Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cjson/test.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/AdditionalMessage.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/Asserter.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/BriefTestProgressListener.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/CompilerOutputter.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/Exception.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/Message.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/Outputter.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/Portability.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/Protector.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/SourceLine.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/SynchronizedObject.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/Test.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestAssert.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestCaller.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestCase.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestComposite.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestFailure.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestFixture.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestLeaf.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestListener.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestPath.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestResult.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestResultCollector.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestRunner.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestSuccessListener.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestSuite.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TextOutputter.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TextTestProgressListener.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TextTestResult.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TextTestRunner.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/XmlOutputter.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/XmlOutputterHook.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/config-auto.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/config/CppUnitApi.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/config/SelectDllLoader.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/config/SourcePrefix.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/config/config-bcb5.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/config/config-evc4.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/config/config-mac.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/config/config-msvc6.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/AutoRegisterSuite.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/ExceptionTestCaseDecorator.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/HelperMacros.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/Orthodox.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/RepeatedTest.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/TestCaseDecorator.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/TestDecorator.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/TestFactory.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/TestFactoryRegistry.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/TestFixtureFactory.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/TestNamer.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/TestSetUp.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/TestSuiteBuilderContext.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/TestSuiteFactory.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/extensions/TypeInfoHelper.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/plugin/DynamicLibraryManager.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/plugin/DynamicLibraryManagerException.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/plugin/PlugInManager.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/plugin/PlugInParameters.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/plugin/TestPlugIn.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/plugin/TestPlugInDefaultImpl.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/FloatingPoint.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/tools/Algorithm.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/tools/StringHelper.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/tools/StringTools.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/tools/XmlDocument.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/tools/XmlElement.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/ui/text/TestRunner.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/ui/text/TextTestRunner.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/AdditionalMessage.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/Asserter.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/BriefTestProgressListener.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/CompilerOutputter.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/DefaultProtector.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/DefaultProtector.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/DllMain.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/DynamicLibraryManager.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/DynamicLibraryManagerException.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/Exception.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/Message.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/PlugInManager.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/PlugInParameters.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/Protector.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/ProtectorChain.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/ProtectorChain.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/ProtectorContext.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/RepeatedTest.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/ShlDynamicLibraryManager.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/SourceLine.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/StringTools.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/SynchronizedObject.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/Test.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestAssert.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestCase.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestCaseDecorator.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestComposite.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestDecorator.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestFactoryRegistry.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestFailure.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestLeaf.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestNamer.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestPath.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestPlugInDefaultImpl.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestResult.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestResultCollector.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestRunner.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestSetUp.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestSuccessListener.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestSuite.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestSuiteBuilderContext.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TextOutputter.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TextTestProgressListener.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TextTestResult.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TextTestRunner.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TypeInfoHelper.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/UnixDynamicLibraryManager.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/Win32DynamicLibraryManager.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/XmlDocument.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/XmlElement.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/XmlOutputter.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/XmlOutputterHook.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/bin/flite_hts_engine.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_alloc.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_args.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_audio.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_cart.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_endian.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_error.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_features.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_ffeatures.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_file.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_hrg.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_item.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_lexicon.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_lts.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_lts_rewrites.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_math.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_phoneset.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_regex.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_relation.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_sigpr.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_socket.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_ss.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_string.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_sts.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_synth.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_tokenstream.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_track.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_utt_utils.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_utterance.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_val.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_val_const.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_val_defs.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_viterbi.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_voice.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_wave.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/flite.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmu_us_kal/cmu_us_kal.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex_data.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex_data_raw.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex_entries.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex_entries_huff_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex_num_bytes.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex_phones_huff_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lts_model.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lts_model.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lts_rules.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_postlex.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_aswd.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_expand.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_ffeatures.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_ffeatures.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_gpos.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_int_accent_cart.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_int_accent_cart.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_int_tone_cart.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_int_tone_cart.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_nums_cart.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_nums_cart.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_phoneset.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_phrasing_cart.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_phrasing_cart.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_pos_cart.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_pos_cart.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_regexes.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_text.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_text.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/usenglish.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/usenglish.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/hrg/cst_ffeature.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/hrg/cst_item.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/hrg/cst_relation.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/hrg/cst_utterance.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/lexicon/cst_lexicon.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/lexicon/cst_lts.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/regex/cst_regex.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/regex/cst_regex_defs.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/regex/regexp.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/stats/cst_cart.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/synth/cst_ffeatures.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/synth/cst_phoneset.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/synth/cst_synth.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/synth/cst_utt_utils.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/synth/cst_voice.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/synth/flite.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_alloc.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_error.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_features.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_string.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_tokenstream.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_val.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_val_const.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_val_user.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/include/flite_hts_engine.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/fonts/fnt.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/fonts/fnt.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/fonts/fntBitmap.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/fonts/fntLocal.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/fonts/fntTXF.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/hidapi/hidapi.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/hidapi/hidparse.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/hidparser/hidparse.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/hidparser/testparse.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/linux/hid.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/mac/hid.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_alsa.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_alsa.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_encode.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_file.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_file.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_openal.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_openal.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_portaudio.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_portaudio.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_alaw.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_alaw.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_gsm.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_gsm.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ilbc.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ilbc.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_speex.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_speex.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_theora.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_theora.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ulaw.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ulaw.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/inc/config.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/inc/gsm.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/inc/private.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/inc/proto.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/inc/unproto.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/add.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/code.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/debug.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/decode.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/gsm_create.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/gsm_decode.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/gsm_destroy.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/gsm_encode.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/gsm_explode.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/gsm_implode.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/gsm_option.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/gsm_print.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/k6opt.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/long_term.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/lpc.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/preprocess.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/rpe.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/short_term.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/answer.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/busy.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/dialtone.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/frame.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax-client.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c
Parsing failed to find end of parameter list; semicolon terminated it in (iax_errstr, sizeof(iax_errstr),
#ifdef DEBUG_SUPPORT
#ifdef DEBUG_DEFAULT
static int debug = 1;
#else
static int debug = 0;
#endif
void iax_enable_debug(void)
{
debug = 1;
}
void iax_disable_deb
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/jitterbuf.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/jitterbuf.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/md5.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/md5.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/ring10.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/ringtone.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/winiphone.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/winpoop.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/arch.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/bits.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/cb_search.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/cb_search.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/cb_search_arm4.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/cb_search_sse.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_10_16_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_10_32_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_20_32_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_5_256_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_5_64_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_8_128_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/filters.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/filters.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/filters_arm4.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/filters_sse.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/fixed_arm4.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/fixed_arm5e.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/fixed_debug.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/fixed_generic.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/gain_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/gain_table_lbr.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/hexc_10_32_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/hexc_table.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/high_lsp_tables.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_bits.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_callbacks.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_config_types.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_echo.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_header.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_jitter.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_noglobals.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_preprocess.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_stereo.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_types.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/jitter.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lbr_48k_tables.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lpc.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lpc.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lsp.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lsp.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lsp_tables_nb.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/ltp.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/ltp.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/ltp_arm4.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/ltp_sse.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/math_approx.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/math_approx.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/mdf.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/medfilter.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/medfilter.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/misc.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/misc.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/modes.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/modes.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/modes_noglobals.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/nb_celp.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/nb_celp.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/preprocess.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/quant_lsp.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/quant_lsp.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/sb_celp.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/sb_celp.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/smallft.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/smallft.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/speex.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/speex_callbacks.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/speex_header.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/stack_alloc.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/stereo.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testdenoise.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testecho.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc_uwb.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc_wb.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/vbr.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/vbr.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/vq.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/vq.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/vq_arm4.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/macosx/Prefixes.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/example/devs.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/example/sine.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/AsioDeviceAdapter.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/BlockingStream.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/CFunCallbackStream.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/CallbackInterface.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/CallbackStream.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/CppFunCallbackStream.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/Device.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/DirectionSpecificStreamParameters.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/Exception.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/HostApi.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/InterfaceCallbackStream.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/MemFunCallbackStream.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/Stream.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/StreamParameters.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/System.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/SystemDeviceIterator.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/SystemHostApiIterator.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/include/pa_asio.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/include/pa_linux_alsa.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/include/pa_mac_core.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/include/pa_win_wmme.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/include/portaudio.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pa_tests/patest_in_overflow.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/pablio.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/pablio.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/ringbuffer.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/ringbuffer.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/test_rw.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/test_rw_echo.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/test_w_saw.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/test_w_saw8.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_allocation.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_allocation.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_converters.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_converters.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_cpuload.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_cpuload.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_dither.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_dither.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_endianness.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_front.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_hostapi.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_process.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_process.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_skeleton.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_stream.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_stream.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_trace.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_trace.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_types.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_util.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/asio/iasiothiscallresolver.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/asio/iasiothiscallresolver.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/asio/pa_asio.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/pa_mac_core.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/pa_mac_core_blocking.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/pa_mac_core_blocking.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/pa_mac_core_internal.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/pa_mac_core_utilities.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/pa_mac_core_utilities.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/ringbuffer.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/ringbuffer.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds_dynlink.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds_dynlink.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/recplay.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wasapi/pa_win_wasapi.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/os/mac_osx/pa_mac_hostapis.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/os/unix/pa_unix_hostapis.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/os/unix/pa_unix_util.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/os/unix/pa_unix_util.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/os/win/pa_win_hostapis.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/os/win/pa_win_util.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/os/win/pa_x86_plain_converters.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/os/win/pa_x86_plain_converters.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_dither_calc.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/paqa_devs.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/paqa_errs.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_ringmix.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_convert.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_dual.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_multi_in.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_multi_out.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_record.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_record_reuse.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_sine.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_sine_amp.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_sine_formats.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_srate.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_test1.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/pa_devs.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/pa_fuzz.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/pa_minlat.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest1.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_buffer.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_callbackstop.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_clip.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_dither.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_hang.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_in_overflow.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_latency.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_leftright.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_longsine.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_many.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_maxsines.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_mono.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_mono_asio_channel_select.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_multi_sine.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_out_underflow.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_pink.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_prime.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_read_record.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_read_write_wire.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_record.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_saw.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_sine.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_sine8.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_sine_formats.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_sine_time.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_start_stop.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_stop.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_stop_playout.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_sync.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_toomanysines.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_two_rates.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_underflow.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_wire.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_write_sine.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_write_stop.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_common/portmixer.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_mac/px_mac.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_mac_core/px_mac_core.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_none/px_none.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_tests/px_test.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_unix_oss/px_unix_oss.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_win_wmme/px_win_wmme.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/sox/compand.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/sox/resample.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/sox/sox.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/sox/soxcompat.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/spandsp/plc.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/spandsp/plc.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/unixfuncs.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/video_portvideo.cpp
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/video_portvideo.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/win/iaxclient_dll.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/wince/inttypes.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/winfuncs.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_encode.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/video.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.h
Examining data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsMacOSX.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsNone.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsWindows.cxx
Examining data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c
Examining data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.h
Examining data/flightgear-2020.1.3+dfsg/examples/netfdm/main.cpp
Examining data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.c
Examining data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIAircraft.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIBallistic.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIBase.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AICarrier.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIEscort.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIFlightPlan.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIFlightPlanCreate.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIFlightPlanCreateCruise.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIFlightPlanCreatePushBack.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIGroundVehicle.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIManager.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIMultiplayer.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIShip.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIStatic.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIStorm.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AITanker.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIThermal.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/AIWingman.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/performancedata.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/performancedb.cxx
Examining data/flightgear-2020.1.3+dfsg/src/AIModel/submodel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/ATC/ATISEncoder.cxx
Examining data/flightgear-2020.1.3+dfsg/src/ATC/CommStation.cxx
Examining data/flightgear-2020.1.3+dfsg/src/ATC/CurrentWeatherATISInformationProvider.cxx
Examining data/flightgear-2020.1.3+dfsg/src/ATC/GroundController.cxx
Examining data/flightgear-2020.1.3+dfsg/src/ATC/MetarPropertiesATISInformationProvider.cxx
Examining data/flightgear-2020.1.3+dfsg/src/ATC/atc_mgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/ATC/atcdialog.cxx
Examining data/flightgear-2020.1.3+dfsg/src/ATC/trafficcontrol.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Add-ons/Addon.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Add-ons/AddonManager.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Add-ons/AddonMetadataParser.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Add-ons/AddonResourceProvider.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Add-ons/AddonVersion.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Add-ons/contacts.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Add-ons/exceptions.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Aircraft/AircraftPerformance.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Aircraft/FlightHistory.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Aircraft/controls.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Aircraft/flightrecorder.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Aircraft/initialstate.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Aircraft/replay.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/airport.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/airportdynamicsmanager.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/apt_loader.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/calc_loc.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/dynamicloader.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/dynamics.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/gnnode.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/groundnetwork.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/parking.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/pavement.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/runwaybase.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/runwayprefloader.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/runwayprefs.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/runways.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/sidstar.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Airports/xmlloader.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/analogcomponent.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/autopilot.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/autopilotgroup.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/component.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/digitalcomponent.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/digitalfilter.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/flipflop.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/inputvalue.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/logic.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/pidcontroller.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/pisimplecontroller.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/predictor.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Autopilot/route_mgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Canvas/FGCanvasSystemAdapter.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Canvas/canvas_mgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Canvas/gui_mgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Cockpit/NavDisplay.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Cockpit/agradar.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Cockpit/built_in/FGMagRibbon.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Cockpit/cockpitDisplayManager.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Cockpit/groundradar.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Cockpit/od_gauge.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Cockpit/panel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Cockpit/panel_io.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Cockpit/render_area_2d.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Cockpit/wxradar.cxx
Examining data/flightgear-2020.1.3+dfsg/src/EmbeddedResources/fgrcc.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/atmosphere.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/environment.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/environment_ctrl.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/environment_mgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/ephemeris.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/fgclouds.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/fgmetar.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/gravity.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/magvarmanager.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/metarairportfilter.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/metarproperties.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/precipitation_mgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/presets.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/realwx_ctrl.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/ridge_lift.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Environment/terrainsampler.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/AIWake/AIWakeGroup.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/AIWake/AeroElement.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/AIWake/AircraftMesh.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/AIWake/WakeMesh.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGFDMExec.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGFDMExec.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/JSBSim.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/initialization/FGInitialCondition.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/initialization/FGInitialCondition.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/initialization/FGTrim.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/initialization/FGTrim.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/initialization/FGTrimAxis.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/initialization/FGTrimAxis.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGGroundCallback.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGGroundCallback.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGInputSocket.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGInputSocket.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGInputType.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGInputType.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGModelLoader.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGModelLoader.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputFG.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputFG.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputFile.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputFile.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputSocket.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputSocket.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputTextFile.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputTextFile.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputType.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputType.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGPropertyManager.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGPropertyManager.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGPropertyReader.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGPropertyReader.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGScript.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGScript.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGUDPInputSocket.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGUDPInputSocket.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGXMLElement.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGXMLElement.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGXMLFileRead.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGXMLParse.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGXMLParse.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGfdmSocket.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGfdmSocket.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/string_utilities.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGColumnVector3.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGColumnVector3.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGCondition.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGCondition.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGFunction.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGFunction.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGFunctionValue.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGLocation.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGLocation.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGMatrix33.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGMatrix33.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGModelFunctions.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGModelFunctions.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGParameter.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGParameterValue.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGPropertyValue.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGPropertyValue.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGQuaternion.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGQuaternion.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGRealValue.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGRealValue.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGRungeKutta.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGRungeKutta.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGTable.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGTable.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGTemplateFunc.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/FGTemplateFunc.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/math/LagrangeMultiplier.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGAccelerations.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGAccelerations.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGAerodynamics.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGAerodynamics.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGAircraft.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGAircraft.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGAtmosphere.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGAtmosphere.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGAuxiliary.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGAuxiliary.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGBuoyantForces.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGBuoyantForces.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGExternalForce.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGExternalForce.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGExternalReactions.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGExternalReactions.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGFCS.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGFCS.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGFCSChannel.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGGasCell.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGGasCell.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGGroundReactions.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGGroundReactions.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGInertial.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGInertial.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGInput.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGInput.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGLGear.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGLGear.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGMassBalance.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGMassBalance.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGModel.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGModel.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGOutput.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGOutput.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGPropagate.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGPropagate.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGPropulsion.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGPropulsion.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGSurface.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGSurface.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/atmosphere/FGStandardAtmosphere.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/atmosphere/FGStandardAtmosphere.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/atmosphere/FGWinds.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/atmosphere/FGWinds.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGAccelerometer.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGAccelerometer.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGActuator.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGActuator.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGAngles.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGAngles.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGDeadBand.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGDeadBand.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGDistributor.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGDistributor.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGFCSComponent.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGFCSComponent.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGFCSFunction.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGFCSFunction.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGFilter.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGFilter.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGGain.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGGain.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGGyro.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGGyro.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGKinemat.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGKinemat.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGLinearActuator.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGLinearActuator.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGMagnetometer.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGMagnetometer.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGPID.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGPID.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGSensor.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGSensor.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGSensorOrientation.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGSummer.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGSummer.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGSwitch.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGSwitch.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGWaypoint.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/flight_control/FGWaypoint.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGElectric.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGElectric.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGEngine.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGEngine.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGForce.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGNozzle.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGNozzle.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGPiston.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGPiston.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGPropeller.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGPropeller.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGRocket.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGRocket.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGRotor.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGRotor.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGTank.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGTank.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGThruster.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGThruster.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGTransmission.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGTransmission.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGTurbine.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGTurbine.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGTurboProp.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGTurboProp.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/propulsion/FGForce.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/JSBSim.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/IO360.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/LaRCsim.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/LaRCsimIC.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/atmos_62.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/atmos_62.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/basic_aero.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/basic_aero.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/basic_engine.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/basic_gear.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/basic_init.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/basic_init.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_aero.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_aero.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_engine.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_gear.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_init.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_init.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_main.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/cherokee_aero.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/cherokee_engine.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/cherokee_gear.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/cherokee_init.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/default_model_routines.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/default_model_routines.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_accel.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_accel.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_aux.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_aux.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_cockpit.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_constants.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_generic.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_geodesy.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_geodesy.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_gravity.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_gravity.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_matrix.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_matrix.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_model.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_model.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_sim_control.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_step.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_step.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_sym.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_types.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/mymain.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/navion_aero.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/navion_engine.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/navion_gear.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/navion_init.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/navion_init.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/uiuc_aero.c
Examining data/flightgear-2020.1.3+dfsg/src/FDM/NullFDM.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/SP/ACMS.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/SP/ADA.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/SP/AISim.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/SP/AISim.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/SP/Balloon.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/SP/Balloon.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/SP/BalloonSim.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/SP/BalloonSim.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/SP/MagicCarpet.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/TankProperties.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UFO.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_1DdataFileReader.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_1DdataFileReader.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_1Dinterpolation.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_1Dinterpolation.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_2DdataFileReader.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_2DdataFileReader.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_2Dinterpolation.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_2Dinterpolation.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_3Dinterpolation.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_3Dinterpolation.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_aerodeflections.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_aerodeflections.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_aircraft.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_aircraftdir.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_alh_ap.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_alh_ap.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_auto_pilot.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_auto_pilot.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_betaprobe.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_betaprobe.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_drag.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_drag.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_lift.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_lift.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_pitch.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_pitch.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_roll.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_roll.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_sideforce.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_sideforce.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_yaw.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coef_yaw.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coefficients.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_coefficients.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_controlInput.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_controlInput.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_convert.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_convert.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_engine.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_engine.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_find_position.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_find_position.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_flapdata.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_flapdata.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_fog.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_fog.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_gear.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_gear.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_get_flapper.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_get_flapper.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_getwind.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_getwind.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_hh_ap.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_hh_ap.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_ice.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_ice.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_iceboot.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_iceboot.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_iced_nonlin.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_iced_nonlin.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_icing_demo.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_icing_demo.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_initializemaps.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_initializemaps.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_CD.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_CD.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_CL.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_CL.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_CY.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_CY.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_Cm.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_Cm.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_Cn.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_Cn.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_Croll.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_Croll.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_controlSurface.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_controlSurface.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_engine.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_engine.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_fog.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_fog.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_gear.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_gear.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_geometry.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_geometry.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_ice.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_ice.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_init.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_init.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_keyword.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_keyword.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_mass.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_mass.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_misc.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_misc.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record1.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record1.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record2.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record2.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record3.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record3.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record4.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record4.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record5.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record5.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record6.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_map_record6.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_CD.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_CD.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_CL.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_CL.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_CY.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_CY.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_Cm.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_Cm.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_Cn.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_Cn.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_Croll.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_Croll.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_controlSurface.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_controlSurface.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_engine.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_engine.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_fog.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_fog.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_functions.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_functions.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_gear.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_gear.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_geometry.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_geometry.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_ice.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_ice.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_init.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_init.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_mass.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_mass.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_misc.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_misc.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_record.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu_record.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_pah_ap.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_pah_ap.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_parsefile.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_parsefile.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_rah_ap.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_rah_ap.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_recorder.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_recorder.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_warnings_errors.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_warnings_errors.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_wrapper.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_wrapper.h
