/elfutils-0.182/libdwelf/dwelf_elf_gnu_build_id.c
Examining data/elfutils-0.182/version.h
FINAL RESULTS:
data/elfutils-0.182/tests/backtrace.c:377:19: [5] (race) readlink:
This accepts filename arguments; if an attacker can move those files or
change the link content, a race condition results. Also, it does not
terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
ssize_t ssize = readlink (selfpathname, data.selfpath,
data/elfutils-0.182/backends/aarch64_regs.c:41:25: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__ ((format (printf, 7, 8)))
data/elfutils-0.182/backends/aarch64_regs.c:52:11: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int s = vsnprintf (name, namelen, fmt, ap);
data/elfutils-0.182/backends/sparc_attrs.c:95:21: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
s = strcat (s, caps[cap]);
data/elfutils-0.182/debuginfod/debuginfod-client.c:524:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (build_id_bytes, (const char *) build_id);
data/elfutils-0.182/debuginfod/debuginfod.cxx:443:11: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (access("/usr/bin/dpkg-deb", X_OK) == 0)
data/elfutils-0.182/debuginfod/debuginfod.cxx:1337:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
fp = popen (popen_cmd.c_str(), "r"); // "e" O_CLOEXEC?
data/elfutils-0.182/debuginfod/debuginfod.cxx:2383:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
fp = popen (popen_cmd.c_str(), "r"); // "e" O_CLOEXEC?
data/elfutils-0.182/lib/xstrdup.c:41:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
return strcpy (xmalloc (strlen (string) + 1), string);
data/elfutils-0.182/libcpu/bpf_disasm.c:150:12: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf(buf, sizeof(buf), code_fmt,
data/elfutils-0.182/libcpu/bpf_disasm.c:159:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf(buf, sizeof(buf), "goto " JMP(1), jmp);
data/elfutils-0.182/libcpu/bpf_disasm.c:463:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf(buf, sizeof(buf), code_fmt, i.imm);
data/elfutils-0.182/libcpu/bpf_disasm.c:466:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf(buf, sizeof(buf), code_fmt, i.dst_reg, i.imm);
data/elfutils-0.182/libcpu/bpf_disasm.c:469:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf(buf, sizeof(buf), code_fmt, i.src_reg, i.imm);
data/elfutils-0.182/libcpu/bpf_disasm.c:472:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf(buf, sizeof(buf), code_fmt, i.dst_reg, i.src_reg);
data/elfutils-0.182/libcpu/bpf_disasm.c:475:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf(buf, sizeof(buf), code_fmt, i.dst_reg, i.imm, jmp);
data/elfutils-0.182/libcpu/bpf_disasm.c:478:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf(buf, sizeof(buf), code_fmt,
data/elfutils-0.182/libcpu/bpf_disasm.c:482:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf(buf, sizeof(buf), code_fmt, i.dst_reg, i.imm, i.off);
data/elfutils-0.182/libcpu/bpf_disasm.c:485:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf(buf, sizeof(buf), code_fmt,
data/elfutils-0.182/libcpu/i386_data.h:188:6: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = snprintf (tmpbuf, sizeof (tmpbuf), "0x%" PRIx16, disp);
data/elfutils-0.182/libcpu/i386_data.h:193:10: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = snprintf (tmpbuf, sizeof (tmpbuf), "%s0x%" PRIx16,
data/elfutils-0.182/libcpu/i386_data.h:274:12: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = snprintf (tmpbuf, sizeof (tmpbuf), "0x%" PRIx32, disp);
data/elfutils-0.182/libcpu/i386_data.h:312:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = snprintf (cp, sizeof (tmpbuf), "%s0x%" PRIx32,
data/elfutils-0.182/libcpu/i386_data.h:368:7: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = snprintf (cp, sizeof (tmpbuf), "0x%" PRIx64,
data/elfutils-0.182/libcpu/i386_data.h:372:7: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = snprintf (cp, sizeof (tmpbuf), "0x%" PRIx32, disp);
data/elfutils-0.182/libcpu/i386_data.h:406:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
needed = snprintf (buf, avail, "%%mm%" PRIxFAST8, byte);
data/elfutils-0.182/libcpu/i386_data.h:431:20: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "%%xmm%" PRIxFAST8,
data/elfutils-0.182/libcpu/i386_data.h:473:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "%s0x%" ABSPRIFMT,
data/elfutils-0.182/libcpu/i386_data.h:562:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "%%%s%" PRIx32,
data/elfutils-0.182/libcpu/i386_data.h:595:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "0x%" PRIx32,
data/elfutils-0.182/libcpu/i386_data.h:701:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx16, word);
data/elfutils-0.182/libcpu/i386_data.h:710:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx64,
data/elfutils-0.182/libcpu/i386_data.h:714:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx32, word);
data/elfutils-0.182/libcpu/i386_data.h:734:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIxFAST8, word);
data/elfutils-0.182/libcpu/i386_data.h:758:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx64, word);
data/elfutils-0.182/libcpu/i386_data.h:765:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx32, word);
data/elfutils-0.182/libcpu/i386_data.h:784:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx64,
data/elfutils-0.182/libcpu/i386_data.h:787:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx32,
data/elfutils-0.182/libcpu/i386_data.h:812:20: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx64,
data/elfutils-0.182/libcpu/i386_data.h:815:20: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx32, word);
data/elfutils-0.182/libcpu/i386_data.h:826:20: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx16, word);
data/elfutils-0.182/libcpu/i386_data.h:843:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx16, word);
data/elfutils-0.182/libcpu/i386_data.h:862:14: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx64,
data/elfutils-0.182/libcpu/i386_data.h:866:14: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx32,
data/elfutils-0.182/libcpu/i386_data.h:883:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx32,
data/elfutils-0.182/libcpu/i386_data.h:901:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "0x%" PRIx64,
data/elfutils-0.182/libcpu/i386_data.h:905:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "0x%" PRIx32,
data/elfutils-0.182/libcpu/i386_data.h:924:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "%%mm%" PRIxFAST8, byte);
data/elfutils-0.182/libcpu/i386_data.h:1346:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "$0x%" PRIx16, absval);
data/elfutils-0.182/libcpu/i386_data.h:1413:16: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int needed = snprintf (&d->bufp[*bufcntp], avail, "%%xmm%" PRIxFAST8, byte);
data/elfutils-0.182/libcpu/i386_disasm.c:1087:8: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
r = snprintf (&buf[bufcnt], bufavail, "# %#" PRIx64,
data/elfutils-0.182/libcpu/i386_parse.c:839:21: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define YYFPRINTF fprintf
data/elfutils-0.182/libcpu/i386_parse.c:2294:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat (last_str->str, runp->str);
data/elfutils-0.182/libcpu/riscv_disasm.c:194:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "%" PRIu64, opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:210:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "%" PRId16, nzimm);
data/elfutils-0.182/libcpu/riscv_disasm.c:218:8: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx64, opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:238:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx64, opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:249:15: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx16, first);
data/elfutils-0.182/libcpu/riscv_disasm.c:259:6: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "%" PRId32, imm);
data/elfutils-0.182/libcpu/riscv_disasm.c:286:8: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "%" PRId16,
data/elfutils-0.182/libcpu/riscv_disasm.c:294:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx16, first);
data/elfutils-0.182/libcpu/riscv_disasm.c:335:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "%" PRId64, opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:344:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx64, opaddr & 0xfffff);
data/elfutils-0.182/libcpu/riscv_disasm.c:376:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "%" PRId16, imm);
data/elfutils-0.182/libcpu/riscv_disasm.c:385:10: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (stpcpy (mnebuf, "c."), mne);
data/elfutils-0.182/libcpu/riscv_disasm.c:389:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx16, imm);
data/elfutils-0.182/libcpu/riscv_disasm.c:466:8: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx64, addr + opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:484:8: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx64, opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:534:14: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf (immbuf, sizeof (immbuf), "0x%04" PRIx16, first);
data/elfutils-0.182/libcpu/riscv_disasm.c:624:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx64, opaddr & shiftmask);
data/elfutils-0.182/libcpu/riscv_disasm.c:630:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "%" PRId64, opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:654:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "%" PRId64, opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:666:11: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
mne = strcpy (mnebuf, mne);
data/elfutils-0.182/libcpu/riscv_disasm.c:676:8: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx64, opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:734:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (cp, aqrlstr[(word >> 25) & 0x3]);
data/elfutils-0.182/libcpu/riscv_disasm.c:1000:8: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx64, opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:1074:8: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx64, opaddr);
data/elfutils-0.182/libcpu/riscv_disasm.c:1134:6: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (immbuf, sizeof (immbuf), "%" PRIu32, (word >> 15) & 0x1f);
data/elfutils-0.182/libcpu/riscv_disasm.c:1267:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addrbuf, sizeof (addrbuf), "0x%" PRIx32, csr);
data/elfutils-0.182/libcpu/riscv_disasm.c:1275:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (immbuf, sizeof (immbuf), "%" PRIu32, (word >> 15) & UINT32_C(0x1f));
data/elfutils-0.182/libcpu/riscv_disasm.c:1298:14: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = snprintf (addrbuf, sizeof (addrbuf), "0x%08" PRIx32, word);
data/elfutils-0.182/libcpu/riscv_disasm.c:1308:12: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
cp += snprintf (cp, mnebuf + sizeof (mnebuf) - cp, "%04" PRIx16,
data/elfutils-0.182/libdw/dwarf_getalt.c:127:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (&id_path[0], "%s%s", DEBUGINFO_PATH, "/.build-id/");
data/elfutils-0.182/libdw/dwarf_getalt.c:131:2: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (&id_path[sizeof DEBUGINFO_PATH - 1 + sizeof "/.build-id/" - 1
data/elfutils-0.182/libdw/dwarf_getsrclines.c:518:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (cp, fname);
data/elfutils-0.182/libdw/dwarf_getsrclines.c:640:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (cp, fname);
data/elfutils-0.182/libdw/dwarf_getsrclines.c:816:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (cp, fname);
data/elfutils-0.182/libdwfl/dwfl_build_id_find_elf.c:67:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = snprintf (&id_name[sizeof "/.build-id/" - 1 + 3 + (i - 1) * 2],
data/elfutils-0.182/libdwfl/link_map.c:382:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (r_debug_info_module->name, name1);
data/elfutils-0.182/libebl/eblcorenotetypename.c:100:6: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (buf, len, "%s: %" PRIu32, gettext ("<unknown>"), type);
data/elfutils-0.182/libebl/ebldynamictagname.c:103:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (buf, len, gettext ("<unknown>: %#" PRIx64), tag);
data/elfutils-0.182/libebl/eblobjnote.c:262:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRIx64, val);
data/elfutils-0.182/libebl/eblobjnote.c:303:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%02" PRIx8, (uint8_t) desc[i]);
data/elfutils-0.182/libebl/eblobjnote.c:468:6: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%#" PRIx32, prop.pr_type);
data/elfutils-0.182/libebl/eblobjnote.c:535:6: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%#" PRIx32, prop.pr_type);
data/elfutils-0.182/libebl/eblobjnote.c:550:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("proc_type %#" PRIx32, prop.pr_type);
data/elfutils-0.182/libebl/eblobjnote.c:553:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("app_type %#" PRIx32, prop.pr_type);
data/elfutils-0.182/libebl/eblobjnote.c:555:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("unknown_type %#" PRIx32, prop.pr_type);
data/elfutils-0.182/libebl/eblobjnote.c:643:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRIu32, buf[cnt]);
data/elfutils-0.182/libebl/eblobjnotetypename.c:51:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (buf, len, "Version: %" PRIu32, type);
data/elfutils-0.182/libebl/eblobjnotetypename.c:77:8: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (buf, len, "%s: %" PRIu32, gettext ("<unknown>"), type);
data/elfutils-0.182/libebl/eblobjnotetypename.c:109:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (buf, len, "%s: %" PRIu32, gettext ("<unknown>"), type);
data/elfutils-0.182/libebl/eblobjnotetypename.c:130:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (buf, len, "%s: %" PRIu32, gettext ("<unknown>"), type);
data/elfutils-0.182/src/ar.c:1089:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int ret = snprintf (tmpbuf, sizeof (tmpbuf), ofmt ? "%-*lo" : "%-*ld",
data/elfutils-0.182/src/elfcompress.c:732:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (&snamebuf[1], &sname[2]);
data/elfutils-0.182/src/elfcompress.c:756:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (&snamebuf[2], &sname[1]);
data/elfutils-0.182/src/elfcompress.c:811:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (&snamebuf[1], &sname[2]);
data/elfutils-0.182/src/elflint.c:102:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (str, ##args); \
data/elfutils-0.182/src/elflint.c:2816:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (cp, len - 1, "%" PRIx64, (uint64_t) flags);
data/elfutils-0.182/src/nm.c:844:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (addressbuf, sizeof (addressbuf),
data/elfutils-0.182/src/nm.c:849:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (sizebuf, sizeof (sizebuf),
data/elfutils-0.182/src/nm.c:1020:8: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ((radix == radix_hex ? HEXFMT
data/elfutils-0.182/src/nm.c:1038:8: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ((radix == radix_hex ? HEXFMT
data/elfutils-0.182/src/nm.c:1125:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ((radix == radix_hex
data/elfutils-0.182/src/objdump.c:394:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%c%#" PRIx64, sign, r_addend);
data/elfutils-0.182/src/objdump.c:647:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (" %02" PRIx8, info->last_end[cnt]);
data/elfutils-0.182/src/objdump.c:669:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (" %02" PRIx8, info->last_end[cnt]);
data/elfutils-0.182/src/readelf.c:681:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (tempname, "%s%s", tmpdir, suffix);
data/elfutils-0.182/src/readelf.c:875:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf (fnname, "%s:%s", fname, elf_input_section);
data/elfutils-0.182/src/readelf.c:1132:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (gettext (" Number of program headers entries: %" PRId16),
data/elfutils-0.182/src/readelf.c:1149:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (gettext (" Number of section headers entries: %" PRId16),
data/elfutils-0.182/src/readelf.c:1605:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ((grpref[0] & GRP_COMDAT)
data/elfutils-0.182/src/readelf.c:1745:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%#0*" PRIx64, class == ELFCLASS32 ? 10 : 18, d_val);
data/elfutils-0.182/src/readelf.c:1808:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:2008:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:2023:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:2198:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:2213:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:2463:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\nSymbol table [%2u] '%s' contains %u entry:\n",
data/elfutils-0.182/src/readelf.c:2468:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext (" %lu local symbol String table: [%2u] '%s'\n",
data/elfutils-0.182/src/readelf.c:2621:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ((*versym & 0x8000) ? "@%s" : "@@%s",
data/elfutils-0.182/src/readelf.c:2716:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:2793:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:3097:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:3172:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:3529:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:3818:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
? printf ("%s+%#" PRIx64, scn, address)
data/elfutils-0.182/src/readelf.c:3819:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
: printf ("%s+%#0*" PRIx64, scn, 2 + address_size * 2, address))
data/elfutils-0.182/src/readelf.c:3821:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
? printf ("%#" PRIx64, address)
data/elfutils-0.182/src/readelf.c:3822:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
: printf ("%#0*" PRIx64, 2 + address_size * 2, address)))) < 0)
data/elfutils-0.182/src/readelf.c:5394:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext ("\
data/elfutils-0.182/src/readelf.c:6902:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("\n address_range: %#" PRIx64,
data/elfutils-0.182/src/readelf.c:7466:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRId8, (int8_t) snum);
data/elfutils-0.182/src/readelf.c:7468:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRIu8, (uint8_t) num);
data/elfutils-0.182/src/readelf.c:7473:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRId16, (int16_t) snum);
data/elfutils-0.182/src/readelf.c:7475:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRIu16, (uint16_t) num);
data/elfutils-0.182/src/readelf.c:7480:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRId32, (int32_t) snum);
data/elfutils-0.182/src/readelf.c:7482:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRIu32, (uint32_t) num);
data/elfutils-0.182/src/readelf.c:7487:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRId64, (int64_t) snum);
data/elfutils-0.182/src/readelf.c:7489:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRIu64, (uint64_t) num);
data/elfutils-0.182/src/readelf.c:7494:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRIdMAX, (intmax_t) snum);
data/elfutils-0.182/src/readelf.c:7496:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRIuMAX, (uintmax_t) num);
data/elfutils-0.182/src/readelf.c:8143:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (" %" PRIx8, (unsigned int) val);
data/elfutils-0.182/src/readelf.c:8150:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(" %" PRIx16, (unsigned int) val);
data/elfutils-0.182/src/readelf.c:8157:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (" %" PRIx32, (unsigned int) val);
data/elfutils-0.182/src/readelf.c:8164:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (" %" PRIx64, val);
data/elfutils-0.182/src/readelf.c:8171:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (" %" PRIx64, val);
data/elfutils-0.182/src/readelf.c:8178:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (" %" PRIx64, val);
data/elfutils-0.182/src/readelf.c:8536:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext (" [%*" PRIuFAST8 "] %hhu argument\n",
data/elfutils-0.182/src/readelf.c:9018:8: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (ngettext (" unknown opcode with %" PRIu8 " parameter:",
data/elfutils-0.182/src/readelf.c:10014:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (gettext (" Flag: 0x%" PRIx8), flag);
data/elfutils-0.182/src/readelf.c:10270:8: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%*svendor opcode 0x%" PRIx8, level, "", opcode);
data/elfutils-0.182/src/readelf.c:10623:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (" eh_frame_ptr: %#" PRIx64, eh_frame_ptr);
data/elfutils-0.182/src/readelf.c:11071:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%" PRId32, cu);
data/elfutils-0.182/src/readelf.c:11090:9: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("unknown-0x%" PRIx32, kind);
data/elfutils-0.182/src/readelf.c:11472:25: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
__attribute__ ((format (printf, 6, 7)))
data/elfutils-0.182/src/readelf.c:12364:16: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
int ct = printf (" %08" PRIx64 "-%08" PRIx64
data/elfutils-0.182/src/size.c:437:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ((radix == radix_hex
data/elfutils-0.182/src/size.c:492:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ((radix == radix_hex ? "%" PRIx64 "(%s)"
data/elfutils-0.182/src/size.c:548:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (radix == radix_decimal
data/elfutils-0.182/src/size.c:616:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (radix == radix_hex ? "%" PRIx64 "(%c%c%c)"
data/elfutils-0.182/src/stack.c:164:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%02" PRIx8, *id++);
data/elfutils-0.182/src/stack.c:226:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("#%-2u 0x%0*" PRIx64, nr, width, (uint64_t) pc);
data/elfutils-0.182/src/stack.c:266:6: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%02" PRIx8, *id++);
data/elfutils-0.182/src/stack.c:268:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("]@0x%0" PRIx64 "+0x%" PRIx64,
data/elfutils-0.182/src/strings.c:355:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ((radix == radix_octal ? "%7" PRIo64 " "
data/elfutils-0.182/src/strings.c:423:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ((radix == radix_octal ? "%7" PRIo64 " "
data/elfutils-0.182/src/strip.c:1757:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (shdr_info[cnt].data->d_buf, debug_basename);
data/elfutils-0.182/src/unstrip.c:2433:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%02" PRIx8, *id++);
data/elfutils-0.182/src/unstrip.c:2436:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("@%#" PRIx64, id_vaddr);
data/elfutils-0.182/tests/addrscopes.c:49:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%s%#" PRIx64, prefix, addr);
data/elfutils-0.182/tests/allregs.c:123:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy (state->info[regno].name, regname);
data/elfutils-0.182/tests/asm-tst4.c:97:27: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
result = WEXITSTATUS (system ("../src/elflint -q asm-tst4-out.o"));
data/elfutils-0.182/tests/asm-tst5.c:109:27: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
result = WEXITSTATUS (system ("../src/elflint -q asm-tst5-out.o"));
data/elfutils-0.182/tests/asm-tst6.c:143:27: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
result = WEXITSTATUS (system ("../src/elflint -q asm-tst6-out.o"));
data/elfutils-0.182/tests/backtrace.c:346:7: [4] (shell) execl:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execl (exec, exec, "--ptraceme", NULL);
data/elfutils-0.182/tests/dwflmodtest.c:96:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf (" %#" PRIx64 "..%#" PRIx64, lo, hi);
data/elfutils-0.182/tests/dwflsyms.c:127:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf("%4d: %s\t%s\t%s (%" PRIu64 ") %#" PRIx64,
data/elfutils-0.182/tests/find-prologues.c:67:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%-16s %#.16" PRIx64, dwarf_diename (func), entrypc);
data/elfutils-0.182/tests/funcscopes.c:50:5: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%s%#" PRIx64, prefix, addr);
data/elfutils-0.182/tests/line2addr.c:49:6: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%s(%s)+%#" PRIx64, modname, secname, address);
data/elfutils-0.182/tests/line2addr.c:51:6: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%s+%#" PRIx64, modname, address);
data/elfutils-0.182/tests/line2addr.c:56:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("%#" PRIx64, address);
data/elfutils-0.182/tests/varlocs.c:676:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("addr: 0x%" PRIx64, address);
data/elfutils-0.182/tests/varlocs.c:694:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf ("const: 0x%" PRIx64, constant);
data/elfutils-0.182/debuginfod/debuginfod-client.c:511:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
urls_envvar = getenv(server_urls_envvar);
data/elfutils-0.182/debuginfod/debuginfod-client.c:576:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *cache_var = getenv(cache_path_envvar);
data/elfutils-0.182/debuginfod/debuginfod-client.c:583:40: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
xalloc_str (cache_path, "%s/%s", getenv ("HOME") ?: "/", cache_default_name);
data/elfutils-0.182/debuginfod/debuginfod-client.c:589:23: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *xdg = getenv ("XDG_CACHE_HOME");
data/elfutils-0.182/debuginfod/debuginfod-client.c:594:56: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
snprintf (cachedir, PATH_MAX, "%s/.cache", getenv ("HOME") ?: "/");
data/elfutils-0.182/debuginfod/debuginfod-client.c:652:32: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* timeout_envvar = getenv(server_timeout_envvar);
data/elfutils-0.182/debuginfod/debuginfod-client.c:1028:11: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv(DEBUGINFOD_PROGRESS_ENV_VAR))
data/elfutils-0.182/debuginfod/debuginfod.cxx:2295:23: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
char *srp = realpath(dwarfsrc.c_str(), NULL);
data/elfutils-0.182/debuginfod/debuginfod.cxx:2827:22: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
char *rp = realpath(f->fts_path, NULL);
data/elfutils-0.182/debuginfod/debuginfod.cxx:3156:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
tmpdir = string(getenv("TMPDIR") ?: "/tmp");
data/elfutils-0.182/debuginfod/debuginfod.cxx:3159:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
db_path = string(getenv("HOME") ?: "/") + string("/.debuginfod.sqlite"); /* XDG? */
data/elfutils-0.182/debuginfod/debuginfod.cxx:3320:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* du = getenv(DEBUGINFOD_URLS_ENV_VAR);
data/elfutils-0.182/lib/color.c:144:22: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *env = getenv ("ELFUTILS_COLORS");
data/elfutils-0.182/libdw/dwarf_begin_elf.c:194:18: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
char *fdpath = realpath (devfdpath, NULL);
data/elfutils-0.182/libdwfl/dwfl_build_id_find_elf.c:105:17: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
*file_name = realpath (name, NULL);
data/elfutils-0.182/libdwfl/find-debuginfo.c:396:21: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
char *canon = realpath (file_name, NULL);
data/elfutils-0.182/src/readelf.c:677:25: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *tmpdir = getenv ("TMPDIR") ?: P_tmpdir;
data/elfutils-0.182/backends/common-reloc.c:48:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zero[1];
data/elfutils-0.182/backends/sparc_attrs.c:44:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *hwcaps[32] =
data/elfutils-0.182/backends/sparc_attrs.c:54:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *hwcaps2[32] =
data/elfutils-0.182/backends/sparc_attrs.c:66:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name[32*17+32+1];
data/elfutils-0.182/backends/sparc_regs.c:62:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char names[2][8][6] =
data/elfutils-0.182/debuginfod/debuginfod-client.c:91:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define open open64
data/elfutils-0.182/debuginfod/debuginfod-client.c:92:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define fopen fopen64
data/elfutils-0.182/debuginfod/debuginfod-client.c:159:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char url[PATH_MAX];
data/elfutils-0.182/debuginfod/debuginfod-client.c:221:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(interval_path, O_CREAT | O_RDWR, 0666);
data/elfutils-0.182/debuginfod/debuginfod-client.c:230:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
&& (fd = open(maxage_path, O_CREAT | O_RDWR, 0666)) < 0)
data/elfutils-0.182/debuginfod/debuginfod-client.c:254:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
interval_file = fopen(interval_path, "w");
data/elfutils-0.182/debuginfod/debuginfod-client.c:268:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
interval_file = fopen(interval_path, "r");
data/elfutils-0.182/debuginfod/debuginfod-client.c:284:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
max_unused_file = fopen(max_unused_path, "r");
data/elfutils-0.182/debuginfod/debuginfod-client.c:367:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen ("/etc/os-release", "r");
data/elfutils-0.182/debuginfod/debuginfod-client.c:369:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen ("/usr/lib/os-release", "r");
data/elfutils-0.182/debuginfod/debuginfod-client.c:376:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/elfutils-0.182/debuginfod/debuginfod-client.c:499:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char suffix[PATH_MAX + 1]; /* +1 for zero terminator. */
data/elfutils-0.182/debuginfod/debuginfod-client.c:500:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char build_id_bytes[MAX_BUILD_ID_BYTES * 2 + 1];
data/elfutils-0.182/debuginfod/debuginfod-client.c:527:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(build_id_bytes + (i * 2), "%02x", build_id[i]);
data/elfutils-0.182/debuginfod/debuginfod-client.c:588:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cachedir[PATH_MAX];
data/elfutils-0.182/debuginfod/debuginfod-client.c:641:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (target_cache_path, O_RDONLY);
data/elfutils-0.182/debuginfod/debuginfod-client.c:654:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
timeout = atoi (timeout_envvar);
data/elfutils-0.182/debuginfod/debuginfod-client.c:676:8: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
fd = mkstemp (target_cache_tmppath);
data/elfutils-0.182/debuginfod/debuginfod-find.c:135:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open ((char*) build_id, O_RDONLY);
data/elfutils-0.182/debuginfod/debuginfod.cxx:65:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define open open64
data/elfutils-0.182/debuginfod/debuginfod.cxx:66:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define fopen fopen64
data/elfutils-0.182/debuginfod/debuginfod.cxx:434:38: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'p': http_port = (unsigned) atoi(arg);
data/elfutils-0.182/debuginfod/debuginfod.cxx:471:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rescan_s = (unsigned) atoi(arg);
data/elfutils-0.182/debuginfod/debuginfod.cxx:474:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
groom_s = (unsigned) atoi(arg);
data/elfutils-0.182/debuginfod/debuginfod.cxx:480:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
concurrency = (unsigned) atoi(arg);