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Airplane.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Airplane.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Atmosphere.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Atmosphere.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/BodyEnvironment.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/ControlMap.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/ControlMap.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/ElectricEngine.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/ElectricEngine.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Engine.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGGround.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGGround.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Gear.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Gear.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Glue.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Glue.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Ground.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Ground.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Hitch.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Hitch.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Hook.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Hook.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Integrator.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Integrator.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Jet.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Jet.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Launchbar.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Launchbar.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Math.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Model.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Model.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/PistonEngine.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/PistonEngine.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/PropEngine.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/PropEngine.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Propeller.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Propeller.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/RigidBody.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/RigidBody.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotorpart.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotorpart.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/SimpleJet.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/SimpleJet.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Surface.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Surface.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Thruster.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/TurbineEngine.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/TurbineEngine.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Turbulence.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Turbulence.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Vector.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Version.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Version.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Wing.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Wing.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/YASim.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/proptest.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/yasim-common.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/yasim-common.hpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/YASim/yasim-test.cpp
Examining data/flightgear-2020.1.3+dfsg/src/FDM/fdm_shell.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/flight.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/flightProperties.cxx
Examining data/flightgear-2020.1.3+dfsg/src/FDM/groundcache.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/AddOnsController.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/AddonsModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/AircraftModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/AircraftSearchFilterModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/AirportDiagram.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/AirportList.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/BaseDiagram.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/CanvasWidget.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/CarrierDiagram.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/CarriersLocationModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/CatalogListModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/CocoaHelpers.h
Examining data/flightgear-2020.1.3+dfsg/src/GUI/CocoaHelpers_private.h
Examining data/flightgear-2020.1.3+dfsg/src/GUI/DefaultAircraftLocator.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/FGColor.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/FGFontCache.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIMenuBar.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/FGQmlInstance.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/FGQmlPropertyNode.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/FGWindowsMenuBar.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/FavouriteAircraftData.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/FileDialog.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/FlightPlanController.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/HoverArea.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/LaunchConfig.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/LauncherArgumentTokenizer.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/LauncherController.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/LauncherMainWindow.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/LocalAircraftCache.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/LocationController.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/MPServersModel.cpp
Examining data/flightgear-2020.1.3+dfsg/src/GUI/MPServersModel.h
Examining data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/MessageBox.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/ModelDataExtractor.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/MouseCursor.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/NavaidDiagram.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/NavaidSearchModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/PUIFileDialog.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/PathListModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/PathUrlHelper.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/PixmapImageItem.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/PopupWindowTracker.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/PreviewImageItem.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/PropertyItemModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/QQuickDrawable.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/QmlAircraftInfo.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/QmlNavCacheWrapper.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/QmlPositioned.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/QmlRadioButtonHelper.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/QtFileDialog.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/QtLauncher.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/QtMessageBox.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/QtQuickFGCanvasItem.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/RecentAircraftModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/RecentLocationsModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/RouteDiagram.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/ThumbnailImageItem.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/UnitsModel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/WaypointList.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/WindowsFileDialog.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/WindowsMouseCursor.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/dialog.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/fonts.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/gui.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/gui.h
Examining data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/layout-props.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/layout.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/menubar.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/new_gui.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/property_list.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/SetupRootDialog.cxx
Examining data/flightgear-2020.1.3+dfsg/src/GUI/InstallSceneryDialog.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Include/cmdargs.h
Examining data/flightgear-2020.1.3+dfsg/src/Input/FGButton.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/FGCommonInput.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/FGDeviceConfigurationMap.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/FGEventInput.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/FGJoystickInput.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/FGKeyboardInput.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/FGLinuxEventInput.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/FGMouseInput.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/fgjs.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/input.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/js_demo.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/jsinput.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/jsinput.h
Examining data/flightgear-2020.1.3+dfsg/src/Input/jssuper.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Input/jssuper.h
Examining data/flightgear-2020.1.3+dfsg/src/Input/FGHIDEventInput.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/AbstractInstrument.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_dial.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_gauge.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_instrument.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_label.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_ladder.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_misc.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_runway.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_scale.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_tape.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_tbi.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_act.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_alt.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_apt.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_dir.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_fpl.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_int.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nav.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_ndb.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nrst.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_oth.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_set.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_usr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_vor.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/adf.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/airspeed_indicator.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/altimeter.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/attitude_indicator.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/clock.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/commradio.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/dclgps.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/dme.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/gps.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/gsdi.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/gyro.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/heading_indicator.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/heading_indicator_dg.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/heading_indicator_fg.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/inst_vertical_speed_indicator.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/instrument_mgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/kr_87.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/mag_compass.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/marker_beacon.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/mk_viii.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/mrg.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/navradio.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/newnavradio.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/rad_alt.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/rnav_waypt_controller.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/slip_skid_ball.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/tacan.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/tcas.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/transponder.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/turn_indicator.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Instrumentation/vertical_speed_indicator.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/FGInterpolator.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/XLIFFParser.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/bootstrap.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/fg_commands.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/fg_io.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/fg_os_common.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/fg_props.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/fg_scene_commands.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/locale.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/logger.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/main.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/options.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/screensaver_control.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/sentryIntegration.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/util.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/fg_init.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/positioninit.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Main/subsystemFactory.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Model/acmodel.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Model/modelmgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Model/panelnode.cxx
Examining data/flightgear-2020.1.3+dfsg/src/MultiPlayer/MPServerResolver.cxx
Examining data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/MultiPlayer/tiny_xdr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/CacheSchema.h
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/FlightPlan.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/LevelDXML.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/NavDataCache.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/PolyLine.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/PositionedOctree.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/SHPParser.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/airways.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/awynet.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/fixlist.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/markerbeacon.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/navdb.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/navlist.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/navrecord.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/poidb.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/positioned.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/procedure.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/route.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/routePath.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Navaids/waypoint.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/DNSClient.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/HLA/hla.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/HTTPClient.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/SwiftAircraft.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/SwiftAircraft.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/SwiftAircraftManager.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/SwiftAircraftManager.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbuscallbacks.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbusconnection.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbusconnection.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbusdispatcher.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbusdispatcher.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbuserror.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbuserror.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbusmessage.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbusmessage.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbusobject.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbusobject.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbusserver.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/dbusserver.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/plugin.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/plugin.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/service.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/service.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/swift_connection.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/traffic.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Network/Swift/traffic.h
Examining data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/fgcom.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/flarm.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/garmin.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/FlightHistoryUriHandler.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/JsonUriHandler.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/MirrorPropertyTreeWebsocket.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/NavdbUriHandler.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/PkgUriHandler.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/PropertyChangeObserver.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/PropertyChangeWebsocket.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/PropertyUriHandler.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/RunUriHandler.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/ScreenshotUriHandler.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/SimpleDOM.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/httpd.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/http/jsonprops.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/igc.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/joyclient.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/jsclient.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/lfsglass.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/native.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/native_ctrls.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/native_fdm.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/native_gui.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/opengc.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/props.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/protocol.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/pve.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/ray.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/rul.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Radio/antenna.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Radio/radio.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scenery/SceneryPager.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scenery/redout.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scenery/scenery.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scenery/terrain_pgt.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scenery/terrain_stg.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scenery/tilecache.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scenery/tileentry.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scenery/tilemgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/ClipboardFallback.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/ClipboardWindows.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/ClipboardX11.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalAddons.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalAircraft.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalCanvas.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalClipboard.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalCondition.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalHTTP.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalModelData.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalPositioned_cppbind.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSGPath.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalString.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/nasal-props.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalPositioned.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/VoiceSynthesizer.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/audioident.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/beacon.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/fg_fx.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/flitevoice.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/sample_queue.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/soundgenerator.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/soundmanager.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/voice.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Sound/voiceplayer.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Systems/electrical.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Systems/pitot.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Systems/static.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Systems/system_mgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Systems/vacuum.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Time/TimeManager.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Time/bodysolver.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Time/light.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Traffic/SchedFlight.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Traffic/Schedule.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/CameraGroup_compositor.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/CameraGroup_legacy.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/FGEventHandler.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/GraphicsWindowQt5.cpp
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/PUICamera.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/ViewPropertyEvaluator.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/WindowBuilder.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/WindowSystemAdapter.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/fg_os_osgviewer.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/fgviewer.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/renderer_compositor.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/renderer_legacy.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/renderingpipeline.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/splash.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/view.cxx
Examining data/flightgear-2020.1.3+dfsg/src/Viewer/viewmgr.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/FGTestApi/NavDataCache.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/FGTestApi/PrivateAccessorFDM.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/FGTestApi/TestPilot.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/FGTestApi/scene_graph.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/FGTestApi/testGlobals.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/attic/alcinfo.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/attic/est-epsilon.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/attic/gl-info.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/attic/layout-test.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/attic/test-env-map.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/attic/test-gethostname.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/bootstrap.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/dataStore.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/fgCompilerOutputter.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/fgTestListener.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/fgTestRunner.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/formatting.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/logging.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/simgear_tests/canvas/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/simgear_tests/canvas/testCanvas.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/simgear_tests/math/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/simgear_tests/math/test-up.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/simgear_tests/props/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/simgear_tests/props/test_props.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/system_tests/FDM/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/system_tests/FDM/testAeroMesh.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/system_tests/Instrumentation/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/system_tests/Instrumentation/testgps.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/system_tests/Navaids/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/system_tests/Navaids/testnavs.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/testSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Add-ons/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Add-ons/test_AddonManagement.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/FDM/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/FDM/testAeroElement.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/FDM/testYASimAtmosphere.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/FDM/test_ls_matrix.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Input/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Input/test_hidinput.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Instrumentation/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Instrumentation/test_gps.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Instrumentation/test_hold_controller.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Instrumentation/test_navRadio.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Instrumentation/test_rnav_procedures.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Main/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Main/test_autosaveMigration.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Main/test_posinit.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Navaids/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Navaids/test_aircraftPerformance.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Navaids/test_flightplan.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Navaids/test_fpNasal.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Navaids/test_navaids2.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Navaids/test_routeManager.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Scripting/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/Scripting/testNasalSys.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/general/TestSuite.cxx
Examining data/flightgear-2020.1.3+dfsg/test_suite/unit_tests/general/test-mktime.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/GPSsmooth.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG-II.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG_main.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_command.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_main.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_telnet.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/gps_main.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/Modeller/3dconvert.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/Modeller/animassist.c
Examining data/flightgear-2020.1.3+dfsg/utils/Modeller/colours.h
Examining data/flightgear-2020.1.3+dfsg/utils/Modeller/normalmap.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/Modeller/photomodel.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/TerraSync/terrasync.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/demconvert/demconvert.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/AIBVHPager.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/AIEnvironment.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/AIManager.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/AIObject.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/AIPhysics.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/HLAAirVehicle.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/HLAAirVehicleClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/HLAAircraft.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/HLAAircraftClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/HLABaloon.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/HLABaloonClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/HLAMPAircraft.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/HLAMPAircraftClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/HLASceneObject.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/HLASceneObjectClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgai/fgai.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgelev/fgelev.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/ApplicationProperties.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGCroppedTexture.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGDummyTextureLoader.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGFontCache.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGGLApplication.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGGroupLayer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGInstrumentLayer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGLayeredInstrument.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPNGTextureLoader.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanel.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanelApplication.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanelInstrument.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanelProtocol.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanelTransformation.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGRGBTextureLoader.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGSwitchLayer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGTextLayer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGTexturedLayer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/GLES_utils.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/GL_utils.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/main.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgpanel/panel_io.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/WindowData.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/WindowData.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvasconnection.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvasconnection.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvasdisplay.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvasdisplay.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvasitem.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvasitem.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvaspainteddisplay.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvaspainteddisplay.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvastreemodel.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvastreemodel.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/elementdatamodel.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/elementdatamodel.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvaselement.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvaselement.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvasgroup.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvasgroup.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvaspaintcontext.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvaspaintcontext.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvaspath.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvaspath.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvastext.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvastext.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgqcanvasfontcache.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgqcanvasfontcache.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgqcanvasimage.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgqcanvasimage.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgqcanvasimageloader.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgqcanvasimageloader.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgqcanvasmap.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgqcanvasmap.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/jsonutils.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/jsonutils.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/localprop.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/localprop.h
Examining data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/main.cpp
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/Drawable.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLACamera.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLACameraClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLACameraManipulator.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLADrawable.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLADrawableClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAEyeTracker.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAEyeTrackerClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAMPAircraft.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAMPAircraftClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAOrthographicCamera.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAOrthographicCameraClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAPerspectiveCamera.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAPerspectiveCameraClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAPerspectiveViewer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAPerspectiveViewerClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLARenderer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLARendererClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLASceneObject.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLASceneObjectClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAView.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAViewClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAViewer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAViewerClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAViewerFederate.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAWindowDrawable.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/HLAWindowDrawableClass.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/Renderer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/SlaveCamera.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/Viewer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/fgviewer/fgviewer.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/gui/genfonts.c
Examining data/flightgear-2020.1.3+dfsg/utils/js_server/js_server.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/propmerge/propmerge.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/traffic/fgtraffic.cxx
Examining data/flightgear-2020.1.3+dfsg/utils/xmlgrep/generic-protocol-analyse.c
Examining data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c
FINAL RESULTS:
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_sine_amp.c:134:9: [5] (buffer) gets:
Does not check for buffer overflows (CWE-120, CWE-20). Use fgets() instead.
gets( pad );
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:396:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ptr,entries[i]);ptr+=strlen(entries[i]);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:495:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ptr,names[i]);ptr+=strlen(names[i]);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:497:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ptr,entries[i]);ptr+=strlen(entries[i]);
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_file.h:145:21: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define cst_sprintf sprintf
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_ffeatures.c:316:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(syl_vowel_str,item_name(p));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_text.c:618:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(&aaa[cst_strlen(name)-cst_strlen(p)],p+1);
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/regex/regexp.c:1283:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
(void) strcat(buf, p);
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_error.c:102:10: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
rv = vfprintf(stderr, fmt, args);
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:97:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(seg_pp, ffeature_string(item, "p.p.name"));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:98:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(seg_p, ffeature_string(item, "p.name"));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:99:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(seg_c, ffeature_string(item, "name"));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:100:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(seg_n, ffeature_string(item, "n.name"));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:101:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(seg_nn, ffeature_string(item, "n.n.name"));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:104:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(endtone, ffeature_string(item, "R:SylStructure.parent.parent.R:Phrase.parent.daughtern.R:SylStructure.daughtern.endtone"));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:119:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(label, "%s^%s-%s+%s=%s@x_x/A:%d_%d_%d/B:x-x-x@x-x&x-x#x-x$x-x!x-x;x-x|x/C:%d+%d+%d/D:%s_%d/E:x+x@x+x&x+x#x+x/F:%s_%d/G:%d_%d/H:x=x^%d=%d|%s/I:%d=%d/J:%d+%d-%d", strcmp(seg_pp, "0") == 0 ? "x" : seg_pp, strcmp(seg_p, "0") == 0 ? "x" : seg_p, seg_c, strcmp(seg_n, "0") == 0 ? "x" : seg_n, strcmp(seg_nn, "0") == 0 ? "x" : seg_nn, ffeature_int(item, "p.R:SylStructure.parent.R:Syllable.stress"), ffeature_int(item, "p.R:SylStructure.parent.R:Syllable.accented"), ffeature_int(item, "p.R:SylStructure.parent.R:Syllable.syl_numphones"), ffeature_int(item, "n.R:SylStructure.parent.R:Syllable.stress"), ffeature_int(item, "n.R:SylStructure.parent.R:Syllable.accented"), ffeature_int(item, "n.R:SylStructure.parent.R:Syllable.syl_numphones"), ffeature_string(item, "p.R:SylStructure.parent.parent.R:Word.gpos"), ffeature_int(item, "p.R:SylStructure.parent.parent.R:Word.word_numsyls"), ffeature_string(item, "n.R:SylStructure.parent.parent.R:Word.gpos"), ffeature_int(item, "n.R:SylStructure.parent.parent.R:Word.word_numsyls"), ffeature_int(item, "p.R:SylStructure.parent.parent.R:Phrase.parent.lisp_num_syls_in_phrase"), ffeature_int(item, "p.R:SylStructure.parent.parent.R:Phrase.parent.lisp_num_words_in_phrase"), sub_phrases + 1, lisp_total_phrases - sub_phrases, endtone, ffeature_int(item, "n.R:SylStructure.parent.parent.R:Phrase.parent.lisp_num_syls_in_phrase"), ffeature_int(item, "n.R:SylStructure.parent.parent.R:Phrase.parent.lisp_num_words_in_phrase"), tmp1, tmp2, lisp_total_phrases);
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:128:7: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(label, "%s^%s-%s+%s=%s@%d_%d/A:%d_%d_%d/B:%d-%d-%d@%d-%d&%d-%d#%d-%d$%d-%d!%d-%d;%d-%d|%s/C:%d+%d+%d/D:%s_%d/E:%s+%d@%d+%d&%d+%d#%d+%d/F:%s_%d/G:%d_%d/H:%d=%d^%d=%d|%s/I:%d=%d/J:%d+%d-%d", strcmp(seg_pp, "0") == 0 ? "x" : seg_pp, strcmp(seg_p, "0") == 0 ? "x" : seg_p, seg_c, strcmp(seg_n, "0") == 0 ? "x" : seg_n, strcmp(seg_nn, "0") == 0 ? "x" : seg_nn, tmp1 + 1, tmp2 - tmp1, ffeature_int(item, "R:SylStructure.parent.R:Syllable.p.stress"), ffeature_int(item, "R:SylStructure.parent.R:Syllable.p.accented"), ffeature_int(item, "R:SylStructure.parent.R:Syllable.p.syl_numphones"), ffeature_int(item, "R:SylStructure.parent.R:Syllable.stress"), ffeature_int(item, "R:SylStructure.parent.R:Syllable.accented"), tmp2, tmp3 + 1, tmp4 - tmp3, ffeature_int(item, "R:SylStructure.parent.R:Syllable.syl_in") + 1, ffeature_int(item, "R:SylStructure.parent.R:Syllable.syl_out") + 1, ffeature_int(item, "R:SylStructure.parent.R:Syllable.ssyl_in") + 1, ffeature_int(item, "R:SylStructure.parent.R:Syllable.ssyl_out") + 1, ffeature_int(item, "R:SylStructure.parent.R:Syllable.asyl_in") + 1, ffeature_int(item, "R:SylStructure.parent.R:Syllable.asyl_out") + 1, ffeature_int(item, "R:SylStructure.parent.R:Syllable.lisp_distance_to_p_stress"), ffeature_int(item, "R:SylStructure.parent.R:Syllable.lisp_distance_to_n_stress"), ffeature_int(item, "R:SylStructure.parent.R:Syllable.lisp_distance_to_p_accent"), ffeature_int(item, "R:SylStructure.parent.R:Syllable.lisp_distance_to_n_accent"), ffeature_string(item, "R:SylStructure.parent.R:Syllable.syl_vowel"), ffeature_int(item, "R:SylStructure.parent.R:Syllable.n.stress"), ffeature_int(item, "R:SylStructure.parent.R:Syllable.n.accented"), ffeature_int(item, "R:SylStructure.parent.R:Syllable.n.syl_numphones"), ffeature_string(item, "R:SylStructure.parent.parent.R:Word.p.gpos"), ffeature_int(item, "R:SylStructure.parent.parent.R:Word.p.word_numsyls"), ffeature_string(item, "R:SylStructure.parent.parent.R:Word.gpos"), tmp4, ffeature_int(item, "R:SylStructure.parent.parent.R:Word.pos_in_phrase") + 1, ffeature_int(item, "R:SylStructure.parent.parent.R:Word.words_out"), ffeature_int(item, "R:SylStructure.parent.parent.R:Word.content_words_in") + 1, ffeature_int(item, "R:SylStructure.parent.parent.R:Word.content_words_out") + 1, ffeature_int(item, "R:SylStructure.parent.parent.R:Word.lisp_distance_to_p_content"), ffeature_int(item, "R:SylStructure.parent.parent.R:Word.lisp_distance_to_n_content"), ffeature_string(item, "R:SylStructure.parent.parent.R:Word.n.gpos"), ffeature_int(item, "R:SylStructure.parent.parent.R:Word.n.word_numsyls"), ffeature_int(item, "R:SylStructure.parent.parent.R:Phrase.parent.p.lisp_num_syls_in_phrase"), ffeature_int(item, "R:SylStructure.parent.parent.R:Phrase.parent.p.lisp_num_words_in_phrase"), ffeature_int(item, "R:SylStructure.parent.parent.R:Phrase.parent.lisp_num_syls_in_phrase"), ffeature_int(item, "R:SylStructure.parent.parent.R:Phrase.parent.lisp_num_words_in_phrase"), sub_phrases + 1, lisp_total_phrases - sub_phrases, strcmp(endtone, "0") == 0 ? "NONE" : endtone, ffeature_int(item, "R:SylStructure.parent.parent.R:Phrase.parent.n.lisp_num_syls_in_phrase"), ffeature_int(item, "R:SylStructure.parent.parent.R:Phrase.parent.n.lisp_num_words_in_phrase"), ffeature_int(item, "R:SylStructure.parent.parent.R:Phrase.parent.lisp_total_syls"), ffeature_int(item, "R:SylStructure.parent.parent.R:Phrase.parent.lisp_total_words"), lisp_total_phrases);
data/flightgear-2020.1.3+dfsg/3rdparty/fonts/fnt.cxx:253:3: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buffer,bufferLength,format, args);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/mac/hid.c:285:2: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
wcscpy(ret, s);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:31:11: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
# define vsnprintf _vsnprintf
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:301:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(e.ev.text.message, IAXC_EVENT_BUFSIZ, fmt, args);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:499:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf, 1024, fmt, args);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:511:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf, 1024, fmt, args);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:523:2: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, fmt, args);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:39:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:39:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:239:18: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define IAXERROR snprintf(iax_errstr, sizeof(iax_errstr),
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:299:3: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, fmt, args);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:311:3: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, fmt, args);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:16:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:16:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:110:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(fn, sizeof(fn), USER_FILE, getenv("HOME"));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:132:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(fn, sizeof(fn), USER_FILE, getenv("HOME"));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/winpoop.h:20:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/winpoop.h:20:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_front.c:185:5: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf( stderr, format, ap );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:621:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( alsaDeviceName, idStr );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:624:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( deviceName, idStr );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/pa_mac_core_utilities.h:43:59: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define DBUG(MSG) do { printf("||PaMacCore (AUHAL)|| "); printf MSG ; fflush(stdout); } while(0)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/pa_mac_core_utilities.h:53:57: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define VDBUG(MSG) do { printf("||PaMacCore (v )|| "); printf MSG ; fflush(stdout); } while(0)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/pa_mac_core_utilities.h:63:58: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
# define VVDBUG(MSG) do { printf("||PaMacCore (vv)|| "); printf MSG ; fflush(stdout); } while(0)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/ringbuffer.c:97:47: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
# error Memory Barriers not defined on this system or system unknown
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/ringbuffer.c:97:57: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
# error Memory Barriers not defined on this system or system unknown
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c:521:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( client_names[ numClients ], client_names[0] );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c:522:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( client_names[0], tmp_client_name );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c:527:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( client_names[ numClients ], tmp_client_name );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c:551:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( (char *)curDevInfo->name, client_names[client_index] );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c:563:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( regex_pattern, "%s:.*", client_names[client_index] );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c:637:9: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf( jackErr_, msg );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:591:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( deviceName, wic.szPname );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:592:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( deviceName, constInputMapperSuffix_ );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:603:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( deviceName, wic.szPname );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:667:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( deviceName, woc.szPname );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:668:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat( deviceName, constOutputMapperSuffix_ );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:679:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( deviceName, woc.szPname );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/pa_devs.c:135:13: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( (defaultDisplayed ? "," : "[") );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/pa_devs.c:142:13: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( (defaultDisplayed ? "," : "[") );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_win_wmme/px_win_wmme.c:286:16: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mixer->src[j].name, mixList[j].szName);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_win_wmme/px_win_wmme.c:313:16: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mixer->src[0].name, line.szName);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_win_wmme/px_win_wmme.c:326:19: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(mixer->src[0].name, line.szName);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/sox/soxcompat.c:24:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, fmt, args);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/sox/soxcompat.c:36:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, fmt, args);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/sox/soxcompat.c:49:9: [4] (format) vfprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
vfprintf(stderr, fmt, args);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/unixfuncs.c:173:22: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define ERR_RPT(...) fprintf(stderr, __VA_ARGS__)
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:292:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( joyfname, "%s/.joy%drc", ::getenv ( "HOME" ), id ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:331:7: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name, &cp[1]);
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:385:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(os->fname, "%s%d", AJSDEV, ident);
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:387:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(os->fname, "%s%d", UHIDDEV, ident - USB_IDENT_OFFSET);
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:110:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if ( access ( os->fname, F_OK ) != 0 )
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsWindows.cxx:95:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf ( key, "%s\\%s\\%s",
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsWindows.cxx:113:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf ( value, "Joystick%d%s", joy->os->js_id + 1, REGSTR_VAL_JOYOEMNAME ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsWindows.cxx:121:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf ( key, "%s\\%s", REGSTR_PATH_JOYOEM, OEMKey ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:100:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:100:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:101:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define vsnprintf _vsnprintf
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:135:49: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define DBG(x) do { printf("%-20s ", __func__); printf x; putchar('\n'); \
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:421:9: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = vsnprintf(*buf, size, fmt, ap_copy);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:434:13: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = vsnprintf(*buf, size, fmt, ap_copy);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:443:13: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len = vsnprintf(*buf, len + 1, fmt, ap_copy);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1240:8: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#ifdef popen
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1241:8: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#undef popen
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1251:9: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#define popen(x, y) _popen((x), (y))
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1634:7: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
n = vsnprintf(buf, buflen, fmt, ap);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2023:7: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(cmd, cmd, (char *) 0, envp); // Using (char *) 0 to avoid warning
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2025:7: [4] (shell) execle:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
execle(interp, interp, cmd, (char *) 0, envp);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2282:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(copy, str);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3186:10: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
return sscanf(header, "bytes=%" INT64_FMT "-%" INT64_FMT, a, b);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4020:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
if (sscanf(line, "%[^:]:%[^:]:%s", f_user, f_domain, ha1) == 3 &&
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4170:20: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
} else if ((fp = popen(cmd, "r")) == NULL) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:5227:10: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
len += vsnprintf(buf + len, sizeof(buf) - len, fmt, ap);
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.c:39:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf, MAXMSG - 2, msg, va);
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:114:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf, BUFLEN - 2, msg, va);
data/flightgear-2020.1.3+dfsg/src/Aircraft/controls.cxx:1384:34: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
FGControls::set_engine_pump( int system, bool val )
data/flightgear-2020.1.3+dfsg/src/Aircraft/controls.cxx:1391:15: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ( (system >= 0) && (system < MAX_HYD_SYSTEMS) ) {
data/flightgear-2020.1.3+dfsg/src/Aircraft/controls.cxx:1391:32: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ( (system >= 0) && (system < MAX_HYD_SYSTEMS) ) {
data/flightgear-2020.1.3+dfsg/src/Aircraft/controls.cxx:1392:25: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
engine_pump[system] = val;
data/flightgear-2020.1.3+dfsg/src/Aircraft/controls.cxx:1398:36: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
FGControls::set_electric_pump( int system, bool val )
data/flightgear-2020.1.3+dfsg/src/Aircraft/controls.cxx:1405:15: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ( (system >= 0) && (system < MAX_HYD_SYSTEMS) ) {
data/flightgear-2020.1.3+dfsg/src/Aircraft/controls.cxx:1405:32: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if ( (system >= 0) && (system < MAX_HYD_SYSTEMS) ) {
data/flightgear-2020.1.3+dfsg/src/Aircraft/controls.cxx:1406:27: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
electric_pump[system] = val;
data/flightgear-2020.1.3+dfsg/src/Cockpit/NavDisplay.cxx:129:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
::snprintf(buf, 512, format.c_str(), nd->getIntValue());
data/flightgear-2020.1.3+dfsg/src/Cockpit/NavDisplay.cxx:134:11: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
::snprintf(buf, 512, format.c_str(), nd->getStringValue());
data/flightgear-2020.1.3+dfsg/src/Cockpit/NavDisplay.cxx:139:7: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
::snprintf(buf, 512, format.c_str(), nd->getDoubleValue());
data/flightgear-2020.1.3+dfsg/src/Cockpit/panel.cxx:1205:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(_buf, _fmt.c_str(), _text.c_str());
data/flightgear-2020.1.3+dfsg/src/Cockpit/panel.cxx:1208:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(_buf, _fmt.c_str(), _node->getStringValue());
data/flightgear-2020.1.3+dfsg/src/Cockpit/panel.cxx:1213:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(_buf, _fmt.c_str(), d);
data/flightgear-2020.1.3+dfsg/src/Environment/atmosphere.cxx:169:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, 100, fmt, press, hgt);
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:520:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( cmd, "set %s %s", property_names[i].c_str(),
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:325:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
n = sscanf(buffer, "%s", line);
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:343:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
sscanf( bufptr, "%s", line );
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:352:41: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
n = sscanf( bufptr, "%s%d", line,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:362:33: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
n = sscanf( bufptr, "%s%s%le",
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:377:41: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
n = sscanf( bufptr, "%s%d", line,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:387:33: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
n = sscanf( bufptr, "%s%s%ld",
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:420:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, FACILITY_NAME_STRING);
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:298:5: [4] (misc) cuserid:
Exactly what cuserid() does is poorly defined (e.g., some systems use the
effective uid, like Linux, while others like System V use the real uid).