data/elfutils-0.182/debuginfod/debuginfod.cxx:497:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fdcache_fds = atol (arg);
data/elfutils-0.182/debuginfod/debuginfod.cxx:500:21: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fdcache_mbs = atol (arg);
data/elfutils-0.182/debuginfod/debuginfod.cxx:503:26: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fdcache_prefetch = atol (arg);
data/elfutils-0.182/debuginfod/debuginfod.cxx:677:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[80];
data/elfutils-0.182/debuginfod/debuginfod.cxx:855:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[256]; // RFC1035
data/elfutils-0.182/debuginfod/debuginfod.cxx:856:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char servname[256];
data/elfutils-0.182/debuginfod/debuginfod.cxx:899:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[80];
data/elfutils-0.182/debuginfod/debuginfod.cxx:917:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open(b_source0.c_str(), O_RDONLY);
data/elfutils-0.182/debuginfod/debuginfod.cxx:1071:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
newfd = open(fdpath, O_RDONLY);
data/elfutils-0.182/debuginfod/debuginfod.cxx:1158:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(n.fd.c_str(), O_RDONLY); // NB: no problem if dup() fails; looks like cache miss
data/elfutils-0.182/debuginfod/debuginfod.cxx:1344:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen (b_source0.c_str(), "r");
data/elfutils-0.182/debuginfod/debuginfod.cxx:1403:12: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
fd = mkstemp (tmppath);
data/elfutils-0.182/debuginfod/debuginfod.cxx:1619:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostname[256] = ""; // RFC1035
data/elfutils-0.182/debuginfod/debuginfod.cxx:2225:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (rps.c_str(), O_RDONLY);
data/elfutils-0.182/debuginfod/debuginfod.cxx:2390:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen (rps.c_str(), "r");
data/elfutils-0.182/debuginfod/debuginfod.cxx:2443:20: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
int fd = mkstemp (tmppath);
data/elfutils-0.182/lib/color.c:102:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char str[7];
data/elfutils-0.182/lib/color.c:162:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char name[sizeof (char *) - 1];
data/elfutils-0.182/lib/crc32_file.c:43:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buffer[1024 * 8];
data/elfutils-0.182/lib/system.h:69:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
((void *) ((char *) memcpy (dest, src, n) + (size_t) n))
data/elfutils-0.182/libasm/asm_addint8.c:110:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&asmscn->content->data[asmscn->content->len], &var, SIZE / 8);
data/elfutils-0.182/libasm/asm_addsleb128.c:56:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[(sizeof (num) * 8 + 6) / 7];
data/elfutils-0.182/libasm/asm_addsleb128.c:87:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&asmscn->content->data[asmscn->content->len], tmpbuf, nbytes);
data/elfutils-0.182/libasm/asm_addstrz.c:115:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&asmscn->content->data[asmscn->content->len], str, len);
data/elfutils-0.182/libasm/asm_adduleb128.c:56:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[(sizeof (num) * 8 + 6) / 7];
data/elfutils-0.182/libasm/asm_adduleb128.c:83:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&asmscn->content->data[asmscn->content->len], tmpbuf, nbytes);
data/elfutils-0.182/libasm/asm_begin.c:106:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&ehdr->e_ident[EI_MAG0], ELFMAG, SELFMAG);
data/elfutils-0.182/libasm/asm_begin.c:154:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result->fname, fname, fname_len + 1);
data/elfutils-0.182/libasm/asm_begin.c:157:20: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
result->fd = mkstemp (result->tmp_fname);
data/elfutils-0.182/libasm/asm_error.c:63:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *msgs[ASM_E_NUM] =
data/elfutils-0.182/libasm/asm_fill.c:63:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (pattern->bytes, bytes, len);
data/elfutils-0.182/libasm/asm_newscn.c:66:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char flagstr[sizeof (GElf_Xword) * 8 + 5];
data/elfutils-0.182/libasm/asm_newscn.c:188:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result->name, scnname, scnname_len);
data/elfutils-0.182/libasm/asm_newscngrp.c:69:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result->name, grpname, grpname_len);
data/elfutils-0.182/libasm/asm_newsym.c:50:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempsym[TEMPSYMLEN];
data/elfutils-0.182/libasm/asm_newsym.c:89:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result + 1, name, name_len));
data/elfutils-0.182/libasm/libasmP.h:119:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[flexarr_size];
data/elfutils-0.182/libasm/libasmP.h:126:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bytes[flexarr_size];
data/elfutils-0.182/libasm/libasmP.h:136:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[flexarr_size];
data/elfutils-0.182/libasm/libasmP.h:188:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp_fname[flexarr_size];
data/elfutils-0.182/libasm/libasmP.h:241:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[flexarr_size];
data/elfutils-0.182/libcpu/bpf_disasm.c:43:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char class_string[8][8] = {
data/elfutils-0.182/libcpu/bpf_disasm.c:100:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/elfutils-0.182/libcpu/bpf_disasm.c:109:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&i, start, sizeof(struct bpf_insn));
data/elfutils-0.182/libcpu/bpf_disasm.c:131:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&i2, start, sizeof(struct bpf_insn));
data/elfutils-0.182/libcpu/i386_data.h:136:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char hiregs[8][4] =
data/elfutils-0.182/libcpu/i386_data.h:140:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char aregs[8][4] =
data/elfutils-0.182/libcpu/i386_data.h:144:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char dregs[8][4] =
data/elfutils-0.182/libcpu/i386_data.h:149:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char aregs[8][4] =
data/elfutils-0.182/libcpu/i386_data.h:185:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[sizeof ("-0x1234(%rr,%rr)")];
data/elfutils-0.182/libcpu/i386_data.h:207:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&bufp[*bufcntp], tmpbuf, n + 1);
data/elfutils-0.182/libcpu/i386_data.h:227:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[sizeof ("-0x12345678(%rrrr)")];
data/elfutils-0.182/libcpu/i386_data.h:281:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&bufp[*bufcntp], tmpbuf, n + 1);
data/elfutils-0.182/libcpu/i386_data.h:301:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[sizeof ("-0x12345678(%rrrr,%rrrr,N)")];
data/elfutils-0.182/libcpu/i386_data.h:379:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&bufp[*bufcntp], tmpbuf, cp - tmpbuf);
data/elfutils-0.182/libcpu/i386_data.h:663:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&d->bufp[*bufcntp], "(%dx)", 5);
data/elfutils-0.182/libcpu/i386_data.h:991:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&d->bufp[*bufcntp], "???", 3);
data/elfutils-0.182/libcpu/i386_data.h:1003:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char rex_8bit[8][3] =
data/elfutils-0.182/libcpu/i386_data.h:1121:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&d->bufp[*bufcntp], dregs[byte] + 1, sizeof (dregs[0]) - 1);
data/elfutils-0.182/libcpu/i386_data.h:1183:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&d->bufp[*bufcntp], dregs[byte] + is_16bit, 3 - is_16bit);
data/elfutils-0.182/libcpu/i386_data.h:1238:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&d->bufp[*bufcntp], aregs[byte], 3);
data/elfutils-0.182/libcpu/i386_disasm.c:61:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
#define MNE(name) char MNESTRFIELD (__LINE__)[sizeof (#name)];
data/elfutils-0.182/libcpu/i386_disasm.c:65:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[0];
data/elfutils-0.182/libcpu/i386_disasm.c:309:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (buf + bufcnt, _str, _len); \
data/elfutils-0.182/libcpu/i386_disasm.c:323:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char initbuf[BUFSIZE];
data/elfutils-0.182/libcpu/i386_disasm.c:712:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mnebuf[16];
data/elfutils-0.182/libcpu/i386_disasm.c:906:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char tttn[16][3] =
data/elfutils-0.182/libcpu/i386_gendis.c:50:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
main (int argc, char *argv[argc])
data/elfutils-0.182/libcpu/i386_gendis.c:63:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
i386_in = fopen (infname, "r");
data/elfutils-0.182/libcpu/i386_parse.c:1088:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char const *yyarg[YYERROR_VERBOSE_ARGS_MAXIMUM];
data/elfutils-0.182/libcpu/i386_parse.c:1277:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char yymsgbuf[128];
data/elfutils-0.182/libcpu/i386_parse.c:2888:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char used_char[256];
data/elfutils-0.182/libcpu/i386_parse.c:2894:49: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char *cp = (const unsigned char *) str[cnt];
data/elfutils-0.182/libcpu/i386_parse.c:2952:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
++pfxfreq[*((const unsigned char *) str[i])].freq;
data/elfutils-0.182/libcpu/i386_parse.c:2978:32: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
++sfxfreq[((const unsigned char *) strchrnul (strsnlen[i].str, '\0'))[-1]].freq;
data/elfutils-0.182/libcpu/i386_parse.c:3012:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prefix[1 << pfxbits];
data/elfutils-0.182/libcpu/i386_parse.c:3057:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char suffix[1 << sfxbits];
data/elfutils-0.182/libcpu/i386_parse.c:3071:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char charused[256];
data/elfutils-0.182/libcpu/i386_parse.c:3075:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *tablestr[nstrsnlen];
data/elfutils-0.182/libcpu/i386_parse.c:3109:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
if (charused[((const unsigned char *) tablestr[j])[x]]++ == 0)
data/elfutils-0.182/libcpu/riscv_disasm.c:68:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (buf + bufcnt, _str, _len); \
data/elfutils-0.182/libcpu/riscv_disasm.c:73:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *regnames[32] =
data/elfutils-0.182/libcpu/riscv_disasm.c:80:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
#define REG(nr) ((char *) regnames[nr])
data/elfutils-0.182/libcpu/riscv_disasm.c:84:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *fregnames[32] =
data/elfutils-0.182/libcpu/riscv_disasm.c:91:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
#define FREG(nr) ((char *) fregnames[nr])
data/elfutils-0.182/libcpu/riscv_disasm.c:121:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char initbuf[BUFSIZE];
data/elfutils-0.182/libcpu/riscv_disasm.c:167:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mnebuf[32];
data/elfutils-0.182/libcpu/riscv_disasm.c:168:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *op[5] = { NULL, NULL, NULL, NULL, NULL };
data/elfutils-0.182/libcpu/riscv_disasm.c:169:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char immbuf[32];
data/elfutils-0.182/libcpu/riscv_disasm.c:172:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addrbuf[32];
data/elfutils-0.182/libcpu/riscv_disasm.c:396:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const arithmne[8] =
data/elfutils-0.182/libcpu/riscv_disasm.c:400:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
mne = (char *) arithmne[((first >> 10) & 0x4) | ((first >> 5) & 0x3)];
data/elfutils-0.182/libcpu/riscv_disasm.c:545:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char widthchar[4] = { 's', 'd', '\0', 'q' };
data/elfutils-0.182/libcpu/riscv_disasm.c:546:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char intwidthchar[4] = { 'w', 'd', '\0', 'q' };
data/elfutils-0.182/libcpu/riscv_disasm.c:547:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const rndmode[8] = { "rne", "rtz", "rdn", "rup", "rmm", "???", "???", "dyn" };
data/elfutils-0.182/libcpu/riscv_disasm.c:564:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const loadmne[8] =
data/elfutils-0.182/libcpu/riscv_disasm.c:568:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const floadmne[8] =
data/elfutils-0.182/libcpu/riscv_disasm.c:586:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const order[16] =
data/elfutils-0.182/libcpu/riscv_disasm.c:595:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
op[0] = (char *) order[succ];
data/elfutils-0.182/libcpu/riscv_disasm.c:596:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
op[1] = (char *) order[pred];
data/elfutils-0.182/libcpu/riscv_disasm.c:609:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const opimmmne[8] =
data/elfutils-0.182/libcpu/riscv_disasm.c:614:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
mne = (char *) opimmmne[func];
data/elfutils-0.182/libcpu/riscv_disasm.c:689:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const storemne[8] =
data/elfutils-0.182/libcpu/riscv_disasm.c:693:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const fstoremne[8] =
data/elfutils-0.182/libcpu/riscv_disasm.c:708:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const amomne[32] =
data/elfutils-0.182/libcpu/riscv_disasm.c:730:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const aqrlstr[4] =
data/elfutils-0.182/libcpu/riscv_disasm.c:747:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const arithmne2[32] =
data/elfutils-0.182/libcpu/riscv_disasm.c:754:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const arithmne3[32] =
data/elfutils-0.182/libcpu/riscv_disasm.c:798:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const fmamne[4] =
data/elfutils-0.182/libcpu/riscv_disasm.c:811:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
op[4] = (char *) rndmode[rm];
data/elfutils-0.182/libcpu/riscv_disasm.c:826:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const fpop[4] =
data/elfutils-0.182/libcpu/riscv_disasm.c:839:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
op[3] = (char *) rndmode[rm];
data/elfutils-0.182/libcpu/riscv_disasm.c:863:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (cp, ".x");
data/elfutils-0.182/libcpu/riscv_disasm.c:873:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const mnefpcmp[3] =
data/elfutils-0.182/libcpu/riscv_disasm.c:895:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const mnefpcmp[3] =
data/elfutils-0.182/libcpu/riscv_disasm.c:899:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const altsignmne[3] =
data/elfutils-0.182/libcpu/riscv_disasm.c:950:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
op[2] = (char *) rndmode[rm];
data/elfutils-0.182/libcpu/riscv_disasm.c:961:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
op[2] = (char *) rndmode[rm];
data/elfutils-0.182/libcpu/riscv_disasm.c:978:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const fltcmpmne[3] =
data/elfutils-0.182/libcpu/riscv_disasm.c:1002:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const branchmne[8] =
data/elfutils-0.182/libcpu/riscv_disasm.c:1007:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
mne = (char *) branchmne[func];
data/elfutils-0.182/libcpu/riscv_disasm.c:1099:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const unprivrw[4] =
data/elfutils-0.182/libcpu/riscv_disasm.c:1103:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
mne = (char *) unprivrw[csr - 0x000];
data/elfutils-0.182/libcpu/riscv_disasm.c:1107:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const unprivrolow[3] =
data/elfutils-0.182/libcpu/riscv_disasm.c:1111:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
mne = (char *) unprivrolow[csr - 0xc00];
data/elfutils-0.182/libcpu/riscv_disasm.c:1120:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const unprivrs[4] =
data/elfutils-0.182/libcpu/riscv_disasm.c:1124:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const unprivrsi[4] =
data/elfutils-0.182/libcpu/riscv_disasm.c:1141:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *const mnecsr[8] =
data/elfutils-0.182/libcpu/riscv_disasm.c:1289:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
mne = (char *) mnecsr[instr];
data/elfutils-0.182/libdw/cfi.c:53:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (copy, original, size);
data/elfutils-0.182/libdw/dwarf_begin_elf.c:50:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char dwarf_scnnames[IDX_last][19] =
data/elfutils-0.182/libdw/dwarf_begin_elf.c:192:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char devfdpath[25];
data/elfutils-0.182/libdw/dwarf_begin_elf.c:193:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (devfdpath, "/proc/self/fd/%u", fd);
data/elfutils-0.182/libdw/dwarf_getalt.c:125:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id_path[sizeof DEBUGINFO_PATH - 1 + sizeof "/.build-id/" - 1
data/elfutils-0.182/libdw/dwarf_getalt.c:128:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (&id_path[sizeof DEBUGINFO_PATH - 1 + sizeof "/.build-id/" - 1],
data/elfutils-0.182/libdw/dwarf_getalt.c:133:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (&id_path[sizeof DEBUGINFO_PATH - 1 + sizeof "/.build-id/" - 1
data/elfutils-0.182/libdw/dwarf_getalt.c:136:32: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = TEMP_FAILURE_RETRY (open (id_path, O_RDONLY));
data/elfutils-0.182/libdw/dwarf_getalt.c:145:29: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = TEMP_FAILURE_RETRY (open (altpath, O_RDONLY));
data/elfutils-0.182/libdw/dwarf_getmacros.c:91:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char macinfo_data[macinfo_data_size]
data/elfutils-0.182/libdw/dwarf_getmacros.c:132:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (table, macinfo_data, macinfo_data_size);
data/elfutils-0.182/libdw/libdwP.h:237:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mem[0];
data/elfutils-0.182/libdw/libdwP.h:515:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char opcodes[255];
data/elfutils-0.182/libdw/libdw_find_split_unit.c:48:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int split_fd = open (dwo_path, O_RDONLY);
data/elfutils-0.182/libdw/memory-access.h:371:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[4];
data/elfutils-0.182/libdwelf/dwelf_elf_begin.c:55:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char badelf[EI_NIDENT] = { };
data/elfutils-0.182/libdwelf/dwelf_scn_gnu_compressed_size.c:63:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&size, d->d_buf + 4, sizeof size);
data/elfutils-0.182/libdwelf/dwelf_strtab.c:54:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reverse[0];
data/elfutils-0.182/libdwelf/dwelf_strtab.c:61:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char memory[0];
data/elfutils-0.182/libdwfl/argp-std.c:177:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int result = INTUSE(dwfl_linux_proc_report) (dwfl, atoi (arg));
data/elfutils-0.182/libdwfl/argp-std.c:182:44: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
INTUSE(dwfl_linux_proc_attach) (dwfl, atoi (arg), false);
data/elfutils-0.182/libdwfl/argp-std.c:196:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen (arg, "r");
data/elfutils-0.182/libdwfl/argp-std.c:283:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (opt->core, O_RDONLY);
data/elfutils-0.182/libdwfl/core-file.c:83:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (h.ar_size, parent->map_address + parent->start_offset + offset,
data/elfutils-0.182/libdwfl/core-file.c:356:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (*buffer, contents, *buffer_available);
data/elfutils-0.182/libdwfl/dwfl_build_id_find_elf.c:58:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char id_name[sizeof "/.build-id/" + 1 + MAX_BUILD_ID_BYTES * 2
data/elfutils-0.182/libdwfl/dwfl_build_id_find_elf.c:60:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (id_name, "/.build-id/");
data/elfutils-0.182/libdwfl/dwfl_build_id_find_elf.c:73:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (&id_name[sizeof "/.build-id/" - 1 + 3 + (id_len - 1) * 2],
data/elfutils-0.182/libdwfl/dwfl_build_id_find_elf.c:98:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (mempcpy (name, dir, dirlen), id_name, sizeof id_name);
data/elfutils-0.182/libdwfl/dwfl_build_id_find_elf.c:100:32: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = TEMP_FAILURE_RETRY (open (name, O_RDONLY));
data/elfutils-0.182/libdwfl/dwfl_build_id_find_elf.c:160:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (executable, O_RDONLY);
data/elfutils-0.182/libdwfl/dwfl_error.c:67:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strings[
data/elfutils-0.182/libdwfl/dwfl_module_build_id.c:53:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
mod->build_id_bits = memcpy (copy, bits, len);
data/elfutils-0.182/libdwfl/dwfl_module_getdwarf.c:54:28: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
*fd = TEMP_FAILURE_RETRY (open (*name, O_RDONLY));
data/elfutils-0.182/libdwfl/dwfl_module_register_names.c:61:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[32];
data/elfutils-0.182/libdwfl/dwfl_module_report_build_id.c:73:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (copy, bits, len);
data/elfutils-0.182/libdwfl/dwfl_report_elf.c:298:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (file_name, O_RDONLY);
data/elfutils-0.182/libdwfl/dwfl_segment_report_module.c:108:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&u, *ptrp, sz);
data/elfutils-0.182/libdwfl/dwfl_segment_report_module.c:525:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (build_id, note_desc, build_id_len);
data/elfutils-0.182/libdwfl/dwfl_segment_report_module.c:724:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (name, O_RDONLY);
data/elfutils-0.182/libdwfl/dwfl_segment_report_module.c:953:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (contents, buffer, have);
data/elfutils-0.182/libdwfl/find-debuginfo.c:61:32: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = TEMP_FAILURE_RETRY (open (fname, O_RDONLY));
data/elfutils-0.182/libdwfl/find-debuginfo.c:188:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (localname, file_basename, len);
data/elfutils-0.182/libdwfl/find-debuginfo.c:189:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&localname[len], ".debug", sizeof ".debug");
data/elfutils-0.182/libdwfl/image-header.c:70:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char header_buffer[H_READ_SIZE];
data/elfutils-0.182/libdwfl/libdwflP.h:413:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[__LIBDWFL_REMOTE_MEM_CACHE_SIZE]; /* The actual cache. */
data/elfutils-0.182/libdwfl/libdwflP.h:687:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[0];
data/elfutils-0.182/libdwfl/link_map.c:392:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (name, O_RDONLY);
data/elfutils-0.182/libdwfl/link_map.c:811:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (dwfl->user_core->executable_for_core, O_RDONLY);
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:58:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define open open64
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:59:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define fopen fopen64
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:102:28: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
: TEMP_FAILURE_RETRY (open (*fname, O_RDONLY)));
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:137:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = TEMP_FAILURE_RETRY (open (zname, O_RDONLY));
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:400:29: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
if (modulesdir[0] == (char *) release)
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:531:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
state.f = fopen (KSYMSFILE, "r");
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:576:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (notesfile, O_RDONLY);
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:585:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[8192];
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:665:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *dirs[2] = { NULL, NULL };
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:769:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (a, n, namelen - (n - module_name) + 1);
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:857:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (f->fts_accpath, O_RDONLY);
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:910:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen (sysfile, "r");
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:944:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen (sysfile, "r");
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:964:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen (sysfile, "r");
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:968:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen (sysfile, "r");
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:1002:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen (MODULELIST, "r");
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:1011:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char modname[128];
data/elfutils-0.182/libdwfl/linux-pid-attach.c:51:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[64];
data/elfutils-0.182/libdwfl/linux-pid-attach.c:56:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
procfile = fopen (buffer, "r");
data/elfutils-0.182/libdwfl/linux-pid-attach.c:152:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result, d, sizeof (unsigned long));
data/elfutils-0.182/libdwfl/linux-pid-attach.c:176:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (result, d, sizeof (unsigned long));
data/elfutils-0.182/libdwfl/linux-pid-attach.c:379:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[36];
data/elfutils-0.182/libdwfl/linux-pid-attach.c:386:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
procfile = fopen (buffer, "r");
data/elfutils-0.182/libdwfl/linux-pid-attach.c:423:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[64];
data/elfutils-0.182/libdwfl/linux-pid-attach.c:440:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int elf_fd = open (name, O_RDONLY);
data/elfutils-0.182/libdwfl/linux-proc-maps.c:66:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/libdwfl/linux-proc-maps.c:71:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[EI_CLASS + 1];
data/elfutils-0.182/libdwfl/linux-proc-maps.c:102:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/libdwfl/linux-proc-maps.c:309:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen (fname, "r");
data/elfutils-0.182/libdwfl/linux-proc-maps.c:383:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (module_name, O_RDONLY);
data/elfutils-0.182/libdwfl/linux-proc-maps.c:420:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/libdwfl/offline.c:308:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (file_name, O_RDONLY);
data/elfutils-0.182/libebl/eblsegmenttypename.c:46:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *ptypes[PT_NUM] =
data/elfutils-0.182/libebl/eblsymbolbindingname.c:46:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *stb_names[STB_NUM] =
data/elfutils-0.182/libebl/eblsymboltypename.c:46:20: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *stt_names[STT_NUM] =
data/elfutils-0.182/libelf/abstract.h:33:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TYPE_EXTRA (unsigned char e_ident[EI_NIDENT];) \
data/elfutils-0.182/libelf/common.h:53:37: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int eclass = (int) ((unsigned char *) buf)[EI_CLASS];
data/elfutils-0.182/libelf/common.h:54:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int data = (int) ((unsigned char *) buf)[EI_DATA];
data/elfutils-0.182/libelf/common.h:55:38: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int version = (int) ((unsigned char *) buf)[EI_VERSION];
data/elfutils-0.182/libelf/elf.h:65:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char e_ident[EI_NIDENT]; /* Magic number and other info */
data/elfutils-0.182/libelf/elf.h:83:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char e_ident[EI_NIDENT]; /* Magic number and other info */
data/elfutils-0.182/libelf/elf32_getphdr.c:139:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (phdr, file_phdr, size);
data/elfutils-0.182/libelf/elf32_getphdr.c:157:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (notcvt, file_phdr, size);
data/elfutils-0.182/libelf/elf32_getshdr.c:113:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (shdr, file_shdr, size);
data/elfutils-0.182/libelf/elf32_getshdr.c:133:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (notcvt, ((char *) elf->map_address
data/elfutils-0.182/libelf/elf32_updatefile.c:154:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (elf->map_address + elf->start_offset, ehdr,
data/elfutils-0.182/libelf/elf32_updatefile.c:262:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
= memcpy (p, scn->shdr.ELFW(e,LIBELFBITS),
data/elfutils-0.182/libelf/elf32_updatefile.c:289:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
= memcpy (p, scn->data_list.data.d.d_buf,
data/elfutils-0.182/libelf/elf32_updatefile.c:389:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (last_position, converted, size);
data/elfutils-0.182/libelf/elf32_updatefile.c:454:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&shdr_dest[scn->index],
data/elfutils-0.182/libelf/elf32_updatefile.c:537:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fillbuf[FILLBUFSIZE];
data/elfutils-0.182/libelf/elf32_updatefile.c:744:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[MAX_TMPBUF];
data/elfutils-0.182/libelf/elf32_updatefile.c:821:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&shdr_data[scn->index], scn->shdr.ELFW(e,LIBELFBITS),
data/elfutils-0.182/libelf/elf32_updatenull.c:61:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&ehdr->e_ident[EI_MAG0], ELFMAG, SELFMAG);
data/elfutils-0.182/libelf/elf_begin.c:113:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&ehdr_mem, e_ident, sizeof (Elf32_Ehdr));
data/elfutils-0.182/libelf/elf_begin.c:129:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&ehdr_mem, e_ident, sizeof (Elf64_Ehdr));
data/elfutils-0.182/libelf/elf_begin.c:166:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&size, &((Elf32_Shdr *) ((char *) map_address
data/elfutils-0.182/libelf/elf_begin.c:223:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&size, &((Elf64_Shdr *) ((char *) map_address
data/elfutils-0.182/libelf/elf_begin.c:348:28: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
elf->state.elf32.ehdr = memcpy (&elf->state.elf32.ehdr_mem, e_ident,
data/elfutils-0.182/libelf/elf_begin.c:450:28: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
elf->state.elf64.ehdr = memcpy (&elf->state.elf64.ehdr_mem, e_ident,
data/elfutils-0.182/libelf/elf_begin.c:587:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char header[MAX (sizeof (Elf64_Ehdr), SARMAG)];
data/elfutils-0.182/libelf/elf_begin.c:745:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[sizeof (hdr->ar_size) + 1];
data/elfutils-0.182/libelf/elf_begin.c:752:13: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