Thus, you can't trust what it does. It's certainly not portable (The
cuserid function was included in the 1988 version of POSIX, but removed
from the 1990 version). Also, if passed a non-null parameter, there's a
risk of a buffer overflow if the passed-in buffer is not at least L_cuserid
characters long (CWE-120). Use getpwuid(geteuid()) and extract the desired
information instead.
cuserid( sim_control_.userid ); /* set up user id */
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c:553:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
n = sscanf(buffer, "%s", line);
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c:569:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
sscanf( bufptr, "%s", line );
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c:578:41: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
n = sscanf( bufptr, "%s%d", line, &Number_of_Controls );
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c:587:33: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
n = sscanf( bufptr, "%s%s%le%le%le",
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c:603:41: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
n = sscanf( bufptr, "%s%d", line, &Number_of_Outputs );
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c:612:33: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
n = sscanf( bufptr, "%s%s%le",
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c:673:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(fp, FACILITY_NAME_STRING);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:368:13: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "%s/rpm", er->prefix);
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:238:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, FORMAT_BUFSIZE, format.c_str(), n->getIntValue());
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:240:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, FORMAT_BUFSIZE, format.c_str(), n->getLongValue());
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:242:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, FORMAT_BUFSIZE, format.c_str(), n->getFloatValue());
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:244:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, FORMAT_BUFSIZE, format.c_str(), n->getDoubleValue());
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:246:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, FORMAT_BUFSIZE, format.c_str(), n->getStringValue());
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:1341:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf, str);
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:209:5: [4] (shell) ShellExecute:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
ShellExecute ( NULL, "open", win32_name, NULL, NULL,
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:221:11: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
ok = (system( command.c_str() ) == 0);
data/flightgear-2020.1.3+dfsg/src/GUI/property_list.cxx:278:9: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(_entries[0], _verbose ? ". [verbose]" : ".");
data/flightgear-2020.1.3+dfsg/src/GUI/property_list.cxx:393:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(*data.text, out.c_str());
data/flightgear-2020.1.3+dfsg/src/Input/FGLinuxEventInput.cxx:448:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( ugly_buffer, "%s-%u", EVENT_NAME_BY_EVENT_TYPE[linuxEventData.type], (unsigned)linuxEventData.code );
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_label.cxx:149:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, BUFSIZE, _format.c_str(), 0);
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_label.cxx:151:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, BUFSIZE, _format.c_str(), _input.getStringValue());
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_label.cxx:153:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, BUFSIZE, _format.c_str(), int(_input.getFloatValue()));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_label.cxx:155:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, BUFSIZE, _format.c_str(), long(_input.getFloatValue()));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_label.cxx:157:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, BUFSIZE, _format.c_str(), float(_input.getFloatValue()));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_label.cxx:159:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, BUFSIZE, _format.c_str(), double(_input.getFloatValue()));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_tape.cxx:542:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(_buf, BUFSIZE, _format.c_str(), int(v));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_tape.cxx:544:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(_buf, BUFSIZE, _format.c_str(), long(v));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_tape.cxx:546:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(_buf, BUFSIZE, _format.c_str(), v);
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_tape.cxx:548:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(_buf, BUFSIZE, _format.c_str(), double(v));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page.cxx:89:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf, 5, (f >= 100.0 ? "%4.0f" : "%4.1f"), f);
data/flightgear-2020.1.3+dfsg/src/Main/locale.cxx:482:17: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int len = ::vsnprintf(nullptr, 0, format.c_str(), args);
data/flightgear-2020.1.3+dfsg/src/Main/locale.cxx:484:7: [4] (format) vsprintf:
Potential format string problem (CWE-134). Make format string constant.
::vsprintf(buf, format.c_str(), args);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:136:2: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "--airport=%s ", m->getId());
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:159:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf, "--prop:/environment/clouds/layer[%d]/coverage=%s ", i, coverage_string[coverage]);
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:211:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(p->string_value, stringvalue);
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1955:17: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(pData->string_value, cstr);
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:136:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( rmc, "GPRMC,%s,A,%s,%s,%s,%s,%s,0.000,E",
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:140:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( gga, "GPGGA,%s,%s,%s,1,,,%s,F,,,,",
data/flightgear-2020.1.3+dfsg/src/Network/fgcom.cxx:668:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( tmp, "%4s", icao.c_str() );
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:430:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(tmp, 255, format.c_str(), (int)val);
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:434:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(tmp, 255, format.c_str(),
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:441:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(tmp, 255, format.c_str(), (float)val);
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:447:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(tmp, 255, format.c_str(), (float)val);
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:453:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(tmp, 255, format.c_str(), (double)val);
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:457:13: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(tmp, 255, format.c_str(),
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:163:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( nmea, "$GPRMC,%s,A,%s,%s,%s,%s,%s,%s,A",
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:172:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( nmea, "$GPGGA,%s,%s,%s,1,08,0.9,%.1f,M,0.0,M,,",
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:180:9: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( nmea, "%s%s",
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:46:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( file, argv[1] );
data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx:249:13: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(previousPacket, currentPacket);
data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx:476:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf( tmp, "%4s", icao.c_str() );
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGTextLayer.cxx:290:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (m_buf, m_fmt.c_str (), m_text.c_str ());
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGTextLayer.cxx:293:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (m_buf, m_fmt.c_str (), m_node->getStringValue ());
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGTextLayer.cxx:300:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (m_buf, m_fmt.c_str(), d);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:511:2: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srandom(time(0));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:512:30: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
e->slice_header.source_id = random() & 0xffff;
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_theora.c:369:2: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand((unsigned int)time(0));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:77:22: [3] (misc) InitializeCriticalSection:
Exceptions can be thrown in low-memory situations. Use
InitializeCriticalSectionAndSpinCount instead.
#define MUTEXINIT(m) InitializeCriticalSection(m)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:78:22: [3] (misc) EnterCriticalSection:
On some versions of Windows, exceptions can be thrown in low-memory
situations. Use InitializeCriticalSectionAndSpinCount instead.
#define MUTEXLOCK(m) EnterCriticalSection(m)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:333:2: [3] (random) srandom:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srandom((unsigned int)time(0));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:337:2: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand((unsigned int)time(0));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:344:14: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return (int)random();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:346:14: [3] (random) lrand48:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
return (int)lrand48();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:109:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("HOME")) {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:110:39: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
snprintf(fn, sizeof(fn), USER_FILE, getenv("HOME"));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:131:6: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("HOME")) {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:132:39: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
snprintf(fn, sizeof(fn), USER_FILE, getenv("HOME"));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:490:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if( getenv( "PA_ALSA_INITIALIZE_BLOCK" ) && atoi( getenv( "PA_ALSA_INITIALIZE_BLOCK" ) ) )
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:490:55: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if( getenv( "PA_ALSA_INITIALIZE_BLOCK" ) && atoi( getenv( "PA_ALSA_INITIALIZE_BLOCK" ) ) )
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:847:59: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if( !strncmp( "hw:", deviceInfo->alsaName, 3 ) && getenv( "PA_ALSA_PLUGHW" ) )
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:848:29: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
usePlug = atoi( getenv( "PA_ALSA_PLUGHW" ) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:1764:60: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if( framesPerBuffer == paFramesPerBufferUnspecified && getenv( "PA_ALSA_PERIODSIZE" ) != NULL )
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:1767:33: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
framesPerBuffer = atoi( getenv("PA_ALSA_PERIODSIZE") );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds_dynlink.c:54:43: [3] (misc) LoadLibrary:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
paWinDsDSoundEntryPoints.hInstance_ = LoadLibrary("dsound.dll");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:1753:21: [3] (misc) LoadLibrary:
Ensure that the full path to the library is specified, or current directory
may be used (CWE-829, CWE-20). Use registry entry or GetWindowsDirectory to
find library path, if you aren't already.
DllKsUser = LoadLibrary(TEXT("ksuser.dll"));
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:292:41: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
sprintf( joyfname, "%s/.joy%drc", ::getenv ( "HOME" ), id ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2087:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((s = getenv(name)) != NULL) addenv(blk, "%s=%s", name, s);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2101:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((s = getenv("SERVER_NAME")) != NULL) {
data/flightgear-2020.1.3+dfsg/src/AIModel/AIStorm.cxx:108:6: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand((unsigned)time(0));
data/flightgear-2020.1.3+dfsg/src/AIModel/submodel.cxx:268:28: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
ballist->setRandom(sm->random);
data/flightgear-2020.1.3+dfsg/src/AIModel/submodel.cxx:641:63: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
sm->prop->tie("random", SGRawValuePointer<bool>(&(sm->random)));
data/flightgear-2020.1.3+dfsg/src/Add-ons/AddonManager.cxx:162:42: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
const SGPath addonRealPath = addonPath.realpath();
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGFDMExec.cpp:108:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* num = getenv("JSBSIM_DEBUG");
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGFDMExec.cpp:134:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* num = getenv("JSBSIM_DISPERSE");
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGFDMExec.cpp:1148:3: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(RandomSeed);
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGXMLElement.cpp:625:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* num = getenv("JSBSIM_DISPERSE");
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/atmosphere/FGWinds.cpp:217:36: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
target_time = time + 0.71 + (random * 0.5);
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:357:17: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "Aa:b:de:f:hi:kmo:r:s:t:x:")) != EOF)
data/flightgear-2020.1.3+dfsg/src/GUI/FGFontCache.cxx:189:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *envp = ::getenv("FG_FONTS");
data/flightgear-2020.1.3+dfsg/src/Input/fgjs.cxx:224:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *homedir = ::getenv( "HOME" );
data/flightgear-2020.1.3+dfsg/src/Input/fgjs.cxx:225:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *hostname = ::getenv( "HOSTNAME" );
data/flightgear-2020.1.3+dfsg/src/Input/fgjs.cxx:336:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *envp = ::getenv( "FG_ROOT" );
data/flightgear-2020.1.3+dfsg/src/Main/bootstrap.cxx:251:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
hostname = ::getenv( "COMPUTERNAME" );
data/flightgear-2020.1.3+dfsg/src/Main/fg_init.cxx:350:27: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
SGPath realPath = p.realpath();
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:264:19: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
fg_root = tmp.realpath();
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:292:20: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
fg_home = home.realpath();
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:297:38: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
texture_cache_dir = textureCache.realpath();
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:366:25: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
SGPath abspath(path.realpath());
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:397:25: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
SGPath abspath(path.realpath());
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:417:23: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
SGPath abspath(path.realpath());
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:438:21: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (terrasync_dir.realpath() != SGPath(fgGetString("/sim/terrasync/scenery-dir")).realpath()) {
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:438:85: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if (terrasync_dir.realpath() != SGPath(fgGetString("/sim/terrasync/scenery-dir")).realpath()) {
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:442:23: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
SGPath abspath(path.realpath());
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:491:38: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
fg_aircraft_dirs.push_back(dirPath.realpath());
data/flightgear-2020.1.3+dfsg/src/Main/globals.cxx:492:46: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
extra_read_allowed_paths.push_back(dirPath.realpath());
data/flightgear-2020.1.3+dfsg/src/Main/locale.cxx:125:29: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* langEnv = ::getenv("LANG");
data/flightgear-2020.1.3+dfsg/src/Main/main.cxx:604:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
showLauncher |= (::getenv("FG_LAUNCHER") != nullptr);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:245:18: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *p = getenv("http_proxy");
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:260:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char* envp = ::getenv( "http_proxy" );
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:2211:26: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char* envp = ::getenv("FG_AIRCRAFT");
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:2259:47: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
SGPath realAircraftPath = aircraftDirPath.realpath();
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:2579:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *envp = ::getenv( "FG_SCENERY" );
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:2967:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *envp = ::getenv( "FG_ROOT" );
data/flightgear-2020.1.3+dfsg/src/Main/util.cxx:84:42: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
if(SGPath("ygjmyfvhhnvdoesnotexist").realpath().utf8Str() == "ygjmyfvhhnvdoesnotexist"){
data/flightgear-2020.1.3+dfsg/src/Main/util.cxx:109:44: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
read_allowed_paths.push_back(it->realpath().utf8Str() + "/*");
data/flightgear-2020.1.3+dfsg/src/Main/util.cxx:110:44: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
read_allowed_paths.push_back(it->realpath().utf8Str());
data/flightgear-2020.1.3+dfsg/src/Main/util.cxx:113:50: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
std::string fg_home = globals->get_fg_home().realpath().utf8Str();
data/flightgear-2020.1.3+dfsg/src/Main/util.cxx:152:36: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
std::string normed_path = path.realpath().utf8Str();
data/flightgear-2020.1.3+dfsg/src/Navaids/NavDataCache.cxx:1012:54: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
sqlite_bind_temp_stdstring(statCacheCheck, 1, path.realpath().utf8Str());
data/flightgear-2020.1.3+dfsg/src/Navaids/NavDataCache.cxx:1149:32: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
string fileOnDisk = path.realpath().utf8Str();
data/flightgear-2020.1.3+dfsg/src/Navaids/NavDataCache.cxx:1404:23: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
string path = it->realpath().utf8Str();
data/flightgear-2020.1.3+dfsg/src/Navaids/NavDataCache.cxx:1653:63: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
sqlite_bind_temp_stdstring(d->stampFileCache, 1, path.realpath().utf8Str());
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSGPath.cxx:120:34: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
.member("realpath", &SGPath::realpath)
data/flightgear-2020.1.3+dfsg/test_suite/dataStore.cxx:71:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (std::getenv("FG_ROOT")) {
data/flightgear-2020.1.3+dfsg/test_suite/system_tests/Instrumentation/testgps.cxx:27:19: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *homedir = ::getenv( "HOME" );
data/flightgear-2020.1.3+dfsg/test_suite/system_tests/Instrumentation/testgps.cxx:28:20: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *hostname = ::getenv( "HOSTNAME" );
data/flightgear-2020.1.3+dfsg/test_suite/testSuite.cxx:285:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("FG_TEST_LOG_LEVEL"))
data/flightgear-2020.1.3+dfsg/test_suite/testSuite.cxx:286:42: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
logPriority = processLogPriority(getenv("FG_TEST_LOG_LEVEL"), failure);
data/flightgear-2020.1.3+dfsg/test_suite/testSuite.cxx:287:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("FG_TEST_LOG_CLASS"))
data/flightgear-2020.1.3+dfsg/test_suite/testSuite.cxx:288:36: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
logClass = processLogClass(getenv("FG_TEST_LOG_CLASS"), failure);
data/flightgear-2020.1.3+dfsg/test_suite/testSuite.cxx:289:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("FG_TEST_LOG_SPLIT"))
data/flightgear-2020.1.3+dfsg/test_suite/testSuite.cxx:291:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("FG_TEST_TIMINGS"))
data/flightgear-2020.1.3+dfsg/test_suite/testSuite.cxx:293:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (getenv("FG_TEST_DEBUG"))
data/flightgear-2020.1.3+dfsg/utils/fgai/fgai.cxx:535:17: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(argc, argv, "cCf:F:n:O:p:RsS")) != EOF) {
data/flightgear-2020.1.3+dfsg/utils/fgai/fgai.cxx:575:44: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (const char *fg_root_env = std::getenv("FG_ROOT")) {
data/flightgear-2020.1.3+dfsg/utils/fgai/fgai.cxx:582:47: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if (const char *fg_scenery_env = std::getenv("FG_SCENERY")) {
data/flightgear-2020.1.3+dfsg/utils/fgelev/fgelev.cxx:106:47: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
} else if (const char *fg_root_env = std::getenv("FG_ROOT")) {
data/flightgear-2020.1.3+dfsg/utils/fgelev/fgelev.cxx:116:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
} else if (std::getenv("FG_SCENERY")) {
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGTextLayer.cxx:226:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
char *Env_Path = ::getenv ("FG_FONTS");
data/flightgear-2020.1.3+dfsg/utils/fgviewer/fgviewer.cxx:68:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
} else if (std::getenv("FG_ROOT")) {
data/flightgear-2020.1.3+dfsg/utils/fgviewer/fgviewer.cxx:78:21: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
} else if (std::getenv("FG_SCENERY")) {
data/flightgear-2020.1.3+dfsg/utils/gui/genfonts.c:198:24: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
display_name = strdup(getenv("DISPLAY"));
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:597:44: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
} else if (const char *fg_root_env = std::getenv("FG_ROOT")) {
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:604:47: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
} else if (const char *fg_scenery_env = std::getenv("FG_SCENERY")) {
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:56:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(copy,str,len);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:125:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (str) sprintf(str,"%d",item->valueint);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:132:56: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (fabs(floor(d)-d)<=DBL_EPSILON && fabs(d)<1.0e60)sprintf(str,"%.0f",d);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:133:48: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (fabs(d)<1.0e-6 || fabs(d)>1.0e9) sprintf(str,"%e",d);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:134:20: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf(str,"%f",d);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:154:23: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const unsigned char firstByteMark[7] = { 0x00, 0x00, 0xC0, 0xE0, 0xF0, 0xF8, 0xFC };
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:242:14: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
default: sprintf(ptr2,"u%04x",token);ptr2+=5; break; /* escape and print */
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:361:12: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if (out) strcpy(out,"[]");
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:517:93: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
static cJSON *create_reference(cJSON *item) {cJSON *ref=cJSON_New_Item();if (!ref) return 0;memcpy(ref,item,sizeof(cJSON));ref->string=0;ref->type|=cJSON_IsReference;ref->next=ref->prev=0;return ref;}
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/test.c:46:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *f=fopen(filename,"rb");fseek(f,0,SEEK_END);long len=ftell(f);fseek(f,0,SEEK_SET);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/test.c:75:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *strings[7]={"Sunday","Monday","Tuesday","Wednesday","Thursday","Friday","Saturday"};
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestAssert.h:111:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[128];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestAssert.h:115:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buffer, "%.*g", precision, x);
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:132:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[64];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:133:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%hd", v );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:139:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[64];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:140:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%hu", v );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:146:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[64];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:147:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%d", v );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:153:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[64];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:154:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%u", v );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:160:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[64];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:161:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%ld", v );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:167:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[64];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:168:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%lu", v );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:174:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[128];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:175:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%.16g", double(v) );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:181:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[128];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:182:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%.16g", v );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:188:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[128];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:189:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%.16g", double(v) );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:195:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[64];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:196:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%p", v );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:207:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[16];
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:208:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buffer, "%c", c );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:252:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
, buffer_( fopen( path, "wt" ) )
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/bin/flite_hts_engine.c:95:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[INPUT_BUFF_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/bin/flite_hts_engine.c:146:71: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Flite_HTS_Engine_set_sampling_frequency(&engine, (size_t) atoi(*++argv));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/bin/flite_hts_engine.c:150:60: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Flite_HTS_Engine_set_fperiod(&engine, (size_t) atoi(*++argv));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/bin/flite_hts_engine.c:196:59: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Flite_HTS_Engine_set_audio_buff_size(&engine, atoi(*++argv));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/bin/flite_hts_engine.c:210:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp_txt = fopen(fn_txt, "r");
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_regex.h:104:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *startp[CST_NSUBEXP];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_regex.h:105:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *endp[CST_NSUBEXP];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex.c:49:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char * const cmu_lex_phone_table[54];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex.c:264:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[10];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex.c:277:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char x[15];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex_entries.c:14:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char * const cmu_lex_phone_table[57] =
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex_entries.c:75:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char * const cmu_lex_phones_huff_table[257] =
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lex_entries.c:82:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char * const cmu_lex_entries_huff_table[257] =
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lts_rules.c:10:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char * const cmu_lts_phone_table[76] =
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/cmulex/cmu_lts_rules.c:90:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char * const cmu_lts_letter_table[30] =
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_expand.c:122:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char part[4];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_expand.c:250:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char aaa[3];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_ffeatures.c:305:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char syl_vowel_str[16];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_ffeatures.c:322:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(syl_vowel_str,"novowel");
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_text.c:53:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char * const wandm_abbrevs[99][2] =
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_text.c:389:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char n[10];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_text.c:634:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (atoi(aaa) < (atoi(bbb)))
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_text.c:634:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if (atoi(aaa) < (atoi(bbb)))
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_text.c:638:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(aaa) > 1)
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/lang/usenglish/us_text.c:756:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char * const states[99][5] =
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/hrg/cst_ffeature.c:85:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tokenstring[200]; /* we don't seem to have featpaths longer than 72 */
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/hrg/cst_ffeature.c:86:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *tokens[100];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/lexicon/cst_lexicon.c:438:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word_pos[WP_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/lexicon/cst_lexicon.c:494:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word_pos[WP_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/lexicon/cst_lts.c:150:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char zeros[8];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/regex/regexp.c:1207:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[50];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_error.c:54:5: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wmsg[256];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_error.c:81:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cst_error_msg[600];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_val.c:185:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return atoi(CST_VAL_STRING(v));
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_val.c:521:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utf8char[5];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_val.c:527:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(utf8char,"%c",xxx[i]);
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_val.c:532:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(utf8char,"%c%c",xxx[i],xxx[i+1]);
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_val.c:538:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(utf8char,"%c%c%c",xxx[i],xxx[i+1],xxx[i+2]);
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_val.c:544:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(utf8char,"%c%c%c%c",xxx[i],xxx[i+1],xxx[i+2],xxx[i+3]);
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:83:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seg_pp[8];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:84:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seg_p[8];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:85:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seg_c[8];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:86:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seg_n[8];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:87:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char seg_nn[8];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:88:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char endtone[8];
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/lib/flite_hts_engine.c:236:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(wav, "wb");
data/flightgear-2020.1.3+dfsg/3rdparty/fonts/fnt.cxx:250:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[2048];
data/flightgear-2020.1.3+dfsg/3rdparty/fonts/fntTXF.cxx:159:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = fopen(ps.c_str(), "rb");
data/flightgear-2020.1.3+dfsg/3rdparty/fonts/fntTXF.cxx:170:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char magic [ 4 ] ;
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/hidparser/testparse.c:30:2: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wstr[MAX_STR];
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/hidparser/testparse.c:68:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char descriptorBuffer[8192];
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/linux/hid.c:629:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
dev->device_handle = open(path, O_RDWR);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/linux/hid.c:831:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, rpt_desc.value, desc_size);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/mac/hid.c:421:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[BUF_LEN];
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/mac/hid.c:566:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rpt->data, report, report_length);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/mac/hid.c:709:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[32];
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/mac/hid.c:717:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(str, "HIDAPI_%p", dev->device_handle);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/mac/hid.c:802:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, rpt->data, len);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/mac/hid.c:1108:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t serial[256], buf[256];
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/mac/hid.c:1109:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cbuf[256];
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c:353:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char driver_name[256];
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c:405:4: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wstr[WSTR_LEN]; /* TODO: Determine Size */
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c:638:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, data, length);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c:725:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, dev->read_buf+1, copy_len);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c:730:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, dev->read_buf, copy_len);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c:937:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[65];
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c:949:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int handle = open(VendorID, ProductID, L"12345");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_encode.c:269:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char outbuf[1024];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_portaudio.c:129:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char inRingBuf[INRBSZ], outRingBuf[OUTRBSZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/audio_portaudio.c:380:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char outRingBuf[EC_RING_SZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_alaw.c:144:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c->name,"alaw");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:139:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out + avctx->width * (2 * line + 0),
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:144:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out + avctx->width * (2 * line + 1),
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:149:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out + avctx->width * avctx->height
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:154:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out + avctx->width * avctx->height * 5 / 4
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:278:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->frame_buf + c->fragsize * sh_this.slice_index,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:363:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&slice_set->data[sh->slice_index][6], in, slice_size);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:433:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&g_slice_set->data[g_slice_set->num_slices], data, size);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:676:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c->name, "ffmpeg-");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_gsm.c:101:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c->name,"gsm 06.10");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ilbc.c:92:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c->name,"iLBC");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_speex.c:130:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c->name,"speex");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_theora.c:186:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out + picture.y_width * 2 * line,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_theora.c:190:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out + picture.y_width * (2 * line + 1),