len = atol (string);
data/elfutils-0.182/libelf/elf_begin.c:778:40: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
elf->state.ar.long_names = (char *) memcpy (newp,
data/elfutils-0.182/libelf/elf_begin.c:883:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
elf_ar_hdr->ar_name = memcpy (elf->state.ar.ar_name, "/", 2);
data/elfutils-0.182/libelf/elf_begin.c:887:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
elf_ar_hdr->ar_name = memcpy (elf->state.ar.ar_name, "/SYM64/", 8);
data/elfutils-0.182/libelf/elf_begin.c:891:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
elf_ar_hdr->ar_name = memcpy (elf->state.ar.ar_name, "//", 3);
data/elfutils-0.182/libelf/elf_begin.c:907:13: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
offset = atol (ar_hdr->ar_name + 1);
data/elfutils-0.182/libelf/elf_begin.c:964:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[sizeof (ar_hdr->FIELD) + 1]; \
data/elfutils-0.182/libelf/elf_begin.c:973:53: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
elf_ar_hdr->FIELD = (__typeof (elf_ar_hdr->FIELD)) atol (string); \
data/elfutils-0.182/libelf/elf_compress.c:436:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (out_buf, &chdr, sizeof (Elf32_Chdr));
data/elfutils-0.182/libelf/elf_compress.c:452:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (out_buf, &chdr, sizeof (Elf64_Chdr));
data/elfutils-0.182/libelf/elf_compress_gnu.c:165:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&gsize, data->d_buf + 4, sizeof gsize);
data/elfutils-0.182/libelf/elf_getarsym.c:62:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&u, elf->map_address + *offp, sizeof u);
data/elfutils-0.182/libelf/elf_getarsym.c:181:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[17];
data/elfutils-0.182/libelf/elf_getarsym.c:182:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (tmpbuf, index_hdr->ar_size, 10);
data/elfutils-0.182/libelf/elf_getarsym.c:184:27: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
size_t index_size = atol (tmpbuf);
data/elfutils-0.182/libelf/elf_getarsym.c:259:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
file_data = memcpy (temp_data, elf->map_address + off, sz);
data/elfutils-0.182/libelf/elf_getdata.c:159:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (scn->data_base, scn->rawdata_base, size);
data/elfutils-0.182/libelf/elf_getdata.c:188:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (rawdata_source, scn->rawdata_base, size);
data/elfutils-0.182/libelf/elf_getdata_rawchunk.c:91:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (rawchunk, rawdata, size);
data/elfutils-0.182/libelf/elf_getdata_rawchunk.c:138:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (buffer, rawchunk, size);
data/elfutils-0.182/libelf/exttypes.h:34:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf32_Ext_Addr[ELF32_FSZ_ADDR];
data/elfutils-0.182/libelf/exttypes.h:35:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf32_Ext_Off[ELF32_FSZ_OFF];
data/elfutils-0.182/libelf/exttypes.h:36:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf32_Ext_Half[ELF32_FSZ_HALF];
data/elfutils-0.182/libelf/exttypes.h:37:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf32_Ext_Sword[ELF32_FSZ_SWORD];
data/elfutils-0.182/libelf/exttypes.h:38:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf32_Ext_Word[ELF32_FSZ_WORD];
data/elfutils-0.182/libelf/exttypes.h:39:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf32_Ext_Sxword[ELF32_FSZ_SXWORD];
data/elfutils-0.182/libelf/exttypes.h:40:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf32_Ext_Xword[ELF32_FSZ_XWORD];
data/elfutils-0.182/libelf/exttypes.h:42:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf64_Ext_Addr[ELF64_FSZ_ADDR];
data/elfutils-0.182/libelf/exttypes.h:43:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf64_Ext_Off[ELF64_FSZ_OFF];
data/elfutils-0.182/libelf/exttypes.h:44:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf64_Ext_Half[ELF64_FSZ_HALF];
data/elfutils-0.182/libelf/exttypes.h:45:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf64_Ext_Sword[ELF64_FSZ_SWORD];
data/elfutils-0.182/libelf/exttypes.h:46:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf64_Ext_Word[ELF64_FSZ_WORD];
data/elfutils-0.182/libelf/exttypes.h:47:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf64_Ext_Sxword[ELF64_FSZ_SXWORD];
data/elfutils-0.182/libelf/exttypes.h:48:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char Elf64_Ext_Xword[ELF64_FSZ_XWORD];
data/elfutils-0.182/libelf/gelf_getauxv.c:97:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dst, data_scn->d.d_buf + ndx * sizeof (GElf_auxv_t),
data/elfutils-0.182/libelf/gelf_getehdr.c:71:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest->e_ident, ehdr->e_ident, EI_NIDENT);
data/elfutils-0.182/libelf/gelf_getehdr.c:91:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
result = memcpy (dest, elf->state.elf64.ehdr, sizeof (*dest));
data/elfutils-0.182/libelf/gelf_getphdr.c:128:16: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
result = memcpy (dst, phdr + ndx, sizeof (GElf_Phdr));
data/elfutils-0.182/libelf/gelf_getrel.c:92:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
result = memcpy (dst, &((Elf64_Rel *) data_scn->d.d_buf)[ndx],
data/elfutils-0.182/libelf/gelf_getrela.c:93:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
result = memcpy (dst, &((Elf64_Rela *) data_scn->d.d_buf)[ndx],
data/elfutils-0.182/libelf/gelf_getshdr.c:95:16: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
result = memcpy (dst, shdr, sizeof (GElf_Shdr));
data/elfutils-0.182/libelf/gelf_getverdaux.c:72:31: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
result = (GElf_Verdaux *) memcpy (dst, (char *) data->d_buf + offset,
data/elfutils-0.182/libelf/gelf_getverdef.c:72:30: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
result = (GElf_Verdef *) memcpy (dst, (char *) data->d_buf + offset,
data/elfutils-0.182/libelf/gelf_getvernaux.c:75:31: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
result = (GElf_Vernaux *) memcpy (dst, (char *) data->d_buf + offset,
data/elfutils-0.182/libelf/gelf_getverneed.c:75:31: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
result = (GElf_Verneed *) memcpy (dst, (char *) data->d_buf + offset,
data/elfutils-0.182/libelf/gelf_update_ehdr.c:78:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (ehdr->e_ident, src->e_ident, EI_NIDENT);
data/elfutils-0.182/libelf/gelf_update_ehdr.c:106:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (ehdr, src, sizeof (Elf64_Ehdr));
data/elfutils-0.182/libelf/gelf_update_phdr.c:131:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (phdr + ndx, src, sizeof (Elf64_Phdr));
data/elfutils-0.182/libelf/gelf_update_shdr.c:99:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void) memcpy (shdr, src, sizeof (GElf_Shdr));
data/elfutils-0.182/libelf/gelf_update_verdaux.c:70:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((char *) data_scn->d.d_buf + offset, src, sizeof (GElf_Verdaux));
data/elfutils-0.182/libelf/gelf_update_verdef.c:70:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((char *) data_scn->d.d_buf + offset, src, sizeof (GElf_Verdef));
data/elfutils-0.182/libelf/gelf_update_vernaux.c:70:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((char *) data_scn->d.d_buf + offset, src, sizeof (GElf_Vernaux));
data/elfutils-0.182/libelf/gelf_update_verneed.c:70:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ((char *) data_scn->d.d_buf + offset, src, sizeof (GElf_Verneed));
data/elfutils-0.182/libelf/libelfP.h:357:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char __e32scnspad[sizeof (Elf64_Ehdr) - sizeof (Elf32_Ehdr)];
data/elfutils-0.182/libelf/libelfP.h:400:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ar_name[16]; /* NUL terminated ar_name of elf_ar_hdr. */
data/elfutils-0.182/libelf/libelfP.h:401:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char raw_name[17]; /* This is a buffer for the NUL terminated
data/elfutils-0.182/libelf/nlist.c:74:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (filename, O_RDONLY);
data/elfutils-0.182/libelf/note_xlate.h:75:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest, src, note_data_len);
data/elfutils-0.182/libelf/note_xlate.h:85:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (dest, src, len);
data/elfutils-0.182/src/ar.c:163:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&newp[1], argv[1], len);
data/elfutils-0.182/src/ar.c:383:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (arfname, flags, mode);
data/elfutils-0.182/src/ar.c:415:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
not_found (int argc, char *argv[argc], bool found[argc])
data/elfutils-0.182/src/ar.c:541:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datestr[100];
data/elfutils-0.182/src/ar.c:603:14: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
xfd = mkstemp (tempfname);
data/elfutils-0.182/src/ar.c:613:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
xfd = open (arhdr->ar_name, flags, 0600);
data/elfutils-0.182/src/ar.c:623:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char truncfname[name_max + 1];
data/elfutils-0.182/src/ar.c:627:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
xfd = open (truncfname, flags, 0600);
data/elfutils-0.182/src/ar.c:712:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char truncfname[name_max + 1];
data/elfutils-0.182/src/ar.c:758:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpfname[strlen (arfname) + 7];
data/elfutils-0.182/src/ar.c:759:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stpcpy (tmpfname, arfname), "XXXXXX");
data/elfutils-0.182/src/ar.c:760:16: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
int newfd = mkstemp (tmpfname);
data/elfutils-0.182/src/ar.c:854:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[sizeof (arhdr.ar_name) + 2];
data/elfutils-0.182/src/ar.c:1004:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpfname[strlen (arfname) + 7];
data/elfutils-0.182/src/ar.c:1005:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stpcpy (tmpfname, arfname), "XXXXXX");
data/elfutils-0.182/src/ar.c:1006:15: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
int newfd = mkstemp (tmpfname);
data/elfutils-0.182/src/ar.c:1088:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[bufsize + 1];
data/elfutils-0.182/src/ar.c:1093:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (buf, tmpbuf, bufsize);
data/elfutils-0.182/src/ar.c:1261:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int newfd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/src/ar.c:1396:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpfname[strlen (arfname) + 7];
data/elfutils-0.182/src/ar.c:1397:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stpcpy (tmpfname, arfname), "XXXXXX");
data/elfutils-0.182/src/ar.c:1400:13: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
newfd = mkstemp (tmpfname);
data/elfutils-0.182/src/ar.c:1403:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
newfd = open (arfname, O_RDWR | O_CREAT | O_EXCL, DEFFILEMODE);
data/elfutils-0.182/src/ar.c:1465:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[sizeof (arhdr.ar_name) + 2];
data/elfutils-0.182/src/arlib.c:62:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[sizeof (ar_hdr.ar_date) + 1];
data/elfutils-0.182/src/arlib.c:67:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (ar_hdr.ar_date, tmpbuf, s);
data/elfutils-0.182/src/arlib.c:114:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[sizeof (((struct ar_hdr *) NULL)->ar_size) + 1];
data/elfutils-0.182/src/arlib.c:131:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&((struct ar_hdr *) symtab.longnames)->ar_size, tmpbuf, s);
data/elfutils-0.182/src/arlib.c:175:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&((struct ar_hdr *) symtab.symsoff)->ar_size, tmpbuf,
data/elfutils-0.182/src/elfclassify.c:86:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file_fd = open (current_path, O_RDONLY | (flag_only_regular_files
data/elfutils-0.182/src/elfcmp.c:732:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/src/elfcompress.c:333:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/src/elfcompress.c:578:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (mempcpy (fnew, fname, fname_len), ".XXXXXX");
data/elfutils-0.182/src/elfcompress.c:579:15: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
fdnew = mkstemp (fnew);
data/elfutils-0.182/src/elfcompress.c:584:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fdnew = open (fnew, O_WRONLY | O_CREAT, st.st_mode & ALLPERMS);
data/elfutils-0.182/src/elflint.c:151:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[remaining], O_RDONLY);
data/elfutils-0.182/src/elflint.c:251:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new_prefix[prefix_len + 1 + fname_len];
data/elfutils-0.182/src/elflint.c:252:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new_suffix[(suffix == NULL ? 0 : strlen (suffix)) + 2];
data/elfutils-0.182/src/elflint.c:264:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (cp, fname, fname_len);
data/elfutils-0.182/src/elflint.c:342:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/elfutils-0.182/src/elflint.c:1408:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/elfutils-0.182/src/elflint.c:1446:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/elfutils-0.182/src/elflint.c:1716:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/elfutils-0.182/src/elflint.c:1726:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/elfutils-0.182/src/elflint.c:1800:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/elfutils-0.182/src/elflint.c:1815:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/elfutils-0.182/src/elflint.c:1833:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[50];
data/elfutils-0.182/src/elflint.c:1834:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[50];
data/elfutils-0.182/src/elflint.c:1847:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/elfutils-0.182/src/elflint.c:2716:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&val, data->d_buf, elsize);
data/elfutils-0.182/src/elflint.c:2727:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&val, (char *) data->d_buf + cnt, elsize);
data/elfutils-0.182/src/elflint.c:3463:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&len, p, sizeof len);
data/elfutils-0.182/src/elflint.c:3519:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&subsection_len, q, sizeof subsection_len);
data/elfutils-0.182/src/elflint.c:3764:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stbuf1[100];
data/elfutils-0.182/src/elflint.c:3765:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stbuf2[100];
data/elfutils-0.182/src/elflint.c:3766:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stbuf3[100];
data/elfutils-0.182/src/findtextrel.c:202:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (real_fname, O_RDONLY);
data/elfutils-0.182/src/findtextrel.c:368:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (mempcpy (stpcpy (mempcpy (mempcpy (difname, rootdir,
data/elfutils-0.182/src/findtextrel.c:376:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd2 = open (difname, O_RDONLY);
data/elfutils-0.182/src/nm.c:361:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/src/nm.c:415:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new_prefix[prefix_len + fname_len + 2];
data/elfutils-0.182/src/nm.c:417:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new_suffix[suffix_len + 2];
data/elfutils-0.182/src/nm.c:541:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
tsearch (memcpy (xmalloc (sizeof (Dwarf_Global)), global,
data/elfutils-0.182/src/nm.c:796:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char symstrbuf[50];