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_theora.c:194:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out + (d->ti.frame_width * d->ti.frame_height) + line * d->ti.frame_width / 2,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_theora.c:197:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out + (d->ti.frame_width * d->ti.frame_height * 5 / 4) + line * d->ti.frame_width / 2,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_theora.c:216:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, w * h);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_theora.c:222:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&dst[i*pw], &src[i*w], w);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_theora.c:475:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c->name, "Theora");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ulaw.c:23:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char lin_2ulaw [16384];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ulaw.c:137:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(c->name,"ulaw");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/add.c:98:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char const bitoff[ 256 ] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/gsm/src/code.c:98:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
(void)memcpy( (char *)S->dp0, (char *)(S->dp0 + 160),
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient.h:221:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient.h:263:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char remote[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient.h:268:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char remote_name[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient.h:273:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char local[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient.h:278:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char local_context[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient.h:403:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char url[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:69:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char host[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:70:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char user[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:71:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pass[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:237:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*tail, &e, sizeof(iaxc_event));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:367:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e.ev.audio.data, data, size);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:496:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:508:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:163:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:181:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[MAX_NO_SLICES][MAX_TRUNK_LEN];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:185:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:215:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char remote[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:216:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char remote_name[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:217:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char local[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:218:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char local_context[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:221:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char callerid_name[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.h:222:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char callerid_number[IAXC_EVENT_BUFSIZ];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax-client.h:127:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[0]; /* Raw data if applicable */
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:159:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char codec_order[32];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:209:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char unregreason[MAXSTRLEN];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:211:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char username[MAXSTRLEN];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:213:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char secret[MAXSTRLEN];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:236:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iax_errstr[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:891:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fc, f, sizeof(struct iax_frame));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:904:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fc->data, f->data, f->datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1055:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(out + (x << 1), "%2.2x", (int)in[x]);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1087:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[32 * 1024]; //Mihai: let's see if this is where it crashes
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1752:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1764:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
portno = atoi(p+1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1795:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1806:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
portno = atoi(p+1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1818:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(session->unregreason, "Unspecified");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2003:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[16];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2005:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char realreply[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2026:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[16];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2028:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char realreply[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2105:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char old[32];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2133:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256]="";
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2196:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
portno = atoi(strtok(NULL, ":"));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2732:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e->data, fh->iedata, datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2741:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e->data, fh->iedata, datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2749:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e->data, fh->iedata, datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2982:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e->data, fh->iedata, datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2991:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e->data, fh->iedata, datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2998:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e->data, fh->iedata, datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:3015:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e->data, fh->iedata, datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:3077:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e->data, vh->data, e->datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:3106:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(e->data, mh->data, datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:3119:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[65536];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:3165:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[ 65536 ]; /* allocated on stack with same size as iax_net_read() */
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:3172:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, fh->iedata, datalen); /* prepare local buf for iax_parse_ies() */
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.h:74:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[0];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.h:83:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[0];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:74:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&sin, value, len);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:116:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256]="";
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:121:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmp, ",8khz");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:123:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmp, ",11.025khz");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:125:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmp, ",16khz");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:127:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmp, ",22.05khz");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:129:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmp, ",44.1khz");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:131:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tmp, ",48khz");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:217:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:248:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char interp[1024];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:249:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[1024];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:271:7: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(interp, "Present");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:355:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char retries[20];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:356:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char class2[20];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:357:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subclass2[20];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:360:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:368:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(retries, "Yes");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:370:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(retries, " No");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:383:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(subclass2, "%c", fh->csub);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:420:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:428:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ied->buf + ied->pos, data, datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:482:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:785:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fr->af.data, f->data, fr->af.datalen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.h:113:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char unused[AST_FRIENDLY_OFFSET];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.h:114:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char afdata[0]; /* Data for frame */
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.h:118:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[1024];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2.h:169:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char iedata[0];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2.h:178:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[0];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2.h:185:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[0];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2.h:192:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[0];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2.h:197:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[0];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2.h:210:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char devname[16]; /* Device */
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2.h:212:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char chksum[16]; /* Checksum of all data */
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2.h:213:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[0];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/md5.c:114:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, buf, len);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/md5.c:117:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, buf, t);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/md5.c:126:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ctx->in, buf, 64);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/md5.c:135:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ctx->in, buf, len);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/md5.c:179:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest, ctx->buf, 16);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c:44:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char callerid[80];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c:152:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( (fd = open(dev, O_RDWR | O_NONBLOCK)) < 0) {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c:207:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(myframe + myoff, sounds[cursound].data + offset, amt * 2);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c:327:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *argv[MAXARGS];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c:367:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rcmd[RBUFSIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:22:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char regpeer[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:23:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char regsecret[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:24:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char server[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:26:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char context[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:27:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char language[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:52:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:56:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(filename, "r");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:81:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
strncpy((char *)opts[x].where, value, opts[x].len);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:107:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:119:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(filename, "w");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:130:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.h:14:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char regpeer[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.h:15:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char regsecret[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.h:16:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char regpeer[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.h:17:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char server[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.h:19:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char context[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.h:20:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char language[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/winiphone.c:74:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bufin[NWHIN][320];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/winiphone.c:154:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *argv[MAXARGS];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/winiphone.c:221:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rcmd[RBUFSIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/winiphone.c:390:58: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
gsm_encode(most_recent_answer->gsmout, (short *) ((char *) whin[i].lpData), fo);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/winiphone.c:607:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((char *)wh->data,(char *)fr,sizeof(fr));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_10_16_table.c:34:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char exc_10_16_table[160] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_10_32_table.c:34:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char exc_10_32_table[320] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_20_32_table.c:34:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char exc_20_32_table[640] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_5_256_table.c:34:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char exc_5_256_table[1280] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_5_64_table.c:34:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char exc_5_64_table[320]={
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/exc_8_128_table.c:34:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char exc_8_128_table[1024] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/gain_table.c:32:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char gain_cdbk_nb[384] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/gain_table_lbr.c:32:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char gain_cdbk_lbr[96] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/hexc_10_32_table.c:33:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char hexc_10_32_table[320] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/hexc_table.c:33:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char hexc_table[1024] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/high_lsp_tables.c:32:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char high_lsp_cdbk[512]={
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/high_lsp_tables.c:99:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char high_lsp_cdbk2[512]={
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_header.h:55:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char speex_string[SPEEX_HEADER_STRING_LENGTH]; /**< Identifies a Speex bit-stream, always set to "Speex " */
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_header.h:56:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char speex_version[SPEEX_HEADER_VERSION_LENGTH]; /**< Speex version */
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/include/speex/speex_jitter.h:57:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SPEEX_JITTER_MAX_BUFFER_SIZE][SPEEX_JITTER_MAX_PACKET_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lbr_48k_tables.c:40:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char gain_cdbk_ulbr[192] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lbr_48k_tables.c:108:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char exc_12_32_table[384] = {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lbr_48k_tables.c:144:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char cdbk_lsp_vlbr[5120]={
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lbr_48k_tables.c:659:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char cdbk_lsp2_vlbr[160]={
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lsp_tables_nb.c:32:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char cdbk_nb[640]={
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lsp_tables_nb.c:98:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char cdbk_nb_low1[320]={
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lsp_tables_nb.c:164:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char cdbk_nb_low2[320]={
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lsp_tables_nb.c:230:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char cdbk_nb_high1[320]={
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/lsp_tables_nb.c:296:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const signed char cdbk_nb_high2[320]={
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/misc.c:118:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, src, nbytes);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/quant_lsp.c:382:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const signed char cdbk_lsp_vlbr[5120];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/quant_lsp.c:383:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const signed char cdbk_lsp2_vlbr[160];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testecho.c:25:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
echo_fd = open ("play.sw", O_RDONLY);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testecho.c:26:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ref_fd = open ("rec.sw", O_RDONLY);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testecho.c:27:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
e_fd = open ("echo.sw", O_WRONLY | O_CREAT | O_TRUNC, 0644);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc.c:25:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cbits[200];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc.c:71:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fin = fopen(inFile, "r");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc.c:73:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fout = fopen(outFile, "w+");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc.c:77:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fbits = fopen(bitsFile, "w");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc_uwb.c:25:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cbits[200];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc_uwb.c:71:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fin = fopen(inFile, "r");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc_uwb.c:73:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fout = fopen(outFile, "w+");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc_uwb.c:77:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fbits = fopen(bitsFile, "w");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc_wb.c:25:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cbits[200];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc_wb.c:76:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fin = fopen(inFile, "r");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc_wb.c:78:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fout = fopen(outFile, "w+");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testenc_wb.c:82:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fbits = fopen(bitsFile, "w");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/BlockingStream.cxx:19:3: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(parameters);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/BlockingStream.cxx:36:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void BlockingStream::open(const StreamParameters ¶meters)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/CFunCallbackStream.cxx:14:3: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(parameters, funPtr, userData);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/CFunCallbackStream.cxx:31:27: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void CFunCallbackStream::open(const StreamParameters ¶meters, PaStreamCallback *funPtr, void *userData)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/CppFunCallbackStream.cxx:47:3: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(parameters);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/CppFunCallbackStream.cxx:62:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void FunCallbackStream::open(const StreamParameters ¶meters, CallbackFunPtr funPtr, void *userData)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/CppFunCallbackStream.cxx:65:3: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(parameters);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/CppFunCallbackStream.cxx:68:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void FunCallbackStream::open(const StreamParameters ¶meters)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/InterfaceCallbackStream.cxx:18:3: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(parameters, instance);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/InterfaceCallbackStream.cxx:35:32: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void InterfaceCallbackStream::open(const StreamParameters ¶meters, CallbackInterface &instance)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/pablio.c:87:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
((char *)outputBuffer)[i] = 0;
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/ringbuffer.c:168:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data1, data, size1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/ringbuffer.c:170:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data2, data, size2 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/ringbuffer.c:174:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data1, data, size1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/ringbuffer.c:189:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data, data1, size1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/ringbuffer.c:191:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data, data2, size2 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/ringbuffer.c:195:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data, data1, size1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/test_w_saw8.c:52:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char samples[FRAMES_PER_BLOCK][SAMPLES_PER_FRAME];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/pablio/test_w_saw8.c:53:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char phases[SAMPLES_PER_FRAME];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_front.c:165:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char lastHostErrorText_[ PA_LAST_HOST_ERROR_TEXT_LENGTH_ + 1 ] = {0};
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_trace.c:45:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *traceTextArray[PA_MAX_TRACE_RECORDS];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:489:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char alsaCardName[50];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:490:49: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if( getenv( "PA_ALSA_INITIALIZE_BLOCK" ) && atoi( getenv( "PA_ALSA_INITIALIZE_BLOCK" ) ) )
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:513:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[50];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:848:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
usePlug = atoi( getenv( "PA_ALSA_PLUGHW" ) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:1767:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
framesPerBuffer = atoi( getenv("PA_ALSA_PERIODSIZE") );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:2401:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( dst, src, swidth );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:3136:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( userBuffer, buffer, sizeof (void *) * stream->capture.numUserChannels );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:3194:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( (void *)userBuffer, buffer, sizeof (void *) * stream->playback.numUserChannels );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/asio/pa_asio.cpp:2251:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[128];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/asio/pa_asio.cpp:2252:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf (tmp, "diff: %d / %d ms / %d ms / %d samples \n", asioDriverInfo.sysRefTime - (long)(asioDriverInfo.nanoSeconds / 1000000.0), asioDriverInfo.sysRefTime, (long)(asioDriverInfo.nanoSeconds / 1000000.0), (long)(asioDriverInfo.samples - last_samples));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/ringbuffer.c:242:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data1, data, size1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/ringbuffer.c:244:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data2, data, size2 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/ringbuffer.c:248:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data1, data, size1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/ringbuffer.c:263:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data, data1, size1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/ringbuffer.c:265:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data, data2, size2 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/coreaudio/ringbuffer.c:269:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( data, data1, size1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds.c:244:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( (void *) result, src, len+1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds.c:319:17: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( &newItems[i].guid, guidVector->items[i].lpGUID, sizeof(GUID) );;
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds.c:381:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( &namesAndGUIDs->items[namesAndGUIDs->count].guid, lpGUID, sizeof(GUID) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds.c:441:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( &winDsDeviceInfo->guid, lpGUID, sizeof(GUID) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds.c:628:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( &winDsDeviceInfo->guid, lpGUID, sizeof(GUID) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds.c:1087:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char envbuf[PA_ENV_BUF_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds.c:1095:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
minLatencyMsec = atoi( envbuf );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c:498:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( tmp_client_name, port + match_info.rm_so,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:314:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( (devHandle = open( deviceName, (mode == StreamMode_In ? O_RDONLY : O_WRONLY) | O_NONBLOCK )) < 0 )
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:502:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char deviceName[32];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:551:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( commonApi->deviceInfos, deviceInfos, numDevices * sizeof (PaDeviceInfo *) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:677:30: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ENSURE_( tempDevHandle = open( deviceInfo->name, flags ), paDeviceUnavailable );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:797:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ENSURE_( *idev = open( idevName, flags ), paDeviceUnavailable );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:808:30: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ENSURE_( *odev = open( odevName, flags ), paDeviceUnavailable );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:1846:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( (void *)userBuffer, buffer, sizeof (void *) * stream->capture->userChannelCount );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:1882:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( (void *)userBuffer, buffer, sizeof (void *) * stream->playback->userChannelCount );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/recplay.c:26:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[NUM_BYTES];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/recplay.c:39:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
audioDev = open (AUDIO, O_RDONLY, 0);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/recplay.c:78:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
audioDev = open (AUDIO, O_WRONLY, 0);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wasapi/pa_win_wasapi.cpp:517:33: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[512];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wasapi/pa_win_wasapi.cpp:855:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&wavex,closestMatch,sizeof(WAVEFORMATEXTENSIBLE));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wasapi/pa_win_wasapi.cpp:857:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&wavex,closestMatch,sizeof(WAVEFORMATEX));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:163:5: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR filterName[MAX_PATH];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:164:5: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR friendlyName[MAX_PATH];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:482:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( (void*)(((char*)ksProperty)+sizeof(KSPROPERTY)), instance, instanceCount );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:524:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((void*)((char*)ksProperty + sizeof(KSPROPERTY)), instance, instanceCount);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:1069:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( newConnect, (void*)pin->pinConnect, min(pin->pinConnectSize,size) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:1077:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( (void*)&(pin->ksDataFormatWfx->WaveFormatEx), format, GetWfexSize(format) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:1566:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char interfaceDetailsArray[sizeof(SP_DEVICE_INTERFACE_DETAIL_DATA) + (MAX_PATH * sizeof(WCHAR))];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:1568:5: [2] (buffer) TCHAR:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
TCHAR friendlyName[MAX_PATH];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:2664:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sourceSample[3];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:223:9: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t mmeErrorTextWide[ MAXERRORLENGTH ]; \
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:224:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mmeErrorText[ MAXERRORLENGTH ]; \
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:233:9: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t mmeErrorTextWide[ MAXERRORLENGTH ]; \
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:234:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mmeErrorText[ MAXERRORLENGTH ]; \
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:245:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mmeErrorText[ MAXERRORLENGTH ]; \
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:252:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mmeErrorText[ MAXERRORLENGTH ]; \
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:386:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char envbuf[PA_ENV_BUF_SIZE_];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:394:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
recommendedIndex = atoi( envbuf );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:2412:17: [2] (buffer) CopyMemory:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
CopyMemory( stream->output.waveHeaders[j][ stream->output.currentBufferIndex ].lpData,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_record.c:227:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fid = fopen("recorded.raw", "wb");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_sine_amp.c:92:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pad[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/pa_minlat.c:102:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/pa_minlat.c:112:38: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
framesPerBuffer = ( argc > 1 ) ? atol( argv[1] ) : DEFAULT_BUFFER_SIZE;
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/pa_minlat.c:163:26: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
outLatency = atol( str );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_buffer.c:123:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
device=atoi( args[1] );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_many.c:138:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
numLoops = atoi(argv[1]);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_read_record.c:170:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fid = fopen("recorded.raw", "wb");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_record.c:273:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fid = fopen("recorded.raw", "wb");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_sine8.c:59:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sine[TABLE_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_sine8.c:61:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sine[TABLE_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_mac/px_mac.c:49:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *buffers[PA_MAX_NUM_HOST_BUFFERS];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_mac/px_mac.c:91:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_unix_oss/px_unix_oss.c:68:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char PxDevice[20] = "/dev/mixerX";
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_unix_oss/px_unix_oss.c:85:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(PxDevice, O_RDWR);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_unix_oss/px_unix_oss.c:130:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
info->fd = open(PxDevice, O_RDWR);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_win_wmme/px_win_wmme.c:102:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_win_wmme/px_win_wmme.c:293:19: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mixer->src[startMic].name, "microphone");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_win_wmme/px_win_wmme.c:297:24: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(mixer->src[firstMic].name, "microphone");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/spandsp/plc.c:84:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s->history, buf + len - PLC_HISTORY_LEN, sizeof(int16_t)*PLC_HISTORY_LEN);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/spandsp/plc.c:91:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s->history + s->buf_ptr, buf, sizeof(int16_t)*(PLC_HISTORY_LEN - s->buf_ptr));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/spandsp/plc.c:93:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s->history, buf + (PLC_HISTORY_LEN - s->buf_ptr), sizeof(int16_t)*len);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/spandsp/plc.c:98:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s->history + s->buf_ptr, buf, sizeof(int16_t)*len);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/spandsp/plc.c:109:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, s->history, sizeof(int16_t)*s->buf_ptr);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/spandsp/plc.c:110:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s->history, s->history + s->buf_ptr, sizeof(int16_t)*(PLC_HISTORY_LEN - s->buf_ptr));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/spandsp/plc.c:111:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(s->history + PLC_HISTORY_LEN - s->buf_ptr, tmp, sizeof(int16_t)*s->buf_ptr);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/video.c:299:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, in_buf, in_buf_size);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/video.c:1241:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char yuv_buf[max_yuv_buf_size];
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/video.c:1242:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char rgb_buf[max_rgb_buf_size];
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.h:47:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name [ 128 ] ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.h:57:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void open () ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.h:79:38: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
void setMinRange ( float *axes ) { memcpy ( min , axes, num_axes * sizeof(float) ) ; }
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.h:80:38: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
void setMaxRange ( float *axes ) { memcpy ( max , axes, num_axes * sizeof(float) ) ; }
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.h:81:38: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
void setCenter ( float *axes ) { memcpy ( center, axes, num_axes * sizeof(float) ) ; }
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.h:83:44: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
void getMinRange ( float *axes ) const { memcpy ( axes, min , num_axes * sizeof(float) ) ; }
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.h:84:44: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
void getMaxRange ( float *axes ) const { memcpy ( axes, max , num_axes * sizeof(float) ) ; }
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.h:85:44: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
void getCenter ( float *axes ) const { memcpy ( axes, center, num_axes * sizeof(float) ) ; }
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:93:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname [128 ];
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:253:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void jsJoystick::open ()