data/elfutils-0.182/src/nm.c:823:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char symbindbuf[50];
data/elfutils-0.182/src/nm.c:824:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char symtypebuf[50];
data/elfutils-0.182/src/nm.c:825:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char secnamebuf[1024];
data/elfutils-0.182/src/nm.c:826:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char addressbuf[(64 + 2) / 3 + 1];
data/elfutils-0.182/src/nm.c:827:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sizebuf[(64 + 2) / 3 + 1];
data/elfutils-0.182/src/nm.c:839:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (addressbuf, "%*c", digits, ' ');
data/elfutils-0.182/src/nm.c:840:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (sizebuf, "%*c", digits, ' ');
data/elfutils-0.182/src/nm.c:949:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char symstrbuf[50];
data/elfutils-0.182/src/nm.c:1081:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char symstrbuf[50];
data/elfutils-0.182/src/nm.c:1538:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullname[prefix_len + 1 + fname_len + suffix_len];
data/elfutils-0.182/src/nm.c:1552:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (cp - 1, suffix, suffix_len + 1);
data/elfutils-0.182/src/objdump.c:238:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/src/objdump.c:292:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new_prefix[prefix_len + fname_len + 2];
data/elfutils-0.182/src/objdump.c:294:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new_suffix[suffix_len + 2];
data/elfutils-0.182/src/objdump.c:350:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/elfutils-0.182/src/objdump.c:770:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullname[prefix_len + 1 + fname_len + suffix_len];
data/elfutils-0.182/src/objdump.c:776:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (cp - 1, suffix, suffix_len + 1);
data/elfutils-0.182/src/ranlib.c:138:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/src/ranlib.c:216:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpfname[strlen (fname) + 7];
data/elfutils-0.182/src/ranlib.c:217:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (stpcpy (tmpfname, fname), "XXXXXX");
data/elfutils-0.182/src/ranlib.c:218:19: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
int newfd = mkstemp (tmpfname);
data/elfutils-0.182/src/readelf.c:365:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[remaining], O_RDONLY);
data/elfutils-0.182/src/readelf.c:683:14: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
int sfd = mkstemp (tempname);
data/elfutils-0.182/src/readelf.c:1093:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/elfutils-0.182/src/readelf.c:1273:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char flagbuf[20];
data/elfutils-0.182/src/readelf.c:1304:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/elfutils-0.182/src/readelf.c:1374:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/elfutils-0.182/src/readelf.c:1827:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/elfutils-0.182/src/readelf.c:2046:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/elfutils-0.182/src/readelf.c:2236:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/elfutils-0.182/src/readelf.c:2484:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char typebuf[64];
data/elfutils-0.182/src/readelf.c:2485:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bindbuf[64];
data/elfutils-0.182/src/readelf.c:2486:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char scnbuf[64];
data/elfutils-0.182/src/readelf.c:2664:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[32];
data/elfutils-0.182/src/readelf.c:3624:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&len, p, sizeof len);
data/elfutils-0.182/src/readelf.c:3662:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&subsection_len, q, sizeof subsection_len);
data/elfutils-0.182/src/readelf.c:4135:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char unknown_buf[20];
data/elfutils-0.182/src/readelf.c:4378:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/elfutils-0.182/src/readelf.c:6116:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *
data/elfutils-0.182/src/readelf.c:6118:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[REGNAMESZ], int *bits, int *type)
data/elfutils-0.182/src/readelf.c:6212:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char regnamebuf[REGNAMESZ];
data/elfutils-0.182/src/readelf.c:10067:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char *vendor[DW_MACRO_hi_user - DW_MACRO_lo_user + 1];
data/elfutils-0.182/src/readelf.c:11207:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int skel_fd = open (skel_name, O_RDONLY);
data/elfutils-0.182/src/readelf.c:11637:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char printed[(negate ? nbits - pop : pop) * 16 + 1];
data/elfutils-0.182/src/readelf.c:11679:14: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p += sprintf (p, "%u", bit - bias);
data/elfutils-0.182/src/readelf.c:11681:14: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p += sprintf (p, ",%u", bit - bias);
data/elfutils-0.182/src/readelf.c:11683:14: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p += sprintf (p, "-%u,%u", lastbit - bias, bit - bias);
data/elfutils-0.182/src/readelf.c:11691:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
p += sprintf (p, "-%u", lastbit - bias);
data/elfutils-0.182/src/readelf.c:11933:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[REGNAMESZ];
data/elfutils-0.182/src/readelf.c:11992:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hex[bits / 4 + 1];
data/elfutils-0.182/src/readelf.c:12023:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[REGNAMESZ];
data/elfutils-0.182/src/readelf.c:12434:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/elfutils-0.182/src/readelf.c:12435:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[100];
data/elfutils-0.182/src/size.c:269:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/src/size.c:345:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new_prefix[prefix_len + 1 + fname_len];
data/elfutils-0.182/src/size.c:354:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (cp, fname, fname_len);
data/elfutils-0.182/src/size.c:641:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fullname[prefix_len + 1 + fname_len];
data/elfutils-0.182/src/size.c:650:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (cp, fname, fname_len);
data/elfutils-0.182/src/stack.c:485:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pid = atoi (arg);
data/elfutils-0.182/src/stack.c:491:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
core_fd = open (arg, O_RDONLY);
data/elfutils-0.182/src/stack.c:550:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
maxframes = atoi (arg);
data/elfutils-0.182/src/strings.c:182:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
? STDIN_FILENO : open (argv[remaining], O_RDONLY));
data/elfutils-0.182/src/strings.c:268:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
min_len = atoi (arg);
data/elfutils-0.182/src/strip.c:117:48: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static int handle_elf (int fd, Elf *elf, const char *prefix,
data/elfutils-0.182/src/strip.c:118:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *fname, mode_t mode, struct timespec tvp[2]);
data/elfutils-0.182/src/strip.c:121:47: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static int handle_ar (int fd, Elf *elf, const char *prefix, const char *fname,
data/elfutils-0.182/src/strip.c:121:67: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static int handle_ar (int fd, Elf *elf, const char *prefix, const char *fname,
data/elfutils-0.182/src/strip.c:737:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, output_fname == NULL ? O_RDWR : O_RDONLY);
data/elfutils-0.182/src/strip.c:925:37: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
handle_elf (int fd, Elf *elf, const char *prefix, const char *fname,
data/elfutils-0.182/src/strip.c:925:57: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
handle_elf (int fd, Elf *elf, const char *prefix, const char *fname,
data/elfutils-0.182/src/strip.c:976:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (cp, fname, fname_len);
data/elfutils-0.182/src/strip.c:981:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (output_fname, O_RDWR | O_CREAT, mode);
data/elfutils-0.182/src/strip.c:1015:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (mempcpy (tmp_debug_fname, debug_fname, debug_fname_len),
data/elfutils-0.182/src/strip.c:1018:18: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
debug_fd = mkstemp (tmp_debug_fname);
data/elfutils-0.182/src/strip.c:1617:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
debugdata->d_buf = memcpy (xmalloc (debugdata->d_size),
data/elfutils-0.182/src/strip.c:1628:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (debugehdr->e_ident, ehdr->e_ident, EI_NIDENT);
data/elfutils-0.182/src/strip.c:2510:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (newehdr->e_ident, ehdr->e_ident, EI_NIDENT);
data/elfutils-0.182/src/strip.c:2700:36: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
handle_ar (int fd, Elf *elf, const char *prefix, const char *fname,
data/elfutils-0.182/src/strip.c:2700:56: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
handle_ar (int fd, Elf *elf, const char *prefix, const char *fname,
data/elfutils-0.182/src/strip.c:2705:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char new_prefix[prefix_len + 1 + fname_len];
data/elfutils-0.182/src/strip.c:2714:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (cp, fname, fname_len);
data/elfutils-0.182/src/unstrip.c:2194:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int outfd = open (output_file, O_RDWR | O_CREAT,
data/elfutils-0.182/src/unstrip.c:2224:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (file, writable ? O_RDWR : O_RDONLY);
data/elfutils-0.182/tests/addsections.c:77:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (name, O_RDWR);
data/elfutils-0.182/tests/addsections.c:125:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (new_shstrtab_buf, shstrtab_data->d_buf, shstrtab_data->d_size);
data/elfutils-0.182/tests/addsections.c:128:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (new_shstrtab_buf + extra_idx, ".extra");
data/elfutils-0.182/tests/addsections.c:129:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (new_shstrtab_buf + old_shstrtab_idx, ".old_shstrtab");
data/elfutils-0.182/tests/addsections.c:321:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
size_t nr = atoi (argv[argn++]);
data/elfutils-0.182/tests/addsections.c:326:16: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sec_size = atol (argv[argn++]);
data/elfutils-0.182/tests/all-dwarf-ranges.c:74:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (name, O_RDONLY);
data/elfutils-0.182/tests/alldts.c:71:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDWR | O_CREAT | O_TRUNC, 0666);
data/elfutils-0.182/tests/allfcts.c:52:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (alt_name, O_RDONLY);
data/elfutils-0.182/tests/allfcts.c:73:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[i], O_RDONLY);
data/elfutils-0.182/tests/allregs.c:78:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[32];
data/elfutils-0.182/tests/allregs.c:193:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int regno = atoi (arg);
data/elfutils-0.182/tests/arextract.c:45:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/arextract.c:98:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfd = open (argv[3], O_CREAT | O_TRUNC | O_RDWR, 0666);
data/elfutils-0.182/tests/arextract.c:109:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/elfutils-0.182/tests/arls.c:50:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/arsymtest.c:40:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/arsymtest.c:48:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen (argv[2], "w");
data/elfutils-0.182/tests/asm-tst1.c:54:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *scnnames[4] =
data/elfutils-0.182/tests/asm-tst1.c:118:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/asm-tst2.c:54:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *scnnames[3] =
data/elfutils-0.182/tests/asm-tst2.c:134:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/asm-tst3.c:34:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *scnnames[5] =
data/elfutils-0.182/tests/asm-tst3.c:141:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/asm-tst3.c:261:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *names[4] =
data/elfutils-0.182/tests/asm-tst4.c:62:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/elfutils-0.182/tests/asm-tst5.c:64:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[20];
data/elfutils-0.182/tests/asm-tst6.c:61:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/elfutils-0.182/tests/asm-tst7.c:75:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/asm-tst8.c:76:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/asm-tst9.c:62:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *scnnames[3] =
data/elfutils-0.182/tests/asm-tst9.c:168:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/attr-integrate-skel.c:38:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[i], O_RDONLY);
data/elfutils-0.182/tests/backtrace-data.c:100:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f = fopen (fname, "r");
data/elfutils-0.182/tests/backtrace.c:245:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char selfpath[PATH_MAX + 1];
data/elfutils-0.182/tests/buildid.c:45:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (file, O_RDONLY);
data/elfutils-0.182/tests/cleanup-13.c:267:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char verify_it[sizeof (cfi_arch_program) - 0x80 < 0x3f80 ? 1 : -1];
data/elfutils-0.182/tests/cleanup-13.c:278:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char verify_it[sizeof (cfi_arch_program) - 0x80 < 0x3f80 ? 1 : -1];
data/elfutils-0.182/tests/debugaltlink.c:45:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (file, O_RDONLY);
data/elfutils-0.182/tests/debuglink.c:43:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (file, O_RDONLY);
data/elfutils-0.182/tests/dwarf-die-addr-die.c:164:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (name, O_RDONLY);
data/elfutils-0.182/tests/dwarf-getmacros.c:128:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (name, O_RDONLY);
data/elfutils-0.182/tests/dwarf-getstring.c:40:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/dwarf-ranges.c:37:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (name, O_RDONLY);
data/elfutils-0.182/tests/dwarfcfi.c:137:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/dwelfgnucompressed.c:45:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/early-offscn.c:38:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/ecp.c:37:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int infd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/elfcopy.c:79:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fda = open (in, O_RDONLY);
data/elfutils-0.182/tests/elfcopy.c:96:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fdb = open (out, O_RDWR | O_CREAT | O_TRUNC, 0644);
data/elfutils-0.182/tests/elfgetchdr.c:45:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/elfgetzdata.c:53:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/elfputzdata.c:58:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/elfputzdata.c:117:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (orig_buf, d->d_buf, orig_size);
data/elfutils-0.182/tests/elfrdwrnop.c:53:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (name, O_RDWR);
data/elfutils-0.182/tests/elfshphehdr.c:155:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open("/dev/null", O_WRONLY);