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:264:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
os->fd = ::open ( os->fname, O_RDONLY | O_NONBLOCK) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:281:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char joyfname [ 1024 ] ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:294:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
joyfile = fopen ( joyfname, "r" ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:388:3: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open () ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:483:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ( axes, os->cache_axes, sizeof(float) * num_axes ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:42:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fname [ 128 ] ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:48:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void jsJoystick::open ()
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:57:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
os->fd = ::open ( os->fname, O_RDONLY ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:108:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf ( os->fname, "/dev/input/js%d", ident ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:111:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf ( os->fname, "/dev/js%d", ident ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:113:3: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open () ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:141:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ( axes, os->tmp_axes, sizeof(float) * num_axes ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:166:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ( axes, os->tmp_axes, sizeof(float) * num_axes ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:177:11: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy ( axes, os->tmp_axes, sizeof(float) * num_axes ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsMacOSX.cxx:163:2: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open();
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsMacOSX.cxx:166:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void jsJoystick::open()
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsMacOSX.cxx:200:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
rv = (*(os->hidDev))->open(os->hidDev, 0);
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsNone.cxx:32:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void jsJoystick::open ()
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsWindows.cxx:84:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char key [ 256 ] ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsWindows.cxx:85:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value [ 256 ] ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsWindows.cxx:87:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char OEMKey [ 256 ] ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsWindows.cxx:145:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void jsJoystick::open ()
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsWindows.cxx:226:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open();
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:313:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char message[1024 * 8];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:346:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(io->buf + io->len, buf, len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:350:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(io->buf + io->len, buf, len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:452:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mem[NS_VPRINTF_BUFFER_SIZE], *buf = mem;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:478:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *buf, src[60], dst[60];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:481:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(path, "a")) != NULL) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:596:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ina, he->h_addr_list[0], sizeof(*ina));
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:614:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char host[200];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:616:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:733:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cert[100], ca_cert[100];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:841:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ascii[17] = "";
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:871:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:978:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[NS_UDP_RECEIVE_BUFFER_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1110:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cert[100], ca_cert[100];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1175:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ctl_msg.message, data, len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1247:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define fopen(x, y) mg_fopen((x), (y))
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1248:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define open(x, y, z) mg_open((x), (y), (z))
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1417:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *config_options[NUM_OPTIONS];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1549:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_PATH_SIZE * 2], buf2[MAX_PATH_SIZE * 2], *p;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1561:3: [2] (buffer) MultiByteToWideChar:
Requires maximum length in CHARACTERS, not bytes (CWE-120).
MultiByteToWideChar(CP_UTF8, 0, buf, -1, wbuf, (int) wbuf_len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1570:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wpath[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1577:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wpath[MAX_PATH_SIZE], wmode[10];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1584:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wpath[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1792:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char headers[200], body[200];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1807:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if ((match_code = atoi(a.ptr)) > 0 && match_code == code) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1839:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char chunk_size[50];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1882:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[IOBUF_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1902:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[IOBUF_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1930:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[MAX_PATH_SIZE], buf2[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1942:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wcmd[MAX_PATH_SIZE], full_dir[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1943:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_PATH_SIZE], buf4[MAX_PATH_SIZE], buf5[MAX_PATH_SIZE],
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1961:31: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (interp == NULL && (fp = fopen(cmd, "r")) != NULL) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2006:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[500];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2048:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[CGI_ENVIRONMENT_SIZE]; // Environment buffer
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2049:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *vars[MAX_CGI_ENVIR_VARS]; // char *envp[]
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2194:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dir[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2252:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_REQUEST_SIZE], *s = buf;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2263:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, io->buf + s_len, len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2271:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(io->buf + 9, status, 3);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2272:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
conn->mg_conn.status_code = atoi(status);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2413:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ri->status_code = atoi(ri->uri);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2664:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mem[IOBUF_SIZE], *buf = mem;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2696:31: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union char64long16 { unsigned char c[64]; uint32_t l[16]; };
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2728:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buffer[64];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2731:61: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static void SHA1Transform(uint32_t state[5], const unsigned char buffer[64]) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2735:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(block, buffer, 64);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2792:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&context->buffer[j], data, (i = 64-j));
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2800:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&context->buffer[j], &data[i], len - i);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2803:32: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static void SHA1Final(unsigned char digest[20], SHA1_CTX *context) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2805:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char finalcount[8], c;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2855:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[500], sha[20], b64_sha[sizeof(sha) * 2];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2921:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char mem[4192], *copy = mem;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2935:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(copy + 2, data, data_len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2941:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(copy + 4, data, data_len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2949:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(copy + 10, data, data_len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2971:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mem[4192], *buf = mem;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3067:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char month_str[32];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3128:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char etag[64];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3195:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[64], lm[64], etag[64], range[64], headers[1000];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3278:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char d_name[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3290:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wpath[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3302:14: [2] (buffer) wcscat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Risk is low because the source is a constant string.
(void) wcscat(wpath, L"\\*");
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3358:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3427:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char size[64], mod[64], href[MAX_PATH_SIZE * 3];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3517:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mtime[64];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3571:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_PATH_SIZE * 3];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3603:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3645:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3652:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, path, p - path);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3677:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open(path, O_RDWR | O_CREAT | O_TRUNC | O_BINARY, 0644)) < 0) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3735:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3741:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(gpass, "r");
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3744:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(name, "r");
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3750:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(name, "r");
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3760:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char in[64];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3894:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, buf, len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3897:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p, buf, t);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3905:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ctx->in, buf, 64);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3912:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ctx->in, buf, len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3915:31: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static void MD5Final(unsigned char digest[16], MD5_CTX *ctx) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3941:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(digest, ctx->buf, 16);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3961:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *mg_md5(char buf[33], ...) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3961:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *mg_md5(char buf[33], ...) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3962:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char hash[16];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3984:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ha2[32 + 1], expected_response[32 + 1];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4005:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[256], f_user[256], ha1[256], f_domain[256], user[100], nonce[100],
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4054:41: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
} else if (auth_file != NULL && (fp = fopen(auth_file, "r")) != NULL) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4111:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[IOBUF_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4120:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file_name[IOBUF_SIZE], path[MAX_PATH_SIZE], *p;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4148:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(path, "rb")) == NULL) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4165:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[IOBUF_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4181:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[IOBUF_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4246:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((fp = fopen(path, "rb")) == NULL) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4349:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char proto[10], host[500], cert[500], addr[1000];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4374:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4421:35: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
} else if ((conn->endpoint.fd = open(path, O_RDONLY | O_BINARY, 0)) != -1) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4439:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char path[MAX_PATH_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4548:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(conn->request, io->buf, conn->request_len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4697:39: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = (path == NULL) ? NULL : fopen(path, "a+");
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4698:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[64], user[100];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4783:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[IOBUF_SIZE];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4945:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, c, sizeof(*tmp));
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:5009:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:5038:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:5221:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8 * 1024];
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.h:39:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char remote_ip[48]; // Max IPv6 string length is 45 characters
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.h:40:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char local_ip[48]; // Local IP address
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.h:131:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *mg_md5(char buf[33], ...);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.h:131:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *mg_md5(char buf[33], ...);
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.c:36:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAXMSG];
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.c:42:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buf, "\015\012");
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.c:56:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[MAXMSG];
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.c:136:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port = argc > 2 ? atoi(argv[2]) : DFLTPORT;
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:41:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char _buffer[BUFLEN];
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:102:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFLEN];
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:117:2: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buf, "\015\012");
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:171:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int port = argc > 2 ? atoi(argv[2]) : 5501;
data/flightgear-2020.1.3+dfsg/src/AIModel/AIFlightPlanCreate.cxx:333:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[10];
data/flightgear-2020.1.3+dfsg/src/AIModel/AIFlightPlanCreate.cxx:430:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[10];
data/flightgear-2020.1.3+dfsg/src/AIModel/AIFlightPlanCreate.cxx:670:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[16];
data/flightgear-2020.1.3+dfsg/src/AIModel/AIFlightPlanCreate.cxx:931:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[12];
data/flightgear-2020.1.3+dfsg/src/AIModel/AIFlightPlanCreatePushBack.cxx:111:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[10];
data/flightgear-2020.1.3+dfsg/src/AIModel/AIFlightPlanCreatePushBack.cxx:163:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[16];
data/flightgear-2020.1.3+dfsg/src/AIModel/AIShip.cxx:889:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Hour = atoi(theTime.substr(0,2).c_str());
data/flightgear-2020.1.3+dfsg/src/AIModel/AIShip.cxx:890:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Minute = atoi(theTime.substr(3,5).c_str());
data/flightgear-2020.1.3+dfsg/src/AIModel/AIShip.cxx:891:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
Second = atoi(theTime.substr(6,8).c_str());
data/flightgear-2020.1.3+dfsg/src/ATC/atcdialog.cxx:156:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8];
data/flightgear-2020.1.3+dfsg/src/ATC/atcdialog.cxx:263:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[bufsize];
data/flightgear-2020.1.3+dfsg/src/ATC/trafficcontrol.cxx:806:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[7];
data/flightgear-2020.1.3+dfsg/src/ATC/trafficcontrol.cxx:818:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[5];
data/flightgear-2020.1.3+dfsg/src/Aircraft/flightrecorder.cxx:252:25: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strbuf[20];
data/flightgear-2020.1.3+dfsg/src/Aircraft/replay.cxx:239:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
len = sprintf(pStrBuffer,"%u:%02u:%02u",h,m,s);
data/flightgear-2020.1.3+dfsg/src/Aircraft/replay.cxx:241:15: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
len = sprintf(pStrBuffer,"%u:%02u",m,s);
data/flightgear-2020.1.3+dfsg/src/Aircraft/replay.cxx:250:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&pStrBuffer[len],".%u",d);
data/flightgear-2020.1.3+dfsg/src/Aircraft/replay.cxx:316:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char StrBuffer[30];
data/flightgear-2020.1.3+dfsg/src/Aircraft/replay.cxx:459:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char StrBuffer[30];
data/flightgear-2020.1.3+dfsg/src/Aircraft/replay.cxx:889:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char StrBuffer[30];
data/flightgear-2020.1.3+dfsg/src/Aircraft/replay.cxx:910:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_str[256];
data/flightgear-2020.1.3+dfsg/src/Airports/apt_loader.cxx:169:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rowCode = atoi(line.c_str());
data/flightgear-2020.1.3+dfsg/src/Airports/apt_loader.cxx:415:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double length = atoi( token[5].c_str() );
data/flightgear-2020.1.3+dfsg/src/Airports/apt_loader.cxx:416:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
double width = atoi( token[8].c_str() );
data/flightgear-2020.1.3+dfsg/src/Airports/apt_loader.cxx:426:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int surface_code = atoi( token[10].c_str() );
data/flightgear-2020.1.3+dfsg/src/Airports/apt_loader.cxx:484:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int surface_code = atoi( token[2].c_str() );
data/flightgear-2020.1.3+dfsg/src/Airports/apt_loader.cxx:604:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int surface_code = atoi( token[7].c_str() );
data/flightgear-2020.1.3+dfsg/src/Airports/apt_loader.cxx:699:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int freqKhz = atoi(token[1].c_str()) * 10;
data/flightgear-2020.1.3+dfsg/src/Airports/dynamicloader.cxx:107:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
index = std::atoi(atts.getValue(i));
data/flightgear-2020.1.3+dfsg/src/Airports/dynamicloader.cxx:170:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
index = std::atoi(atts.getValue(i));
data/flightgear-2020.1.3+dfsg/src/Airports/dynamicloader.cxx:176:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
onRunway = std::atoi(atts.getValue(i)) != 0;
data/flightgear-2020.1.3+dfsg/src/Airports/dynamicloader.cxx:212:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
begin = std::atoi(atts.getValue(i));
data/flightgear-2020.1.3+dfsg/src/Airports/dynamicloader.cxx:214:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
end = std::atoi(atts.getValue(i));
data/flightgear-2020.1.3+dfsg/src/Airports/dynamicloader.cxx:216:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
isPushBackRoute = std::atoi(atts.getValue(i)) != 0;
data/flightgear-2020.1.3+dfsg/src/Airports/dynamicloader.cxx:265:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int valueAsInt = atoi(value.c_str());
data/flightgear-2020.1.3+dfsg/src/Airports/dynamics.cxx:917:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char atisSequenceString[2];
data/flightgear-2020.1.3+dfsg/src/Airports/runwayprefloader.cxx:99:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return (atoi(hour.c_str()) * 3600 + atoi(minute.c_str()) * 60);
data/flightgear-2020.1.3+dfsg/src/Airports/runwayprefloader.cxx:99:39: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return (atoi(hour.c_str()) * 3600 + atoi(minute.c_str()) * 60);
data/flightgear-2020.1.3+dfsg/src/Airports/runways.cxx:74:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/flightgear-2020.1.3+dfsg/src/Airports/runways.cxx:75:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int rn = atoi(ident.substr(0,2).c_str());
data/flightgear-2020.1.3+dfsg/src/Airports/runways.cxx:81:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%02i", rn);
data/flightgear-2020.1.3+dfsg/src/Airports/xmlloader.cxx:79:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[128];
data/flightgear-2020.1.3+dfsg/src/Autopilot/route_mgr.cxx:609:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char eta_str[64];
data/flightgear-2020.1.3+dfsg/src/Autopilot/route_mgr.cxx:759:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mgr->jumpToIndex(atoi(s + 5));
data/flightgear-2020.1.3+dfsg/src/Autopilot/route_mgr.cxx:761:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mgr->removeLegAtIndex(atoi(s + 7));
data/flightgear-2020.1.3+dfsg/src/Cockpit/NavDisplay.cxx:127:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[512];
data/flightgear-2020.1.3+dfsg/src/EmbeddedResources/fgrcc.cxx:464:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4096];
data/flightgear-2020.1.3+dfsg/src/EmbeddedResources/fgrcc.cxx:1060:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
output.open(outputCppFile);
data/flightgear-2020.1.3+dfsg/src/Environment/atmosphere.cxx:166:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[100];
data/flightgear-2020.1.3+dfsg/src/Environment/atmosphere.cxx:280:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[bs];
data/flightgear-2020.1.3+dfsg/src/Environment/fgclouds.cxx:221:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char variety_name[50];
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:51:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
open ();
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:54:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[256];
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:106:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! data_client.open( false ) ) {
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:122:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! data_server.open( false ) ) {
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:164:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[256];
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:167:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "/longitude-deg?value=%.8f", lon );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:172:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "/latitude-deg?value=%.8f", lat );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:177:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "/altitude-ft?value=%.8f", alt );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:182:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "/ground-m?value=%.8f", ground );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:187:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "/speed-kts?value=%.8f", speed );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:192:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "/heading-deg?value=%.8f", heading );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:200:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "/reset?value=ground" );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:202:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "/reset?value=air" );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:87:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pd1 = fopen( fifo_name_1.c_str(), "w" );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:92:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pd2 = fopen( fifo_name_2.c_str(), "r" );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:149:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf + 3, cmd, len );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:192:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf, cmd, len );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:245:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[256];
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:248:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "longitude-deg=%.8f", lon );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:251:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "latitude-deg=%.8f", lat );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:254:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "altitude-ft=%.8f", alt );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:257:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "ground-m=%.8f", ground );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:260:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "speed-kts=%.8f", speed );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:263:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "heading-deg=%.8f", heading );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:267:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "aircraft-weight-lbs=%.2f", weight );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:273:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "aircraft-cg-offset-inches=%.2f", cg_offset );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:281:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "reset=ground" );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:283:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "reset=air" );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:310:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[256];
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:313:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "init longitude-deg=%.8f", lon );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:316:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "init latitude-deg=%.8f", lat );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:319:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "init altitude-ft=%.8f", alt );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:322:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "init ground-m=%.8f", ground );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:325:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "init speed-kts=%.8f", speed );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:328:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "init heading-deg=%.8f", heading );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:332:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "init aircraft-weight-lbs=%.2f", weight );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:338:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "init aircraft-cg-offset-inches=%.2f", cg_offset );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:346:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "reset ground" );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:348:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "reset air" );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:392:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[256];
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:393:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "aircraft-weight-lbs=%.2f", weight );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:400:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[256];
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:401:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "aircraft-cg-offset-inches=%.2f", cg_offset );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:413:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( ptr, (char *)(&ctrls), length );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:495:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[256];
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:506:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "init aircraft-weight-lbs=%.2f", weight );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:513:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "init aircraft-cg-offset-inches=%.2f", cg_offset );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:526:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( cmd, "update %d", iterations );
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGFDMExec.cpp:109:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (num) debug_lvl = atoi(num); // set debug level
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGFDMExec.cpp:136:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(num) != 0) disperse = 1; // set dispersions on
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:117:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char highint[5];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:119:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char halfint[5];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:121:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char normint[6];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:123:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char reset[5];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:125:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char underon[5];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:127:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char underoff[6];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:129:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fgblue[6];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:131:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fgcyan[6];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:133:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fgred[6];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:135:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fggreen[6];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/FGJSBBase.h:137:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char fgdef[6];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/JSBSim.cpp:484:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[100];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGInputSocket.cpp:79:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
SockPort = atoi(el->GetAttributeValue("port").c_str());
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputSocket.cpp:105:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
SockPort = atoi(port.c_str());
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGOutputTextFile.cpp:87:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
datafile.open(Filename);
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGUDPInputSocket.cpp:70:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rate = atoi(el->GetAttributeValue("rate").c_str());
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGXMLElement.cpp:627:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
disperse = (atoi(num) == 1); // set dispersions
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGXMLFileRead.h:70:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
infile.open(filename);
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGfdmSocket.cpp:122:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&scktName.sin_addr, host->h_addr_list[0], host->h_length);
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/input_output/FGfdmSocket.cpp:221:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024];
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGPropagate.cpp:667:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfile.open(path);
data/flightgear-2020.1.3+dfsg/src/FDM/JSBSim/models/FGPropagate.cpp:688:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
outfile.open(path);
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_main.c:45:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
out=fopen("trims.out","w");
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_main.c:133:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char axis[10];
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_main.c:135:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
out=fopen("trim_stall.summary","w");
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_main.c:193:28: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(axis,"lift");
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_main.c:195:28: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(axis,"thrust");
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/c172_main.c:197:28: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(axis,"pitch");
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:190:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[ 0].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:192:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[ 1].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:194:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[ 2].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:196:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[ 3].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:198:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[ 4].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:200:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[ 5].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:202:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[ 6].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:204:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[ 7].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:206:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[ 8].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:208:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[ 9].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:210:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[10].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:212:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[11].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:214:13: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( Continuous_States[12].Symbol.Par_Name,
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:317:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[256];
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:294:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sim_control_.date_string, "%06ld", date);
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:295:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(sim_control_.time_stamp, "%02d:%02d:%02d",
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:346:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char asc1name[MAX_FILE_NAME_LENGTH] = "run.asc1";
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:347:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tabname[MAX_FILE_NAME_LENGTH] = "run.dat";
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:348:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fltname[MAX_FILE_NAME_LENGTH] = "run.flt";
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:349:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char matname[MAX_FILE_NAME_LENGTH] = "run.m";
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_matrix.c:167:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
free((char *) (m[nrl]+ncl-NR_END));
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_sim_control.h:98:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char simname[64]; /* name of simulation */
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_sim_control.h:100:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date_string[7]; /* like "931220" */
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_sim_control.h:101:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_stamp[9]; /* like "13:00:00" */
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_sim_control.h:103:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char userid[L_cuserid]; /* who is running this sim */
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_sym.h:121:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char SYMBOL_NAME[64];
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c:543:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[256];
data/flightgear-2020.1.3+dfsg/src/FDM/SP/ADA.cxx:188:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char OutBuffer[nbytes];
data/flightgear-2020.1.3+dfsg/src/FDM/SP/ADA.cxx:196:28: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool result = fdmsock->open(SG_IO_OUT);
data/flightgear-2020.1.3+dfsg/src/FDM/SP/ADA.cxx:217:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Buffer[numberofbytes];
data/flightgear-2020.1.3+dfsg/src/FDM/SP/ADA.cxx:218:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char OutBuffer[nbytes];
data/flightgear-2020.1.3+dfsg/src/FDM/SP/ADA.cxx:225:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&sixdof_to_visuals, &Buffer, sizeof (Buffer));
data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_flapdata.cpp:266:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char numstr[200];
data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_menu.cpp:433:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fout.open("uiuc_record.dat");
data/flightgear-2020.1.3+dfsg/src/FDM/UIUCModel/uiuc_parsefile.cpp:73:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
file.open(fileName.c_str());
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:190:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:191:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/consumables/fuel/tank[%d]/level-lbs", i);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:196:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/consumables/fuel/tank[%d]/density-ppg", i);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:203:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/consumables/fuel/tank[%d]/capacity-gal_us", i);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:340:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:436:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char b[300];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:874:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:875:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/engines/engine[%d]", _nextEngine++);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:932:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:933:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/engines/engine[%d]", _nextEngine++);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/FGFDM.cpp:1250:25: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else return atol(val);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Hitch.cpp:284:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char myCallsign[256]="***********";
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Hitch.cpp:602:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char towNode[256];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Hitch.cpp:610:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char MPcallsign[256]="";
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.cpp:1450:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE*f=fopen("c:\\fgmsvc\\bat\\log.txt","at");
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.cpp:1451:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!f) f=fopen("c:\\fgmsvc\\bat\\log.txt","wt");
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.cpp:1664:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(text,"/rotors/gear/total-torque");
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.hpp:200:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char _alphaoutput[8][256];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.hpp:201:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char _name[256];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotorpart.hpp:119:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char _alphaoutputbuf[2][256];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/YASim.cxx:74:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/YASim.cxx:76:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, " CG: %.3f, %.3f, %.3f", cg[0], cg[1], cg[2]);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/YASim.cxx:95:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/YASim.cxx:97:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/engines/engine[%d]/fuel-flow-gph", i); fgUntie(buf);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/YASim.cxx:98:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/engines/engine[%d]/rpm", i); fgUntie(buf);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/YASim.cxx:99:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/engines/engine[%d]/mp-osi", i); fgUntie(buf);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/YASim.cxx:100:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/engines/engine[%d]/egt-degf", i); fgUntie(buf);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/YASim.cxx:101:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "/engines/engine[%d]/oil-temperature-degf", i); fgUntie(buf);
data/flightgear-2020.1.3+dfsg/src/FDM/fdm_shell.cxx:306:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port1 = atoi( net_options.substr(begin, end - begin).c_str() );
data/flightgear-2020.1.3+dfsg/src/FDM/fdm_shell.cxx:312:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port2 = atoi( net_options.substr(begin, end - begin).c_str() );
data/flightgear-2020.1.3+dfsg/src/FDM/fdm_shell.cxx:318:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port3 = atoi( net_options.substr(begin, end - begin).c_str() );
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:236:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[FORMAT_BUFSIZE + 1];
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:680:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (open) {
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:1529:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
_list = new char *[value_nodes.size() + 1];
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:1532:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
_list[i] = strdup((char *)value_nodes[i]->getStringValue());
data/flightgear-2020.1.3+dfsg/src/GUI/InstallSceneryDialog.cxx:88:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::ReadOnly);
data/flightgear-2020.1.3+dfsg/src/GUI/InstallSceneryDialog.cxx:125:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::ReadOnly);
data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx:767:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx:805:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx:1124:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx:1157:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx:1283:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx:1324:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx:1446:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx:1512:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx:1546:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/flightgear-2020.1.3+dfsg/src/GUI/MapWidget.cxx:2046:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[1024];
data/flightgear-2020.1.3+dfsg/src/GUI/PathUrlHelper.cxx:20:25: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void FileDialogWrapper::open()
data/flightgear-2020.1.3+dfsg/src/GUI/QtMessageBox.cxx:36:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char * fakeargv[2] = {fakeargv0, 0};
data/flightgear-2020.1.3+dfsg/src/GUI/WaypointList.cxx:478:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[128];
data/flightgear-2020.1.3+dfsg/src/GUI/WaypointList.cxx:508:15: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
::memcpy(buffer, s.c_str(), bytesToCopy);
data/flightgear-2020.1.3+dfsg/src/GUI/WindowsFileDialog.cxx:69:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Filestring[MAX_PATH] = "\0";
data/flightgear-2020.1.3+dfsg/src/GUI/WindowsFileDialog.cxx:88:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((void*)opf.lpstrFilter, (void*)extensions.data(), extensionsLen);
data/flightgear-2020.1.3+dfsg/src/GUI/WindowsFileDialog.cxx:123:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pathBuf[MAX_PATH] = "\0";
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:203:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char win32_name[1024];
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:305:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( (f = fopen(filename, "r")) == NULL )
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:309:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(filename, "wb");
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:373:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buffer + i*bytesPerImageRow + xOffset, /* Dest */
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:444:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[60];
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:447:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char time_str[20];
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:605:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( (fp = fopen(filename, "r")) == NULL )
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:647:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( (fp = fopen(filename, "r")) == NULL )
data/flightgear-2020.1.3+dfsg/src/GUI/property_list.cxx:281:9: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(_entries[1], "..");
data/flightgear-2020.1.3+dfsg/src/Input/FGEventInput.cxx:298:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (open) {
data/flightgear-2020.1.3+dfsg/src/Input/FGHIDEventInput.cxx:771:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf + 1, data.data(), len - 1);
data/flightgear-2020.1.3+dfsg/src/Input/FGHIDEventInput.cxx:869:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((void*) &v, bytes + wholeBytesToSkip, bytesToCopy);
data/flightgear-2020.1.3+dfsg/src/Input/FGLinuxEventInput.cxx:293:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if( (fd = ::open( devname.c_str(), O_RDWR )) == -1 ) {
data/flightgear-2020.1.3+dfsg/src/Input/FGLinuxEventInput.cxx:302:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[ABS_CNT/sizeof(unsigned char)/8];
data/flightgear-2020.1.3+dfsg/src/Input/FGLinuxEventInput.cxx:338:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char mask[KEY_CNT/sizeof(unsigned char)/8];
data/flightgear-2020.1.3+dfsg/src/Input/FGLinuxEventInput.cxx:339:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char flag[KEY_CNT/sizeof(unsigned char)/8];
data/flightgear-2020.1.3+dfsg/src/Input/FGLinuxEventInput.cxx:359:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[SW_CNT/sizeof(unsigned char)/8];
data/flightgear-2020.1.3+dfsg/src/Input/FGLinuxEventInput.cxx:434:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char ugly_buffer[128];
data/flightgear-2020.1.3+dfsg/src/Input/FGLinuxEventInput.cxx:445:7: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( ugly_buffer, "unknown-%u-%u", (unsigned)linuxEventData.type, (unsigned)linuxEventData.code );
data/flightgear-2020.1.3+dfsg/src/Input/fgjs.cxx:126:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[16];
data/flightgear-2020.1.3+dfsg/src/Input/fgjs.cxx:128:44: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
xfs[ jss->getCurrentJoystickId() ].open(filename, ios::out);
data/flightgear-2020.1.3+dfsg/src/Input/fgjs.cxx:235:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char _hostname[256];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD.cxx:637:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp2[BUFSIZE];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_dial.cxx:39:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFSIZE];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_gauge.cxx:47:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFSIZE];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD_label.cxx:146:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFSIZE+1];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89.cxx:1472:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89.cxx:1493:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89.cxx:1511:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89.cxx:1520:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89.cxx:1534:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89.cxx:1543:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89.cxx:1553:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89.cxx:1567:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page.cxx:87:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page.cxx:224:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_alt.cxx:54:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_alt.cxx:71:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[5];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_apt.cxx:110:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[3];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_apt.cxx:127:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_apt.cxx:152:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[3];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:100:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ClockTime t(atoi(th.c_str()), atoi(tm.c_str()));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:100:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ClockTime t(atoi(th.c_str()), atoi(tm.c_str()));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:105:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:119:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%01i", _alarmIn.hr());
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:121:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%02i", _alarmIn.min());
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:219:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_alarmTime.set_hr(atoi(fgGetString("/instrumentation/clock/indicated-hour")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:220:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_alarmTime.set_min(atoi(fgGetString("/instrumentation/clock/indicated-min")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:230:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_alarmTime.set_hr(atoi(fgGetString("/instrumentation/clock/indicated-hour")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:231:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_alarmTime.set_min(atoi(fgGetString("/instrumentation/clock/indicated-min")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:249:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
t.set_hr(atoi(fgGetString("/instrumentation/clock/indicated-hour")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:250:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
t.set_min(atoi(fgGetString("/instrumentation/clock/indicated-min")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:263:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
t.set_hr(atoi(fgGetString("/instrumentation/clock/indicated-hour")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:264:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
t.set_min(atoi(fgGetString("/instrumentation/clock/indicated-min")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:284:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_alarmTime.set_hr(atoi(fgGetString("/instrumentation/clock/indicated-hour")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:285:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_alarmTime.set_min(atoi(fgGetString("/instrumentation/clock/indicated-min")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:295:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_alarmTime.set_hr(atoi(fgGetString("/instrumentation/clock/indicated-hour")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:296:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_alarmTime.set_min(atoi(fgGetString("/instrumentation/clock/indicated-min")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:312:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
t.set_hr(atoi(fgGetString("/instrumentation/clock/indicated-hour")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:313:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
t.set_min(atoi(fgGetString("/instrumentation/clock/indicated-min")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:326:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
t.set_hr(atoi(fgGetString("/instrumentation/clock/indicated-hour")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_cal.cxx:327:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
t.set_min(atoi(fgGetString("/instrumentation/clock/indicated-min")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_int.cxx:93:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[3];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_int.cxx:122:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nav.cxx:105:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nav.cxx:120:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[5];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nav.cxx:231:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
etah += atoi(fgGetString("/instrumentation/clock/indicated-hour"));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nav.cxx:232:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
etam += atoi(fgGetString("/instrumentation/clock/indicated-min"));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nav.cxx:240:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nav.cxx:254:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nav.cxx:358:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf0[4];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nav.cxx:374:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_nav.cxx:387:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf3[6];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_ndb.cxx:84:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[3];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_oth.cxx:56:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/KLN89/kln89_page_vor.cxx:84:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[3];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/clock.cxx:117:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(_indicated_string, "%02d:%02d:%02d", hour, min, sec);
data/flightgear-2020.1.3+dfsg/src/Instrumentation/clock.cxx:119:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(_indicated_short_string, "%02d:%02d", hour, min);
data/flightgear-2020.1.3+dfsg/src/Instrumentation/clock.cxx:121:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(_local_short_string, "%02d:%02d", lhour, min);
data/flightgear-2020.1.3+dfsg/src/Instrumentation/dclgps.cxx:283:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if(_alarmTime.hr() == atoi(fgGetString("/instrumentation/clock/indicated-hour"))
data/flightgear-2020.1.3+dfsg/src/Instrumentation/dclgps.cxx:284:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
&& _alarmTime.min() == atoi(fgGetString("/instrumentation/clock/indicated-min"))) {
data/flightgear-2020.1.3+dfsg/src/Instrumentation/dclgps.cxx:491:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/dclgps.cxx:659:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fin.open(path, ios::in);
data/flightgear-2020.1.3+dfsg/src/Instrumentation/dclgps.cxx:666:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/dclgps.cxx:768:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sequence_number = atoi(s.substr(26,3).c_str());
data/flightgear-2020.1.3+dfsg/src/Instrumentation/dclgps.cxx:974:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_powerOnTime.set_hr(atoi(fgGetString("/instrumentation/clock/indicated-hour")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/dclgps.cxx:975:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_powerOnTime.set_min(atoi(fgGetString("/instrumentation/clock/indicated-min")));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/dme.cxx:146:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[16];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/gps.cxx:50:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char TTW_str[9];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/gps.cxx:999:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char identBuf[16];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/gps.cxx:1027:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char identBuf[16];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/kr_87.cxx:405:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char formatted_timer[128];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/kr_87.cxx:479:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sfreq[128];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/mk_viii.cxx:845:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(effective_categories, categories, sizeof(categories));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/mk_viii.cxx:2452:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&saved_outputs, &mk->io_handler.outputs, sizeof(mk->io_handler.outputs));
data/flightgear-2020.1.3+dfsg/src/Instrumentation/navradio.cxx:380:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[16];
data/flightgear-2020.1.3+dfsg/src/Instrumentation/navradio.cxx:381:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( tmp, "%.2f", freq_node->getDoubleValue() );
data/flightgear-2020.1.3+dfsg/src/Instrumentation/navradio.cxx:383:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( tmp, "%.2f", alt_freq_node->getDoubleValue() );
data/flightgear-2020.1.3+dfsg/src/Instrumentation/tacan.cxx:340:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[2] = "0";
data/flightgear-2020.1.3+dfsg/src/Main/bootstrap.cxx:254:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char _hostname[256];
data/flightgear-2020.1.3+dfsg/src/Main/fg_init.cxx:508:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = ::open(ps.c_str(), O_RDONLY, 0644);
data/flightgear-2020.1.3+dfsg/src/Main/fg_init.cxx:533:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16];
data/flightgear-2020.1.3+dfsg/src/Main/fg_init.cxx:537:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int fd = ::open(ps.c_str(), O_WRONLY | O_CREAT | O_TRUNC, 0644);
data/flightgear-2020.1.3+dfsg/src/Main/fg_io.cxx:75:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
using std::atoi;
data/flightgear-2020.1.3+dfsg/src/Main/fg_io.cxx:190:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int rate = atoi(tokens[2].c_str());
data/flightgear-2020.1.3+dfsg/src/Main/fg_io.cxx:193:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
short port = atoi(tokens[4].c_str());
data/flightgear-2020.1.3+dfsg/src/Main/fg_io.cxx:300:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
repeat = atoi(tokens[7].c_str());
data/flightgear-2020.1.3+dfsg/src/Main/fg_io.cxx:372:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
p->open();
data/flightgear-2020.1.3+dfsg/src/Main/fg_props.cxx:254:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[64]; // FIXME
data/flightgear-2020.1.3+dfsg/src/Main/fg_props.cxx:263:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "%.4d-%.2d-%.2dT%.2d:%.2d:%.2d",
data/flightgear-2020.1.3+dfsg/src/Main/fg_props.cxx:316:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[16];
data/flightgear-2020.1.3+dfsg/src/Main/fg_props.cxx:344:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char longitudeBuffer[64];
data/flightgear-2020.1.3+dfsg/src/Main/fg_props.cxx:346:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(longitudeBuffer, s.c_str(), s.size() + 1);
data/flightgear-2020.1.3+dfsg/src/Main/fg_props.cxx:356:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char latitudeBuffer[64];
data/flightgear-2020.1.3+dfsg/src/Main/fg_props.cxx:358:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(latitudeBuffer, s.c_str(), s.size() + 1);
data/flightgear-2020.1.3+dfsg/src/Main/locale.cxx:501:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v[2];
data/flightgear-2020.1.3+dfsg/src/Main/locale.cxx:530:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char v[2];
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:132:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:140:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "--start-date-gmt=%4d:%02d:%02d:%02d:%02d:00 ",
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:146:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *coverage_string[5] = {
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:161:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "--prop:/environment/clouds/layer[%d]/elevation-ft=%.0lf ", i, altitude);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:163:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "--prop:/environment/clouds/layer[%d]/thickness-ft=500 ", i);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:178:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "--prop:/environment/config/boundary/entry[%d]/", i);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:181:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[pos], "elevation-ft=%.0lf", elevation);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:183:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[pos], "turbulence-norm=%.0lf", 0.0);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:187:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[pos], "visibility-m=%.0lf", visibility);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:191:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[pos], "temperature-degc=%.0lf", temperature);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:195:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[pos], "dewpoint-degc=%.0lf", dewpoint);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:199:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[pos], "pressure-sea-level-inhg=%.0lf", pressure);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:203:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[pos], "wind-from-heading-deg=%d", wind_dir);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:207:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[pos], "wind-speed-kt=%.0lf", wind_speed);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:217:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(buf, "--wind=");
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:219:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[strlen(buf)], "%d:%d", range_from, range_to);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:221:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[strlen(buf)], "%d", wind_dir);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:222:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[strlen(buf)], "@%.0lf", wind_speed);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:224:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(&buf[strlen(buf)], ":%.0lf", gust_speed);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:255:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[256], *t;
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:316:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
http.setProxy(proxy_host, atoi(proxy_port.c_str()));
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:108:1: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoi( const string& str )
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:110:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return ::atoi( str.c_str() );
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:421:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char num[256];
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:451:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int value = atoi(num);
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:468:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *time_str, num[256];
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:956:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
xsize = atoi(geometry.substr(0, i));
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:957:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ysize = atoi(geometry.substr(i+1));
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:1146:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fileNameBuffer[100];
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:1469:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char callsign[11];
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:1549:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ret = n->setIntValue(atoi(value.c_str()));
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:1551:47: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ret = n->setBoolValue(value == "true" || atoi(value.c_str()) != 0);
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:1962:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fgSetInt( desc->property, atoi( arg_value ) );
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1054:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!mSocket->open(false)) {
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1198:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Msg[MAX_PACKET_SIZE];
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1678:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Msg[sizeof(T_MsgHdr) + sizeof(T_ChatMsg)];
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1684:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (Msg, &MsgHdr, sizeof(T_MsgHdr));
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1685:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (Msg + sizeof(T_MsgHdr), &ChatMsg, sizeof(T_ChatMsg));
data/flightgear-2020.1.3+dfsg/src/Navaids/FlightPlan.cxx:1295:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/flightgear-2020.1.3+dfsg/src/Navaids/LevelDXML.cxx:187:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_speed = atoi(_text.c_str());
data/flightgear-2020.1.3+dfsg/src/Navaids/LevelDXML.cxx:213:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_courseFlag = atoi(_text.c_str());
data/flightgear-2020.1.3+dfsg/src/Navaids/NavDataCache.cxx:2071:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(nresult, result, sizeof(char*) * numMatches);
data/flightgear-2020.1.3+dfsg/src/Navaids/NavDataCache.cxx:2089:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, sqlite3_column_text(stmt, 1), nameLength);
data/flightgear-2020.1.3+dfsg/src/Navaids/NavDataCache.cxx:2095:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dst, sqlite3_column_text(stmt, 0), icaoLength);
data/flightgear-2020.1.3+dfsg/src/Navaids/awynet.cxx:267:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[32];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:132:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGATCInput::open() {
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:158:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
analog_in_fd = ::open( analog_in_file, O_RDONLY );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:161:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:167:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
radios_fd = ::open( radios_file, O_RDWR );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:170:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:176:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
switches_fd = ::open( switches_file, O_RDONLY );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:179:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:205:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base_name[256];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:652:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char switch_data[ATC_SWITCH_BYTES],
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:992:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:1001:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:1010:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:67:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[2];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:82:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[2];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:113:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGATCMain::open() {
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:133:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
lock0_fd = ::open( lock0_file.c_str(), O_RDWR );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:136:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[256];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:142:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
lock1_fd = ::open( lock1_file.c_str(), O_RDWR );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:145:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[256];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:153:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
input0->open();
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:157:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
input1->open();
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:161:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
output0->open( lock0_fd );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:165:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
output1->open( lock1_fd );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:268:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[256];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:277:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[256];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:64:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[2];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:83:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[2];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:115:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char data[ATC_ANALOG_OUT_CHANNELS*2] )
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:135:43: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static int ATCSetRadios( int fd, unsigned char data[ATC_RADIO_DISPLAY_BYTES] ) {
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:162:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:189:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:217:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:245:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGATCOutput::open( int lock_fd ) {
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:273:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
analog_out_fd = ::open( analog_out_file, O_WRONLY );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:276:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:282:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
lamps_fd = ::open( lamps_file, O_WRONLY );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:285:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:291:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
radio_display_fd = ::open( radio_display_file, O_RDWR );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:294:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:300:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
stepper_fd = ::open( stepper_file, O_RDWR );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:303:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:416:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char base_name[256];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:663:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char digits[10];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:1079:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:1088:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:1097:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[300];
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:53:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg_z[32], msg_A[32], msg_B[32], msg_C[32], msg_D[32];
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:54:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg_Q[32], msg_T[32], msg_type2[256];
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:64:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_z, "z%05.0f\r\n", fdm.get_Altitude() );
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:78:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_A, "A%c %02d %04.0f\r\n", dir, deg, min);
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:90:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_B, "B%c %03d %04.0f\r\n", dir, deg, min);
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:100:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_C, "C%03.0f\r\n", gnd_trk_mag);
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:107:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_D, "D%03.0f\r\n", speed_kt);
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:122:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_Q, "Q%c%03.0f\r\n", dir, magdeg * 10.0 );
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:127:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_T, "T---------\r\n" );
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:132:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_type2, "w01%c\r\n", (char)65 );
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:355:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGAV400::open() {
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:364:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:60:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg_a[32], msg_b[32], msg_c[32], msg_d[32], msg_e[32];
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:61:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg_f[32], msg_h[32], msg_i[32], msg_j[32], msg_k[32], msg_l[32], msg_r[32];
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:62:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg_type2[256];
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:78:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_a, "a%c %03d %04.0f\r\n", dir, deg, min);
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:90:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_b, "b%c %03d %04.0f\r\n", dir, deg, min);
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:95:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_c, "c%05.0f\r\n", alt );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:106:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_d, "d%c%03.0f\r\n", dir, ve_kts );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:117:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_e, "e%c%03.0f\r\n", dir, vn_kts );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:128:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_f, "f%c%04.0f\r\n", dir, climb_fpm );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:132:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_h, "h%04d\r\n", (int)(obs*10) );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:137:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_i, "i%04.0f\r\n", fuel*10.0 );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:145:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_j, "j%04.0f\r\n", gph*10.0 );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:148:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_k, "k%04d%02d%02d%02d%02d%02d\r\n",
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:159:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_l, "l%05.0f\r\n", alt );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:162:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_r, "rA\r\n" );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:165:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_type2, "w01%c\r\n", (char)65 );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:209:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int pos = atoi(num.c_str());
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:238:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGAV400Sim::open() {
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:247:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:68:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg_h[32], msg_i[32], msg_j[32], msg_k[32], msg_l[32];
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:75:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_h, "h%04d\r\n", (int)(obs*10) );
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:80:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_i, "i%04.0f\r\n", fuel*10.0 );
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:88:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_j, "j%04.0f\r\n", gph*10.0 );
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:91:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_k, "k%04d%02d%02d%02d%02d%02d\r\n",
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:102:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( msg_l, "l%05.0f\r\n", alt );
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:143:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int pos = atoi(num.c_str());
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:159:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int pos = atoi(num.c_str());
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:199:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGAV400WSimA::open() {
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:208:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:669:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempbuf[20];
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:670:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( tempbuf, "\\x%02X", uc );
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:820:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGAV400WSimB::open() {
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:829:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:847:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char readbuf[10];
data/flightgear-2020.1.3+dfsg/src/Network/HLA/hla.cxx:928:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FGHLA::open()
data/flightgear-2020.1.3+dfsg/src/Network/Swift/traffic.h:87:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char label[32]{};
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:82:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rmc[256], gga[256], patla[256];
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:83:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rmc_sum[10], gga_sum[10], patla_sum[10];
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:90:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utc[10];