data/elfutils-0.182/tests/elfstrmerge.c:167:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/elfstrmerge.c:363:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy (mempcpy (fnew, fname, fname_len), ".XXXXXX");
data/elfutils-0.182/tests/elfstrmerge.c:365:15: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
fdnew = mkstemp (fnew);
data/elfutils-0.182/tests/elfstrmerge.c:370:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fdnew = open (fnew, O_WRONLY | O_CREAT, st.st_mode & ALLPERMS);
data/elfutils-0.182/tests/elfstrtab.c:137:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDWR | O_CREAT | O_TRUNC, 0666);
data/elfutils-0.182/tests/elfstrtab.c:283:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDWR, 0666);
data/elfutils-0.182/tests/elfstrtab.c:352:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY, 0666);
data/elfutils-0.182/tests/emptyfile.c:70:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDWR | O_CREAT | O_TRUNC, 0666);
data/elfutils-0.182/tests/emptyfile.c:128:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDWR, 0666);
data/elfutils-0.182/tests/emptyfile.c:211:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY, 0666);
data/elfutils-0.182/tests/fillfile.c:204:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDWR | O_CREAT | O_TRUNC, 0666);
data/elfutils-0.182/tests/fillfile.c:269:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDWR, 0666);
data/elfutils-0.182/tests/fillfile.c:330:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (data->d_buf, new_data, 5);
data/elfutils-0.182/tests/fillfile.c:350:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY, 0666);
data/elfutils-0.182/tests/get-aranges.c:46:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/get-files.c:37:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/get-lines.c:39:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/get-pubnames.c:74:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/get-units-invalid.c:38:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[i], O_RDONLY);
data/elfutils-0.182/tests/get-units-split.c:38:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[i], O_RDONLY);
data/elfutils-0.182/tests/getphdrnum.c:23:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/getsrc_die.c:36:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/newdata.c:246:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDWR|O_CREAT|O_TRUNC, 00666);
data/elfutils-0.182/tests/newdata.c:271:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/newdata.c:301:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/newdata.c:353:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/newfile.c:60:8: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
fd = mkstemp (fname);
data/elfutils-0.182/tests/newscn.c:43:8: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
fd = mkstemp (name);
data/elfutils-0.182/tests/next-files.c:38:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/next-lines.c:39:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/next_cfi.c:104:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (file, O_RDONLY);
data/elfutils-0.182/tests/rdwrmmap.c:31:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[1], O_RDWR);
data/elfutils-0.182/tests/read_unaligned.c:31:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[1];
data/elfutils-0.182/tests/read_unaligned.c:37:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[1];
data/elfutils-0.182/tests/read_unaligned.c:43:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[2];
data/elfutils-0.182/tests/read_unaligned.c:49:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[2];
data/elfutils-0.182/tests/read_unaligned.c:55:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[3];
data/elfutils-0.182/tests/read_unaligned.c:61:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[4];
data/elfutils-0.182/tests/read_unaligned.c:67:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[4];
data/elfutils-0.182/tests/read_unaligned.c:73:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[8];
data/elfutils-0.182/tests/read_unaligned.c:79:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[8];
data/elfutils-0.182/tests/rerequest_tag.c:30:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int i = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/saridx.c:109:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (argv[arg], O_RDONLY);
data/elfutils-0.182/tests/saridx.c:143:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/elfutils-0.182/tests/scnnames.c:42:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/sectiondump.c:48:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/sectiondump.c:63:47: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (handle_section (elf, elf_getscn (elf, atoi (argv[cnt]))) != 0)
data/elfutils-0.182/tests/show-abbrev.c:34:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/show-die-info.c:64:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[30];
data/elfutils-0.182/tests/show-die-info.c:318:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[cnt], O_RDONLY);
data/elfutils-0.182/tests/showptable.c:41:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/showptable.c:90:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[19];
data/elfutils-0.182/tests/strptr.c:48:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/test-elf_cntl_gelf_getshdr.c:70:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[2], O_RDONLY);
data/elfutils-0.182/tests/test-flag-nobits.c:33:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[1], O_RDONLY);
data/elfutils-0.182/tests/typeiter.c:32:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[i], O_RDONLY);
data/elfutils-0.182/tests/typeiter2.c:33:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[i], O_RDONLY);
data/elfutils-0.182/tests/unit-info.c:51:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (argv[i], O_RDONLY);
data/elfutils-0.182/tests/unit-info.c:179:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (argv[i], O_RDONLY);
data/elfutils-0.182/tests/update1.c:41:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDWR | O_CREAT | O_TRUNC, 0666);
data/elfutils-0.182/tests/update2.c:42:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDWR | O_CREAT | O_TRUNC, 0666);
data/elfutils-0.182/tests/update3.c:49:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDWR | O_CREAT | O_TRUNC, 0666);
data/elfutils-0.182/tests/update4.c:53:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDWR | O_CREAT | O_TRUNC, 0666);
data/elfutils-0.182/tests/vendorelf.c:39:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDWR | O_CREAT | O_TRUNC, 0666);
data/elfutils-0.182/tests/vendorelf.c:127:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open (fname, O_RDONLY, 0666);
data/elfutils-0.182/tests/xlate_notes.c:48:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/tests/zstrptr.c:48:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = open (fname, O_RDONLY);
data/elfutils-0.182/backends/sparc_attrs.c:94:23: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
s = strcat (s, ",");
data/elfutils-0.182/debuginfod/debuginfod-client.c:381:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen (s);
data/elfutils-0.182/debuginfod/debuginfod-client.c:391:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (v == NULL || strlen (v) < 2)
data/elfutils-0.182/debuginfod/debuginfod-client.c:458:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(url);
data/elfutils-0.182/debuginfod/debuginfod-client.c:521:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen ((const char *) build_id) > MAX_BUILD_ID_BYTES*2))
data/elfutils-0.182/debuginfod/debuginfod-client.c:577:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (cache_var != NULL && strlen (cache_var) > 0)
data/elfutils-0.182/debuginfod/debuginfod-client.c:591:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (xdg != NULL && strlen (xdg) > 0)
data/elfutils-0.182/debuginfod/debuginfod-client.c:736:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(server_url) > 1 && server_url[strlen(server_url)-1] == '/')
data/elfutils-0.182/debuginfod/debuginfod-client.c:736:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(server_url) > 1 && server_url[strlen(server_url)-1] == '/')
data/elfutils-0.182/debuginfod/debuginfod.cxx:123:4: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
equal(haystack.end()-needle.size(), haystack.end(),
data/elfutils-0.182/lib/eu-config.h:140:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
({ const char *_s = (str); obstack_copy0 (ob, _s, strlen (_s)); })
data/elfutils-0.182/lib/fixedsizehash.h:179:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HASHTYPE hval = HASHFCT (str, len ?: strlen (str));
data/elfutils-0.182/lib/fixedsizehash.h:230:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HASHTYPE hval = HASHFCT (str, len ?: strlen (str));
data/elfutils-0.182/lib/fixedsizehash.h:250:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
HASHTYPE hval = HASHFCT (str, len ?: strlen (str));
data/elfutils-0.182/lib/xstrdup.c:41:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strcpy (xmalloc (strlen (string) + 1), string);
data/elfutils-0.182/libasm/asm_addstrz.c:72:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen (str) + 1;
data/elfutils-0.182/libasm/asm_begin.c:135:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = fname != NULL ? strlen (fname) : 0;
data/elfutils-0.182/libasm/asm_newscn.c:163:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t scnname_len = strlen (scnname) + 1;
data/elfutils-0.182/libasm/asm_newscngrp.c:48:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t grpname_len = strlen (grpname) + 1;
data/elfutils-0.182/libasm/asm_newsym.c:74:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t name_len = strlen (name) + 1;
data/elfutils-0.182/libcpu/i386_disasm.c:299:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t _len0 = strlen (_str0); \
data/elfutils-0.182/libcpu/i386_disasm.c:927:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
non_printing += strlen (color_off);
data/elfutils-0.182/libcpu/i386_disasm.c:962:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
non_printing += strlen (color_off);
data/elfutils-0.182/libcpu/i386_disasm.c:995:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
non_printing += strlen (color_off);
data/elfutils-0.182/libcpu/i386_disasm.c:1032:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
non_printing += strlen (color_off);
data/elfutils-0.182/libcpu/i386_disasm.c:1101:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
non_printing += strlen (color_off);
data/elfutils-0.182/libcpu/i386_lex.c:933:14: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
(c = getc( yyin )) != EOF && c != '\n'; ++n ) \
data/elfutils-0.182/libcpu/i386_lex.c:1995:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return yy_scan_bytes( yystr, (int) strlen(yystr) );
data/elfutils-0.182/libcpu/i386_parse.c:985:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
# define yystrlen strlen
data/elfutils-0.182/libcpu/i386_parse.c:2292:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (last_str->str)
data/elfutils-0.182/libcpu/i386_parse.c:2293:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen (runp->str) + 1);
data/elfutils-0.182/libcpu/i386_parse.c:2305:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define obstack_grow_str(ob, str) obstack_grow (ob, str, strlen (str))
data/elfutils-0.182/libcpu/i386_parse.c:2622:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
off_op_str += strlen (str) + 1;
data/elfutils-0.182/libcpu/i386_parse.c:2895:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mnemonic_maxlen = MAX (mnemonic_maxlen, strlen ((char *) cp));
data/elfutils-0.182/libcpu/i386_parse.c:2896:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mnemonic_minlen = MIN (mnemonic_minlen, strlen ((char *) cp));
data/elfutils-0.182/libcpu/i386_parse.c:3026:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strsnlen[i].len = strlen (strsnlen[i].str);
data/elfutils-0.182/libcpu/i386_parse.c:3178:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (best_prefix), best_prefix, best_prefix_bits);
data/elfutils-0.182/libcpu/i386_parse.c:3184:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (best_suffix), best_suffix);
data/elfutils-0.182/libcpu/i386_parse.c:3200:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l = strlen (mne);
data/elfutils-0.182/libcpu/riscv_disasm.c:58:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t _len0 = strlen (_str0); \
data/elfutils-0.182/libcpu/riscv_disasm.c:667:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat (mnebuf, "w");
data/elfutils-0.182/libcpu/riscv_disasm.c:1028:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy (stpcpy (mnebuf, mne), "z");
data/elfutils-0.182/libcpu/riscv_disasm.c:1432:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
non_printing += strlen (color_off);
data/elfutils-0.182/libcpu/riscv_disasm.c:1452:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
non_printing += strlen (color_off);
data/elfutils-0.182/libdw/dwarf_begin_elf.c:122:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dbglen = strlen (dwarf_scnnames[cnt]);
data/elfutils-0.182/libdw/dwarf_begin_elf.c:123:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t scnlen = strlen (scnname);
data/elfutils-0.182/libdw/dwarf_getalt.c:60:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = strlen (dir);
data/elfutils-0.182/libdw/dwarf_getalt.c:61:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t filelen = strlen (file);
data/elfutils-0.182/libdw/dwarf_getalt.c:76:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t debugdirlen = strlen (debugdir);
data/elfutils-0.182/libdw/dwarf_getalt.c:77:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = dir != NULL ? strlen (dir) : 0;
data/elfutils-0.182/libdw/dwarf_getalt.c:78:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t filelen = strlen (file);
data/elfutils-0.182/libdw/dwarf_getscopevar.c:66:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen (file);
data/elfutils-0.182/libdw/dwarf_getscopevar.c:92:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t match_file_len = match_file == NULL ? 0 : strlen (match_file);
data/elfutils-0.182/libdw/dwarf_getsrclines.c:391:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
comp_dir_elem.len = comp_dir ? strlen (comp_dir) : 0,
data/elfutils-0.182/libdw/dwarf_getsrclines.c:433:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
dirarray[n].len = strlen (dir);
data/elfutils-0.182/libdw/dwarf_getsrclines.c:519:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert (strlen (new_file->info.name)
data/elfutils-0.182/libdw/dwarf_getsrclines.c:613:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fnamelen = strlen (fname);
data/elfutils-0.182/libdw/dwarf_getsrclines.c:641:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert (strlen (new_file->info.name)
data/elfutils-0.182/libdwelf/dwelf_strtab.c:284:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strtab_add (st, str, strlen (str) + 1);
data/elfutils-0.182/libdwfl/dwfl_build_id_find_elf.c:94:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dirlen = strlen (dir);
data/elfutils-0.182/libdwfl/dwfl_module_getdwarf.c:1165:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (sname, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/libdwfl/dwfl_module_getdwarf.c:1248:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (sname, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/libdwfl/find-debuginfo.c:184:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen (file_basename);
data/elfutils-0.182/libdwfl/link_map.c:373:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen (name1) + 1);
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:588:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ssize_t n = read (fd, buf.data, sizeof buf);