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:91:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( utc, "%02d%02d%02d",
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:94:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lat[20];
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:104:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( lat, "%02d%06.3f,%c", abs(deg), min, dir);
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:106:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lon[20];
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:116:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( lon, "%03d%06.3f,%c", abs(deg), min, dir);
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:118:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char speed[10];
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:119:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( speed, "%05.1f", fdm->get_V_equiv_kts() );
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:121:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char heading[10];
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:122:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( heading, "%05.1f", fdm->get_Psi() * SGD_RADIANS_TO_DEGREES );
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:124:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char altitude_m[10];
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:125:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( altitude_m, "%02d",
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:128:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char altitude_ft[10];
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:129:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( altitude_ft, "%02d", (int)fdm->get_Altitude() );
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:131:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[10];
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:132:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( date, "%02d%02d%02d", t->getGmt()->tm_mday,
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:138:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( rmc_sum, "%02X", calc_atlas_cksum(rmc) );
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:142:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( gga_sum, "%02X", calc_atlas_cksum(gga) );
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:144:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( patla, "PATLA,%.2f,%.1f,%.2f,%.1f,%.0f",
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:150:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( patla_sum, "%02X", calc_atlas_cksum(patla) );
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:533:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGAtlas::open() {
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:542:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/fgcom.cxx:663:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char phoneNumber[256];
data/flightgear-2020.1.3+dfsg/src/Network/fgcom.cxx:664:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char exten[32];
data/flightgear-2020.1.3+dfsg/src/Network/fgcom.cxx:665:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[5];
data/flightgear-2020.1.3+dfsg/src/Network/fgcom.cxx:671:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( exten,
data/flightgear-2020.1.3+dfsg/src/Network/flarm.cxx:172:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nmea[256];
data/flightgear-2020.1.3+dfsg/src/Network/flarm.cxx:310:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nmea[256];
data/flightgear-2020.1.3+dfsg/src/Network/garmin.cxx:60:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nmea[256];
data/flightgear-2020.1.3+dfsg/src/Network/garmin.cxx:69:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( nmea, "$PGRMZ,%.1f,M,3", altitude_ft * SG_FEET_TO_METER );
data/flightgear-2020.1.3+dfsg/src/Network/garmin.cxx:71:13: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( nmea, "$PGRMZ,%.1f,F,3", altitude_ft );
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:102:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf, dest.data(), dest.size() );
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:173:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf, dest.data(), dest.size() );
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:215:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf, dest.data(), dest.size() );
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:285:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf[length], &intVal, sizeof(int32_t));
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:304:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf[length], &fixed, sizeof(int32_t));
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:319:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf[length], &tmpun32.intVal, sizeof(uint32_t));
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:334:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf[length], &tmpun64.longVal, sizeof(uint64_t));
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:344:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf[length], &byteVal, sizeof(int8_t));
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:354:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf[length], &wordVal, sizeof(int16_t));
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:373:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf[length], &strlength, sizeof(int32_t));
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:401:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf[length], &intValue, sizeof(int32_t));
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:412:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[255];
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:597:41: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
updateValue(_in_message[i], atoi(p1));
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:634:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGGeneric::open() {
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:643:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/http/JsonUriHandler.cxx:45:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int depth = atoi(request.RequestVariables.get("d").c_str());
data/flightgear-2020.1.3+dfsg/src/Network/http/ScreenshotUriHandler.cxx:469:45: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (!s_canvasindex.empty()) canvasindex = atoi(s_canvasindex.c_str());
data/flightgear-2020.1.3+dfsg/src/Network/http/httpd.cxx:334:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/flightgear-2020.1.3+dfsg/src/Network/igc.cxx:186:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool IGCProtocol::open()
data/flightgear-2020.1.3+dfsg/src/Network/igc.cxx:197:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!io->open( get_direction() ))
data/flightgear-2020.1.3+dfsg/src/Network/joyclient.cxx:44:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGJoyClient::open() {
data/flightgear-2020.1.3+dfsg/src/Network/joyclient.cxx:53:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/jsclient.cxx:59:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGJsClient::open() {
data/flightgear-2020.1.3+dfsg/src/Network/jsclient.cxx:68:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/lfsglass.cxx:111:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGLFSGlass::open() {
data/flightgear-2020.1.3+dfsg/src/Network/lfsglass.cxx:120:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/native.cxx:44:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGNative::open() {
data/flightgear-2020.1.3+dfsg/src/Network/native.cxx:53:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/native_ctrls.cxx:55:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGNativeCtrls::open() {
data/flightgear-2020.1.3+dfsg/src/Network/native_ctrls.cxx:64:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/native_fdm.cxx:100:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGNativeFDM::open() {
data/flightgear-2020.1.3+dfsg/src/Network/native_fdm.cxx:109:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/native_gui.cxx:103:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGNativeGUI::open() {
data/flightgear-2020.1.3+dfsg/src/Network/native_gui.cxx:112:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:81:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nmea[256];
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:85:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char utc[10];
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:86:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( utc, "%02d%02d%02d",
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:89:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lat[20];
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:100:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( lat, "%02d%07.4f,%c", abs(deg), min, dir);
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:103:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lon[20];
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:114:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( lon, "%03d%07.4f,%c", abs(deg), min, dir);
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:120:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char speed[10];
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:125:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( speed, "%.1f", kts );
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:128:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char heading[10];
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:134:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( heading, "%.1f", hdg_true );
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:139:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char date[10];
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:143:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( date, "%02d%02d%02d", t->getGmt()->tm_mday,
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:147:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char magvar[10];
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:156:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( magvar, "%.1f,%c", magdeg, dir );
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:365:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGNMEA::open() {
data/flightgear-2020.1.3+dfsg/src/Network/nmea.cxx:383:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/opengc.cxx:112:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGOpenGC::open() {
data/flightgear-2020.1.3+dfsg/src/Network/opengc.cxx:121:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/props.cxx:573:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
->setIntValue(atoi(tokens[2].c_str()));
data/flightgear-2020.1.3+dfsg/src/Network/props.cxx:695:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port = atoi( tokens[1].c_str() );
data/flightgear-2020.1.3+dfsg/src/Network/props.cxx:709:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port = atoi( tokens[5].c_str() );
data/flightgear-2020.1.3+dfsg/src/Network/props.cxx:726:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FGProps::open()
data/flightgear-2020.1.3+dfsg/src/Network/props.cxx:735:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!simgear::NetChannel::open())
data/flightgear-2020.1.3+dfsg/src/Network/protocol.cxx:51:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
bool FGProtocol::open() {
data/flightgear-2020.1.3+dfsg/src/Network/protocol.cxx:60:16: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! io->open( get_direction() ) ) {
data/flightgear-2020.1.3+dfsg/src/Network/pve.cxx:93:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buf, "p%c%c%c%c%c%c\n",
data/flightgear-2020.1.3+dfsg/src/Network/rul.cxx:89:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( buf, "p%c%c\n", roll, pitch);
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1592:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(strmode, "Line-Of-Sight Mode");
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1596:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(strmode, "Single Horizon");
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1603:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(strmode, "Double Horizon");
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1611:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(strmode, ", Diffraction Dominant");
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1617:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(strmode, ", Troposcatter Dominant");
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1735:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strmode[100];
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1772:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(strmode, "Line-Of-Sight Mode");
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1775:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(strmode, "Single Horizon");
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1779:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(strmode, "Double Horizon");
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1782:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(strmode, ", Diffraction Dominant");
data/flightgear-2020.1.3+dfsg/src/Radio/itm.cpp:1786:4: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(strmode, ", Troposcatter Dominant");
data/flightgear-2020.1.3+dfsg/src/Radio/radio.cxx:226:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char strmode[150];
data/flightgear-2020.1.3+dfsg/src/Scripting/ClipboardWindows.cxx:78:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(GlobalLock(hGlob), (char*)&text[0], text.size() + 1);
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:105:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nm[256];
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:370:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:372:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf, "FGNasalScript@%p", (void *)script);
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:782:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fp.c_str(), modestr);
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:1356:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bytes[8192];
data/flightgear-2020.1.3+dfsg/src/Scripting/nasal-props.cxx:523:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char nameBuf[1024];
data/flightgear-2020.1.3+dfsg/src/Sound/beacon.cxx:61:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char inner_dit[INNER_DIT_LEN];
data/flightgear-2020.1.3+dfsg/src/Sound/beacon.cxx:66:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( ptr, inner_dit, INNER_DIT_LEN );
data/flightgear-2020.1.3+dfsg/src/Sound/beacon.cxx:77:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char middle_dit[MIDDLE_DIT_LEN];
data/flightgear-2020.1.3+dfsg/src/Sound/beacon.cxx:82:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char middle_dah[MIDDLE_DAH_LEN];
data/flightgear-2020.1.3+dfsg/src/Sound/beacon.cxx:87:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( ptr, middle_dit, MIDDLE_DIT_LEN );
data/flightgear-2020.1.3+dfsg/src/Sound/beacon.cxx:89:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( ptr, middle_dah, MIDDLE_DAH_LEN );
data/flightgear-2020.1.3+dfsg/src/Sound/beacon.cxx:97:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char outer_dah[OUTER_DAH_LEN];
data/flightgear-2020.1.3+dfsg/src/Sound/beacon.cxx:102:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( ptr, outer_dah, OUTER_DAH_LEN );
data/flightgear-2020.1.3+dfsg/src/Sound/beacon.cxx:104:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( ptr, outer_dah, OUTER_DAH_LEN );
data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx:38:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char alphabet[26][4] = {
data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx:67:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char numerals[10][5] = {
data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx:206:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf_ptr, dit_ptr, DIT_SIZE );
data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx:209:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf_ptr, dah_ptr, DAH_SIZE );
data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx:213:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf_ptr, space, SPACE_SIZE );
data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx:219:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf_ptr, dit_ptr, DIT_SIZE );
data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx:222:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf_ptr, dah_ptr, DAH_SIZE );
data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx:226:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf_ptr, space, SPACE_SIZE );
data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx:232:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf_ptr, space, SPACE_SIZE );
data/flightgear-2020.1.3+dfsg/src/Sound/morse.cxx:234:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( buf_ptr, space, SPACE_SIZE );
data/flightgear-2020.1.3+dfsg/src/Sound/voice.cxx:160:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!_sock->open(SG_IO_OUT))
data/flightgear-2020.1.3+dfsg/src/Sound/voice.cxx:165:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/flightgear-2020.1.3+dfsg/src/Traffic/SchedFlight.cxx:132:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
repeatPeriod = 60*60*atoi(rep.substr(0,2).c_str());
data/flightgear-2020.1.3+dfsg/src/Traffic/SchedFlight.cxx:178:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
weekday = atoi(timeCopy.substr(0,1).c_str());
data/flightgear-2020.1.3+dfsg/src/Traffic/SchedFlight.cxx:187:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
targetHour = atoi(timeCopy.substr(0,2).c_str());
data/flightgear-2020.1.3+dfsg/src/Traffic/SchedFlight.cxx:188:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
targetMinute = atoi(timeCopy.substr(3,5).c_str());
data/flightgear-2020.1.3+dfsg/src/Traffic/SchedFlight.cxx:189:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
targetSecond = atoi(timeCopy.substr(6,8).c_str());
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:197:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
radius = atoi(value.c_str());
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:199:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
offset = atoi(value.c_str());
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:219:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
cruiseAlt = atoi(value.c_str());
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:245:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[16];
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:343:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[16];
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:461:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[128];
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:477:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
cachefile.open(cacheData);
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:634:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[128];
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:774:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[256];
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:851:41: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int cruiseAlt = atoi(tokens[8].c_str());
data/flightgear-2020.1.3+dfsg/src/Traffic/TrafficMgr.cxx:875:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[4];
data/flightgear-2020.1.3+dfsg/src/Viewer/fgviewer.cxx:57:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char filename[24];
data/flightgear-2020.1.3+dfsg/src/Viewer/fgviewer.cxx:63:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( (fp = fopen(filename, "r")) == NULL )
data/flightgear-2020.1.3+dfsg/test_suite/FGTestApi/testGlobals.cxx:89:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
global_kmlStream.open(p);
data/flightgear-2020.1.3+dfsg/test_suite/attic/alcinfo.cxx:254:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char devname[255];
data/flightgear-2020.1.3+dfsg/test_suite/attic/layout-test.cxx:39:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(!(tmp = fopen(FONT_FILE, "r"))) {
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-env-map.cxx:28:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char env_map[TEXRES_X][TEXRES_Y][4];
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-gethostname.cxx:13:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:22:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[256];
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:45:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char file[256];
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:51:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = fopen( file, "r" );
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:62:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = fopen( file, "rt" );
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:73:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = fopen( file, "rb" );
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:84:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = fopen( file, "r" );
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:95:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = fopen( file, "rt" );
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:106:10: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = fopen( file, "rb" );
data/flightgear-2020.1.3+dfsg/test_suite/fgTestListener.cxx:66:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[100];
data/flightgear-2020.1.3+dfsg/test_suite/system_tests/Instrumentation/testgps.cxx:286:5: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(p, fstream::out | fstream::trunc);
data/flightgear-2020.1.3+dfsg/test_suite/system_tests/Instrumentation/testgps.cxx:316:5: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(op, fstream::out | fstream::trunc);
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/GPSsmooth.cxx:41:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[2049];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/GPSsmooth.cxx:114:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
p.fix_quality = atoi( tokens[6].c_str() );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/GPSsmooth.cxx:115:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
p.num_satellites = atoi( tokens[7].c_str() );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG-II.cxx:353:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( !input.open( SG_IO_IN ) ) {
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG-II.cxx:426:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[256];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG-II.cxx:427:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char savebuf[256];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG-II.cxx:489:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[256];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG-II.cxx:490:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char savebuf[256];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG_main.cxx:363:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fdm_port = atoi( argv[i] );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG_main.cxx:371:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ctrls_port = atoi( argv[i] );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG_main.cxx:402:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! fdm_sock.open( false ) ) { // open a UDP socket
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG_main.cxx:406:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! ctrls_sock.open( false ) ) { // open a UDP socket
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG_main.cxx:587:22: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( !output.open( SG_IO_OUT ) ) {
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear.cxx:184:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( !input.open( SG_IO_IN ) ) {
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear.cxx:391:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[256];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear.cxx:392:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char savebuf[256];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear.cxx:461:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmpbuf[256];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear.cxx:462:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char savebuf[256];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_command.cxx:41:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sequence_str[10];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_command.cxx:48:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pkg_sum[10];
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_main.cxx:604:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
opengc_port = atoi( argv[i] );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_main.cxx:612:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fdm_port = atoi( argv[i] );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_main.cxx:620:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ctrls_port = atoi( argv[i] );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_main.cxx:663:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! opengc_sock.open( false ) ) { // open a UDP socket
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_main.cxx:667:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! fdm_sock.open( false ) ) { // open a UDP socket
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_main.cxx:671:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! ctrls_sock.open( false ) ) { // open a UDP socket
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_main.cxx:717:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
telnet.open();
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_main.cxx:1025:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( !log.open( SG_IO_OUT ) ) {
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_telnet.cxx:184:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
UGTelnet::open()
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_telnet.cxx:191:26: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
simgear::NetChannel::open();
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/gps_main.cxx:348:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
fdm_port = atoi( argv[i] );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/gps_main.cxx:356:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ctrls_port = atoi( argv[i] );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/gps_main.cxx:379:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! fdm_sock.open( false ) ) { // open a UDP socket
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/gps_main.cxx:383:23: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! ctrls_sock.open( false ) ) { // open a UDP socket
data/flightgear-2020.1.3+dfsg/utils/Modeller/colours.h:28:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char msfs_colour[256][3]=
data/flightgear-2020.1.3+dfsg/utils/Modeller/normalmap.cxx:96:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(normalmap_file, texture_file, i);
data/flightgear-2020.1.3+dfsg/utils/Modeller/normalmap.cxx:97:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(normalmap_file+i, "_n.rgb\0", 7);
data/flightgear-2020.1.3+dfsg/utils/Modeller/photomodel.cxx:24:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *out = fopen( model, "w" );
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:264:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(gbuf,rbuf,image->xsize);
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:265:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bbuf,rbuf,image->xsize);
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:333:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(gbuf,rbuf,image->xsize);
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:334:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bbuf,rbuf,image->xsize);
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:338:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(gbuf,rbuf,image->xsize);
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:339:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(bbuf,rbuf,image->xsize);
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:389:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char c[1];
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:456:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(texture_data+pos, c, num_colors);
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:471:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c, texture_data + pos, num_colors);
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:481:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char testByte[4];
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:554:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char testByte[4];
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:601:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char testByte[4];
data/flightgear-2020.1.3+dfsg/utils/Modeller/texture.cxx:620:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ((file = fopen(fileName, "wb")) == 0) {
data/flightgear-2020.1.3+dfsg/utils/TerraSync/terrasync.cxx:144:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port = atoi( argv[i] );
data/flightgear-2020.1.3+dfsg/utils/TerraSync/terrasync.cxx:370:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[256];
data/flightgear-2020.1.3+dfsg/utils/TerraSync/terrasync.cxx:379:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( !theSocket.open( false ) )
data/flightgear-2020.1.3+dfsg/utils/TerraSync/terrasync.cxx:479:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pidstream.open(pidfn);
data/flightgear-2020.1.3+dfsg/utils/fgai/fgai.cxx:554:54: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sglog().set_log_priority(sgDebugPriority(atoi(optarg)));
data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx:99:61: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if(option == "port") _port = atoi(value.c_str());
data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx:135:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
sgSocket.open(false);
data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx:139:16: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char currentPacket[MAXBUFLEN+2], previousPacket[MAXBUFLEN+2];
data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx:161:76: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if(prop[0] == "PTT") currentData.ptt = atoi(prop[1].c_str());
data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx:471:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char phoneNumber[256];
data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx:472:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char exten[32];
data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx:473:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[5];
data/flightgear-2020.1.3+dfsg/utils/fgcom/fgcom.cxx:478:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( exten,
data/flightgear-2020.1.3+dfsg/utils/fgpanel/ApplicationProperties.cxx:39:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512];
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGGLApplication.cxx:115:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char game_mode_str[20];
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPNGTextureLoader.cxx:50:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE * const fp (fopen (filename.c_str (), "rb"));
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanelProtocol.cxx:49:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_node->setBoolValue (atoi (value) != 0 );
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanelProtocol.cxx:57:25: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
_node->setIntValue (atol (value));
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanelProtocol.cxx:130:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2][8192];
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanelProtocol.cxx:171:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!io->open (SG_IO_IN)) {
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGRGBTextureLoader.cxx:53:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[80];
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGRGBTextureLoader.cxx:68:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char testByte[sizeof (int)];
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGRGBTextureLoader.cxx:162:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char testByte[4];
data/flightgear-2020.1.3+dfsg/utils/fgpanel/GL_utils.cxx:337:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy (&(m_Matrix[m_Current_Matrix_Mode].top ()), &Tmp, sizeof (Matrix));
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.cpp:85:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!f.open(QIODevice::ReadOnly)) {
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.cpp:150:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::WriteOnly | QIODevice::Truncate);
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.cpp:174:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::ReadOnly);
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.cpp:202:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::WriteOnly | QIODevice::Truncate);
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.cpp:216:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!f.open(QIODevice::ReadOnly)) {
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.cpp:251:11: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::ReadOnly);
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.cpp:318:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!f.open(QIODevice::ReadOnly)) {
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.cpp:349:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::WriteOnly | QIODevice::Truncate);
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/applicationcontroller.cpp:418:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::ReadOnly);
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvasconnection.cpp:123:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
m_webSocket.open(m_webSocketUrl);
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/canvasconnection.cpp:161:17: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
m_webSocket.open(wsUrl);
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvaspath.cpp:106:19: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
::memcpy(indices, triangles.indices.data(), sizeof(unsigned short) * triangles.indices.size());
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgcanvaspath.cpp:109:19: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
::memcpy(indices, triangles.indices.data(), sizeof(quint32) * triangles.indices.size());
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgqcanvasfontcache.cpp:76:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!f.open(QIODevice::WriteOnly)) {
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/fgqcanvasimageloader.cpp:76:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (!f.open(QIODevice::WriteOnly)) {
data/flightgear-2020.1.3+dfsg/utils/gui/genfonts.c:38:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char alphabet[256] = " abcdefghijklmnopqrstuwvxyzABCDEFGHIJKLMNOPQRSTUWVXYZ0123456789`~!@#$%^&*()-_=+[{}];:,.<>/?\\\"";
data/flightgear-2020.1.3+dfsg/utils/gui/genfonts.c:224:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
out = fopen(filename, "wt");
data/flightgear-2020.1.3+dfsg/utils/js_server/js_server.cxx:55:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port = atoi(argv[2]);
data/flightgear-2020.1.3+dfsg/utils/js_server/js_server.cxx:83:12: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if ( ! c.open( false ) ) { // open a UDP socket
data/flightgear-2020.1.3+dfsg/utils/js_server/js_server.cxx:96:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char packet[256] = "Hello world!";
data/flightgear-2020.1.3+dfsg/utils/js_server/js_server.cxx:108:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(packet+len, &axisvalue, sizeof(axisvalue));
data/flightgear-2020.1.3+dfsg/utils/js_server/js_server.cxx:115:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(packet+len, &axisvalue, sizeof(axisvalue));
data/flightgear-2020.1.3+dfsg/utils/js_server/js_server.cxx:120:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(packet+len, &b_l, sizeof(b_l));
data/flightgear-2020.1.3+dfsg/utils/js_server/js_server.cxx:124:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(packet+len, termstr, 4);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/generic-protocol-analyse.c:91:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char factor[11];
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:86:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:98:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256], attrib[256];
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:127:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bfname[4096];
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:137:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = fopen(fname, "w");
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:160:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:170:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256], attrib[256];
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:309:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:310:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:311:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:312:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:509:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:510:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:511:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path)+strlen("Engines/"), engine, strlen(engine));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:512:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(engine), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:555:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:556:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:557:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:558:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:598:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:599:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:600:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:601:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:643:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:644:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path), aero, strlen(aero));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:645:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path)+strlen(aero), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:657:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s, " <tags>\n");
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:945:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:946:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path), aero, strlen(aero));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:947:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fname+strlen(path)+strlen(aero), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:959:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s, " <tags>\n");
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:1017:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(path, fname, pend-fname);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:54:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str) + 1;
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:374:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret) len+=strlen(ret)+2+(fmt?1:0); else fail=1;
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:396:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(ptr,entries[i]);ptr+=strlen(entries[i]);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:474:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (str && ret) len+=strlen(ret)+strlen(str)+2+(fmt?2+depth:0); else fail=1;
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:474:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (str && ret) len+=strlen(ret)+strlen(str)+2+(fmt?2+depth:0); else fail=1;
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:495:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(ptr,names[i]);ptr+=strlen(names[i]);
data/flightgear-2020.1.3+dfsg/3rdparty/cjson/cJSON.c:497:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strcpy(ptr,entries[i]);ptr+=strlen(entries[i]);
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestAssert.h:57:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static bool equal( const T& x, const T& y )
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestAssert.h:89:17: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
static bool equal( double x, double y )
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/TestAssert.h:132:30: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
if ( !assertion_traits<T>::equal(expected,actual) ) // lazy toString conversion...