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:810:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namelen = strlen (module_name);
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:953:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namelen = strlen (secname);
data/elfutils-0.182/libdwfl/linux-kernel-modules.c:1018:6: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
&& sscanf (line, "%128s %lu %*s %*s %*s %" PRIx64 " %*s\n",
data/elfutils-0.182/libdwfl/linux-proc-maps.c:338:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ssize_t nread = read (fd, data, maxread);
data/elfutils-0.182/libdwfl/relocate.c:240:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (sname, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/libdwfl/relocate.c:521:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (tname, ".zdebug", strlen ("zdebug")) == 0)
data/elfutils-0.182/libdwfl/relocate.c:542:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (sname, ".zdebug", strlen ("zdebug")) == 0)
data/elfutils-0.182/libebl/eblmachineflagname.c:71:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
machstrlen = strlen (machstr) + 1;
data/elfutils-0.182/libebl/eblobjnote.c:142:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (ELF_NOTE_GNU_BUILD_ATTRIBUTE_PREFIX)) == 0
data/elfutils-0.182/libebl/eblobjnote.c:197:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen (ELF_NOTE_GNU_BUILD_ATTRIBUTE_PREFIX));
data/elfutils-0.182/libebl/eblobjnote.c:236:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
value += strlen (&data[1]) + 1;
data/elfutils-0.182/libebl/eblobjnotetypename.c:83:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (ELF_NOTE_GNU_BUILD_ATTRIBUTE_PREFIX)) == 0)
data/elfutils-0.182/libebl/eblopenbackend.c:619:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
|| (strncmp (name, ".zdebug", strlen (".zdebug")) == 0
data/elfutils-0.182/libebl/eblopenbackend.c:621:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
|| (strncmp (name, ".gnu.debuglto_", strlen (".gnu.debuglto_")) == 0
data/elfutils-0.182/src/ar.c:160:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen (argv[1]) + 1;
data/elfutils-0.182/src/ar.c:758:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char tmpfname[strlen (arfname) + 7];
data/elfutils-0.182/src/ar.c:989:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
remember_long_name (newp, arhdr->ar_name, strlen (arhdr->ar_name));
data/elfutils-0.182/src/ar.c:1004:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char tmpfname[strlen (arfname) + 7];
data/elfutils-0.182/src/ar.c:1168:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
remember_long_name (newp, arhdr->ar_name, strlen (arhdr->ar_name));
data/elfutils-0.182/src/ar.c:1250:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t bnamelen = strlen (bname);
data/elfutils-0.182/src/ar.c:1396:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char tmpfname[strlen (arfname) + 7];
data/elfutils-0.182/src/ar.c:1468:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t namelen = strlen (all->name);
data/elfutils-0.182/src/arlib.c:201:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t symname_len = strlen (symname) + 1;
data/elfutils-0.182/src/elfclassify.c:340:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (section_name, debug_prefix, strlen (debug_prefix)) == 0
data/elfutils-0.182/src/elfclassify.c:342:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (zdebug_prefix)) == 0)
data/elfutils-0.182/src/elfclassify.c:830:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (fwrite (current_path, strlen (current_path) + 1, 1, stdout) < 1)
data/elfutils-0.182/src/elfcompress.c:481:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strncmp (sname, ".zdebug", strlen (".zdebug")) != 0)
data/elfutils-0.182/src/elfcompress.c:493:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& strncmp (sname, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/src/elfcompress.c:506:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (".zdebug")) == 0)
data/elfutils-0.182/src/elfcompress.c:509:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (".debug")) == 0)))
data/elfutils-0.182/src/elfcompress.c:515:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t slen = strlen (sname);
data/elfutils-0.182/src/elfcompress.c:576:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname);
data/elfutils-0.182/src/elfcompress.c:729:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strncmp (sname, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/src/elfcompress.c:743:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (sname, ".debug", strlen (".debug")) == 0)
data/elfutils-0.182/src/elfcompress.c:790:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (sname, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/src/elfcompress.c:802:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (sname, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/src/elfcompress.c:933:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strncmp (name, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/src/elfcompress.c:1079:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strncmp (shstrtab_name, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/src/elfcompress.c:1221:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (".zdebug")) == 0)
data/elfutils-0.182/src/elflint.c:249:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prefix_len = prefix == NULL ? 0 : strlen (prefix);
data/elfutils-0.182/src/elflint.c:250:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname) + 1;
data/elfutils-0.182/src/elflint.c:252:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char new_suffix[(suffix == NULL ? 0 : strlen (suffix)) + 2];
data/elfutils-0.182/src/elflint.c:260:6: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy (stpcpy (new_suffix, suffix), ")");
data/elfutils-0.182/src/elflint.c:2808:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t ncopy = MIN (len - 1, strlen (known_flags[cnt].name));
data/elfutils-0.182/src/elflint.c:4365:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (ELF_NOTE_GNU_BUILD_ATTRIBUTE_PREFIX)) == 0)
data/elfutils-0.182/src/findtextrel.c:189:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname);
data/elfutils-0.182/src/findtextrel.c:190:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t rootdir_len = strlen (rootdir);
data/elfutils-0.182/src/findtextrel.c:365:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t debuginfo_rootlen = strlen (debuginfo_root);
data/elfutils-0.182/src/nm.c:413:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname) + 1;
data/elfutils-0.182/src/nm.c:414:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prefix_len = prefix != NULL ? strlen (prefix) : 0;
data/elfutils-0.182/src/nm.c:416:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t suffix_len = suffix != NULL ? strlen (suffix) : 0;
data/elfutils-0.182/src/nm.c:775:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
print_file_name ? (int) strlen (fullname) + 1: 0, "",
data/elfutils-0.182/src/nm.c:861:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (bind != NULL && strncmp (bind, "GNU_", strlen ("GNU_")) == 0)
data/elfutils-0.182/src/nm.c:862:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bind += strlen ("GNU_");
data/elfutils-0.182/src/nm.c:1387:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
longest_name = MAX ((size_t) longest_name, strlen (symstr));
data/elfutils-0.182/src/nm.c:1535:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prefix_len = prefix == NULL ? 0 : strlen (prefix);
data/elfutils-0.182/src/nm.c:1536:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t suffix_len = suffix == NULL ? 0 : strlen (suffix);
data/elfutils-0.182/src/nm.c:1537:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname) + 1;
data/elfutils-0.182/src/objdump.c:290:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname) + 1;
data/elfutils-0.182/src/objdump.c:291:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prefix_len = prefix != NULL ? strlen (prefix) : 0;
data/elfutils-0.182/src/objdump.c:293:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t suffix_len = suffix != NULL ? strlen (suffix) : 0;
data/elfutils-0.182/src/objdump.c:767:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prefix_len = prefix == NULL ? 0 : strlen (prefix);
data/elfutils-0.182/src/objdump.c:768:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t suffix_len = suffix == NULL ? 0 : strlen (suffix);
data/elfutils-0.182/src/objdump.c:769:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname) + 1;
data/elfutils-0.182/src/ranlib.c:216:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char tmpfname[strlen (fname) + 7];
data/elfutils-0.182/src/readelf.c:679:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int tmplen = strlen (tmpdir) + sizeof (suffix);
data/elfutils-0.182/src/readelf.c:874:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *fnname = alloca (strlen (fname) + strlen (elf_input_section) + 2);
data/elfutils-0.182/src/readelf.c:874:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *fnname = alloca (strlen (fname) + strlen (elf_input_section) + 2);
data/elfutils-0.182/src/readelf.c:1173:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (buf, gettext (" ([0] not available)"), sizeof (buf));
data/elfutils-0.182/src/readelf.c:1334:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strncmp(".zdebug", sname, strlen (".zdebug")) == 0)
data/elfutils-0.182/src/readelf.c:2685:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy (endp, gettext ("| <unknown>"), buf + sizeof (buf) - endp);
data/elfutils-0.182/src/readelf.c:11192:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t flen = strlen (fname);
data/elfutils-0.182/src/readelf.c:11414:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t dbglen = strlen (debug_sections[n].name);
data/elfutils-0.182/src/readelf.c:11415:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t scnlen = strlen (name);
data/elfutils-0.182/src/readelf.c:11476:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen (name);
data/elfutils-0.182/src/readelf.c:12134:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen (end->name);
data/elfutils-0.182/src/readelf.c:12428:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen (ELF_NOTE_GNU_BUILD_ATTRIBUTE_PREFIX)) == 0;
data/elfutils-0.182/src/readelf.c:12432:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
? strlen (print_name) : nhdr.n_namesz);
data/elfutils-0.182/src/readelf.c:12608:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strncmp (name, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/src/readelf.c:12659:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
else if (strncmp (name, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/src/size.c:343:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prefix_len = prefix == NULL ? 0 : strlen (prefix);
data/elfutils-0.182/src/size.c:344:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname) + 1;
data/elfutils-0.182/src/size.c:413:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxlen = MAX (maxlen, (int) strlen (name));
data/elfutils-0.182/src/size.c:639:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prefix_len = prefix == NULL ? 0 : strlen (prefix);
data/elfutils-0.182/src/size.c:640:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname) + 1;
data/elfutils-0.182/src/strings.c:317:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t curlen = *unprinted == NULL ? 0 : strlen (*unprinted);
data/elfutils-0.182/src/strings.c:402:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t curlen = *unprinted == NULL ? 0 : strlen (*unprinted);
data/elfutils-0.182/src/strings.c:513:39: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ssize_t n = TEMP_FAILURE_RETRY (read (fd, buf + ntrailer,
data/elfutils-0.182/src/strip.c:489:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp (tname, ".zdebug", strlen ("zdebug")) == 0)
data/elfutils-0.182/src/strip.c:928:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prefix_len = prefix == NULL ? 0 : strlen (prefix);
data/elfutils-0.182/src/strip.c:929:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname) + 1;
data/elfutils-0.182/src/strip.c:1013:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t debug_fname_len = strlen (debug_fname);
data/elfutils-0.182/src/strip.c:1747:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
off_t crc_offset = strlen (debug_basename) + 1;
data/elfutils-0.182/src/strip.c:2703:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t prefix_len = prefix == NULL ? 0 : strlen (prefix);
data/elfutils-0.182/src/strip.c:2704:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname) + 1;
data/elfutils-0.182/tests/addsections.c:117:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen (".extra") + 1
data/elfutils-0.182/tests/addsections.c:118:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen (".old_shstrtab") + 1);
data/elfutils-0.182/tests/addsections.c:127:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t old_shstrtab_idx = extra_idx + strlen (".extra") + 1;
data/elfutils-0.182/tests/addsections.c:157:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bufsz = strlen ("extra") + 1;
data/elfutils-0.182/tests/allregs.c:122:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
assert (strlen (regname) < sizeof state->info[regno].name);
data/elfutils-0.182/tests/asm-tst2.c:225:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen ("one") + 1
data/elfutils-0.182/tests/asm-tst2.c:226:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen ("two") + 1
data/elfutils-0.182/tests/asm-tst2.c:227:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen ("three") + 1)))
data/elfutils-0.182/tests/asm-tst2.c:233:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((cnt == 1 && shdr->sh_size != (strlen ("one") + 1
data/elfutils-0.182/tests/asm-tst2.c:234:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen ("two") + 1
data/elfutils-0.182/tests/asm-tst2.c:235:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
+ strlen ("three") + 1))
data/elfutils-0.182/tests/backtrace-data.c:115:12: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int c = fgetc (f);
data/elfutils-0.182/tests/dwelfgnucompressed.c:85:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(".zdebug", sname, strlen (".zdebug")) == 0)
data/elfutils-0.182/tests/elfgetchdr.c:102:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncmp(".zdebug", sname, strlen (".zdebug")) == 0)
data/elfutils-0.182/tests/elfputzdata.c:86:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
|| strncmp (name, ".zdebug", strlen (".zdebug")) == 0)
data/elfutils-0.182/tests/elfstrmerge.c:359:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t fname_len = strlen (fname);
data/elfutils-0.182/tests/elfstrtab.c:110:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen (str) + 1;
data/elfutils-0.182/tests/emptyfile.c:43:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen (str) + 1;
data/elfutils-0.182/tests/fillfile.c:43:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t size = strlen (str) + 1;
data/elfutils-0.182/tests/strptr.c:82:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
off += strlen (str) + 1;
data/elfutils-0.182/tests/zstrptr.c:96:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
off += strlen (str) + 1;
ANALYSIS SUMMARY:
Hits = 992
Lines analyzed = 159884 in approximately 4.59 seconds (34823 lines/second)
Physical Source Lines of Code (SLOC) = 109912
Hits@level = [0] 2064 [1] 181 [2] 599 [3] 17 [4] 194 [5] 1
Hits@level+ = [0+] 3056 [1+] 992 [2+] 811 [3+] 212 [4+] 195 [5+] 1
Hits/KSLOC@level+ = [0+] 27.8041 [1+] 9.0254 [2+] 7.37863 [3+] 1.92882 [4+] 1.77415 [5+] 0.00909819
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.