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/include/cppunit/portability/Stream.h:121:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return write( text, strlen(text) );
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestAssert.cpp:18:8: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
bool equal;
data/flightgear-2020.1.3+dfsg/3rdparty/cppunit/src/cppunit/TestAssert.cpp:37:30: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
Asserter::failNotEqualIf( !equal,
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/bin/flite_hts_engine.c:211:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (fgets(buff, INPUT_BUFF_SIZE, fp_txt) != NULL && strlen(buff) > 0)
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/include/cst_string.h:61:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define cst_strlen(s) (strlen((const char *)s))
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/regex/regexp.c:1209:9: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
(void) strcpy(buf, ":");
data/flightgear-2020.1.3+dfsg/3rdparty/flite_hts_engine/flite/src/utils/cst_string.c:104:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(nstr,str+start,length);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/linux/hid.c:304:7: [1] (buffer) wcsncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
wcsncpy(string, L"", maxlen);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/linux/hid.c:708:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bytes_read = read(dev->device_handle, data, length);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/mac/hid.c:283:15: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = wcslen(s);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c:434:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(str);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c:436:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(cur_dev->path, str, len+1);
data/flightgear-2020.1.3+dfsg/3rdparty/hidapi/windows/hid.c:967:2: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read(handle, buf, 65);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/codec_ffmpeg.c:677:2: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat(c->name, name, sizeof(c->name));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:327:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(e.ev.call.remote, calls[callNo].remote, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:328:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(e.ev.call.remote_name, calls[callNo].remote_name, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:329:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(e.ev.call.local, calls[callNo].local, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:330:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(e.ev.call.local_context, calls[callNo].local_context, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:617:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[i].callerid_name, DEFAULT_CALLERID_NAME, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:618:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[i].callerid_number, DEFAULT_CALLERID_NUMBER, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:729:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[i].callerid_name, name, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:730:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[i].callerid_number, number, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:937:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ev.ev.text.message, (char *) e->data, len);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:951:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy( ev.ev.url.url, "" );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:965:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( ev.ev.url.url, (char *) e->data, e->datalen );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1274:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(newreg->host, host, 256);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1275:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(newreg->user, user, 256);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1276:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(newreg->pass, pass, 256);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1364:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[callNo].remote_name, num, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1365:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[callNo].remote, ++ext, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1368:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[callNo].remote_name, num, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1369:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(calls[callNo].remote, "" , IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1373:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[callNo].callerid_number, callerid_number, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1376:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[callNo].callerid_name, callerid_name, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1378:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[callNo].local , calls[callNo].callerid_name, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1379:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(calls[callNo].local_context, "default", IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1718:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[callno].local, e->ies.called_number,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1721:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(calls[callno].local, "unknown",
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1725:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[callno].local_context, e->ies.called_context,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1728:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant character.
strncpy(calls[callno].local_context, "",
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1732:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[callno].remote, e->ies.calling_number,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1735:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(calls[callno].remote, "unknown",
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1739:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(calls[callno].remote_name, e->ies.calling_name,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1742:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(calls[callno].remote_name, "unknown",
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/iaxclient_lib.c:1922:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ver, LIBVER, IAXC_EVENT_BUFSIZ);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1760:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tmp, server, sizeof(tmp) - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1769:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(session->secret, secret, sizeof(session->secret) - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1771:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(session->secret, "");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1784:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(session->username, peer, sizeof(session->username) - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1802:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tmp, server, sizeof(tmp) - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1811:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(session->secret, secret, sizeof(session->secret) - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1813:3: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(session->secret, "");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1815:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (reason && strlen(reason))
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1816:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(session->unregreason, reason, sizeof(session->unregreason) - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1829:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(session->username, peer, sizeof(session->username) - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1855:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(unsigned char *)url, (int)strlen(url), -1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1901:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(unsigned char *)url, (int)strlen(url), -1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:1907:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(unsigned char *)text, (int)strlen(text) + 1, -1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2011:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(unsigned int)strlen(challenge));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2013:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(unsigned int)strlen(password));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2035:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(unsigned int)strlen(challenge));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2037:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(unsigned int)strlen(password));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2045:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(session->unregreason)) { /* Non-zero unregreason length indicates REGREL */
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2108:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(old, session->codec_order, sizeof(old));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2111:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (x = 0; x < (int) strlen(old); x++) {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2148:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tmp, ich, sizeof(tmp) - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2189:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(session->username, username, sizeof(session->username) - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2192:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(session->secret, secret, sizeof(session->secret) - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2211:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (exten && strlen(exten))
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2213:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (dnid && strlen(dnid))
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2215:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (context && strlen(context))
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2764:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(session->codec_order,
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2768:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int)strlen(session->codec_order);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2776:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(session->username) && !strcmp(e->ies.username, session->username) &&
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax.c:2777:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(session->secret)) {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:86:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(output,(const char *)value, maxlen);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:132:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(tmp))
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:133:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(output, &tmp[1], maxlen - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:135:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(output, "None specified!\n", maxlen - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:220:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(output, "\n");
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:221:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxlen -= (int)strlen(output); output += strlen(output);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:221:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxlen -= (int)strlen(output); output += strlen(output);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:227:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(output, tmp, maxlen - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:228:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxlen -= (int)strlen(output); output += strlen(output);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:228:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxlen -= (int)strlen(output); output += strlen(output);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:234:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(output, tmp, maxlen - 1);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:235:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxlen -= (int)strlen(output); output += strlen(output);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:235:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
maxlen -= (int)strlen(output); output += strlen(output);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/iax2-parser.c:454:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return iax_ie_append_raw(ied, ie, str, (int)strlen(str));
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c:261:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(regpeer) && strlen(server)) {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c:261:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(regpeer) && strlen(server)) {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c:376:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(callerid))
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c:431:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rcmd[strlen(rcmd)-1] = 0;
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/miniphone.c:442:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ( (ret = read(audiofd, rbuf + rlen, 2 * (FRAME_SIZE-rlen))) == -1) {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:69:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[strlen(buf)-1] = '\0';
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:70:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buf)) {
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/options.c:81:8: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy((char *)opts[x].where, value, opts[x].len);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libiax2/src/winiphone.c:355:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
rcmd[strlen(rcmd)-1] = 0;
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testecho.c:32:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read(ref_fd, ref_buf, NN*2))
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/libspeex/testecho.c:34:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read(echo_fd, echo_buf, NN*2);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/bindings/cpp/source/portaudiocpp/BlockingStream.cxx:49:23: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void BlockingStream::read(void *buffer, unsigned long numFrames)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/common/pa_front.c:176:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( lastHostErrorText_, errorText, PA_LAST_HOST_ERROR_TEXT_LENGTH_ );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:442:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen( src ) + 1;
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:448:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( *dst, src, len );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:620:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(idStr) + 6 ), paInsufficientMemory );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/alsa/pa_linux_alsa.c:623:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(idStr) + 1 ), paInsufficientMemory );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/dsound/pa_win_ds.c:241:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(src);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c:512:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
UNLESS( client_names[numClients] = (char*)MALLOC(strlen(tmp_client_name) + 1), paInsufficientMemory );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c:550:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
UNLESS( curDevInfo->name = (char*)MALLOC( strlen(client_names[client_index]) + 1 ), paInsufficientMemory );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/jack/pa_jack.c:636:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
jackErr_ = malloc( strlen( msg ) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:284:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen( name ) + 1;
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:286:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( (char *)deviceInfo->name, name, len );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:1069:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ENSURE_( bytesRead = read( component->fd, component->buffer, len ), paUnanticipatedHostError );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/pa_unix_oss.c:1854:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bytesRead = read( stream->capture->fd, stream->capture->buffer, bytesRequested );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/oss/recplay.c:61:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ( (num = read (audioDev, ptr, BLOCK_SIZE)) < 0 )
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:1180:5: [1] (buffer) _tcsncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
_tcsncpy(filter->filterName, filterName, MAX_PATH);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wdmks/pa_win_wdmks.c:1183:5: [1] (buffer) _tcsncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
_tcsncpy(filter->friendlyName, friendlyName, MAX_PATH);
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:585:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
winMmeHostApi->allocations, strlen( wic.szPname ) + 1 + sizeof(constInputMapperSuffix_) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:597:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
winMmeHostApi->allocations, strlen( wic.szPname ) + 1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:661:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
winMmeHostApi->allocations, strlen( woc.szPname ) + 1 + sizeof(constOutputMapperSuffix_) );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/hostapi/wmme/pa_win_wmme.c:673:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
winMmeHostApi->allocations, strlen( woc.szPname ) + 1 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/os/unix/pa_unix_util.c:103:9: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep( 999000 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/src/os/unix/pa_unix_util.c:106:5: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep( msec * 1000 );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_dual.c:131:5: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getchar();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_multi_in.c:90:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen( name );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_multi_in.c:164:9: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getchar();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/debug_multi_out.c:129:5: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getchar();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/pa_fuzz.c:154:5: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getchar();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/pa_minlat.c:156:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l = strlen( str ) - 1;
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest1.c:147:5: [1] (buffer) getc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getc( stdin ); /* wait for input before exiting */
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_latency.c:161:17: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getchar();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_longsine.c:125:5: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getchar();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_multi_sine.c:156:13: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getchar();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_wire.c:221:5: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getchar();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_wire.c:230:5: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
getchar();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portaudio/test/patest_wire.c:274:9: [1] (buffer) getchar:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
c = getchar();
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/portmixer/px_win_wmme/px_win_wmme.c:275:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("microphone")) == 0)
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/unixfuncs.c:209:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep( WATCHDOG_INTERVAL_USEC );
data/flightgear-2020.1.3+dfsg/3rdparty/iaxclient/lib/unixfuncs.c:243:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep( WATCHDOG_INTERVAL_USEC );
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.cxx:66:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void jsJoystick::read ( int *buttons, float *axes )
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/js.h:87:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void read ( int *buttons, float *axes ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:411:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int status = ::read ( os->fd, &os->ajs, sizeof(os->ajs) );
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsBSD.cxx:435:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((len = ::read(os->fd, os->hid_data_buf, os->hid_dlen)) == os->hid_dlen)
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsLinux.cxx:133:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int status = ::read ( os->fd, &(os->js), sizeof(js_event) ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/joystick/jsWindows.cxx:181:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy ( name, os->jsCaps.szPname, sizeof(name) ) ;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:827:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, inet_ntoa(sa.sin.sin_addr), len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:833:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snprintf(buf + strlen(buf), len - (strlen(buf) + 1), "%s%d",
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:833:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snprintf(buf + strlen(buf), len - (strlen(buf) + 1), "%s%d",
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1551:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, path, sizeof(buf));
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1555:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p = buf + strlen(buf) - 1;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1609:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
list = val->ptr + strlen(val->ptr);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1933:41: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
WideCharToMultiByte(CP_UTF8, 0, buf2, wcslen(buf2) + 1, abs_path, len, 0, 0);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:1967:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (p = interp + strlen(interp) - 1;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2030:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
send(1, buf, strlen(buf), 0);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2128:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int) (strlen(ri->uri) - strlen(conn->path_info)), ri->uri);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2128:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(int) (strlen(ri->uri) - strlen(conn->path_info)), ri->uri);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2280:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *copy = (char *) malloc(strlen(str) + 1);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2420:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n = (int) strlen(ri->uri);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2486:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = (int) strlen(str + j);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2523:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((int) strlen(kw) == i - (pos + 2) &&
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2542:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return mg_match_prefix(pw_pattern, strlen(pw_pattern), path) > 0 ||
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2543:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(pattern != NULL && mg_match_prefix(pattern, strlen(pattern), path) > 0);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2558:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int match_len, root_len = root == NULL ? 0 : strlen(root);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2563:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int domain_len = colon == NULL ? (int) strlen(domain) : colon - domain;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2592:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (p = buf + strlen(root) + 2; *p != '\0'; p++) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2595:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (mg_match_prefix(cgi_pat, strlen(cgi_pat), buf) > 0 &&
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2860:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
SHA1Update(&sha_ctx, (unsigned char *) buf, strlen(buf));
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:2869:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mg_write(conn, buf, strlen(buf));
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3029:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
path_len = strlen(path);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3071:9: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
if (((sscanf(datetime, "%d/%3s/%d %d:%d:%d",
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3073:9: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
(sscanf(datetime, "%d %3s %d %d:%d:%d",
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3075:9: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
(sscanf(datetime, "%*3s, %d %3s %d %d:%d:%d",
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3077:9: [1] (buffer) sscanf:
It's unclear if the %s limit in the format string is small enough
(CWE-120). Check that the limit is sufficiently small, or use a different
input function.
(sscanf(datetime, "%d-%3s-%d %d:%d:%d",
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3098:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
path_len = strlen(path);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3113:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
vec->len = strlen(vec->ptr);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3144:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n = strlen(path), found = 0;
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3163:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(path + n + 1, filename_vec.ptr, filename_vec.len);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3448:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mg_url_encode(de->file_name, strlen(de->file_name), href, sizeof(href));
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3573:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mg_url_encode(de->file_name, strlen(de->file_name), buf, sizeof(buf));
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:3971:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
MD5Update(&ctx, (const unsigned char *) p, (unsigned) strlen(p));
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4071:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int ch = ' ', len = 0, n = strlen(var_name);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4104:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return parse_header(s, s == NULL ? 0 : strlen(s), var_name, buf, buf_size);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4141:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mg_snprintf(path + strlen(path), sizeof(path) - strlen(path), "%s",
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4141:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
mg_snprintf(path + strlen(path), sizeof(path) - strlen(path), "%s",
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4153:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (mg_match_prefix(opts[SSI_PATTERN], strlen(opts[SSI_PATTERN]),
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4190:16: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((ch = fgetc(fp)) != EOF) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4392:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
conn->mg_conn.uri[strlen(conn->mg_conn.uri) - 1] != '/') {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4407:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (mg_match_prefix(cgi_pat, strlen(cgi_pat), path) > 0) {
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4415:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(conn->server->config_options[SSI_PATTERN]),
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4791:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
n = read(conn->endpoint.fd, buf, conn->cl < (int64_t) sizeof(buf) ?
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4845:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
name_len = strlen(name);
data/flightgear-2020.1.3+dfsg/3rdparty/mongoose/mongoose.c:4883:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(conn->query_string), name, dst, dst_len);
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.c:44:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = write(sock, buf, strlen(buf));
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.c:69:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
len = read(sock, buf, MAXMSG - 1);
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.c:81:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(buf) ? buf : NULL;
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:31:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
const char *read(void);
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:119:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = ::write(_sock, buf, strlen(buf));
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:126:25: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
const char *FGFSSocket::read(void)
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:144:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
len = ::read(_sock, _buffer, BUFLEN - 1);
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:154:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(_buffer) ? _buffer : 0;
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:162:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (read())
data/flightgear-2020.1.3+dfsg/scripts/example/fgfsclient.cxx:178:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
const char *p = f.read();
data/flightgear-2020.1.3+dfsg/src/Add-ons/AddonVersion.cxx:514:20: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
bool AddonVersion::equal(const nasal::CallContext& ctx) const
data/flightgear-2020.1.3+dfsg/src/Add-ons/AddonVersion.cxx:559:37: [1] (buffer) equal:
Function does not check the second iterator for over-read conditions
(CWE-126). This function is often discouraged by most C++ coding standards
in favor of its safer alternatives provided since C++14. Consider using a
form of this function that checks the second iterator before potentially
overflowing it.
.method("equal", &AddonVersion::equal)
data/flightgear-2020.1.3+dfsg/src/Aircraft/replay.cxx:800:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
input.read((char*) pBuffer, RecordSize);
data/flightgear-2020.1.3+dfsg/src/Autopilot/route_mgr.cxx:726:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(s) == 0) {
data/flightgear-2020.1.3+dfsg/src/Cockpit/NavDisplay.cxx:470:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (id && strlen(id)) {
data/flightgear-2020.1.3+dfsg/src/Cockpit/NavDisplay.cxx:485:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (id && strlen(id) && (definitionDict.find(id) != definitionDict.end())) {
data/flightgear-2020.1.3+dfsg/src/EmbeddedResources/fgrcc.cxx:476:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_inputStream.read(buf, sizeof(buf));
data/flightgear-2020.1.3+dfsg/src/Environment/environment.cxx:210:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
FGEnvironment::read (const SGPropertyNode * node)
data/flightgear-2020.1.3+dfsg/src/Environment/environment_ctrl.cxx:71:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void read( FGEnvironment * parent = NULL );
data/flightgear-2020.1.3+dfsg/src/Environment/environment_ctrl.cxx:142:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
void LayerTable::read(FGEnvironment * parent )
data/flightgear-2020.1.3+dfsg/src/Environment/environment_ctrl.cxx:168:28: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
b->environment.read(child);
data/flightgear-2020.1.3+dfsg/src/Environment/environment_ctrl.cxx:270:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_boundary_table.read();
data/flightgear-2020.1.3+dfsg/src/Environment/environment_ctrl.cxx:273:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
_aloft_table.read(&(*(_boundary_table.end()-1))->environment);
data/flightgear-2020.1.3+dfsg/src/Environment/metarproperties.cxx:214:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((metarString == NULL) || (strlen(metarString) == 0)) {
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalNet/ExternalNet.cxx:58:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bufferSend(buffer, strlen(buffer) ) ;
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:72:5: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(0);
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:187:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(cmd);
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:249:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:252:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:255:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:258:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:261:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:264:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:268:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:274:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:285:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:394:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:402:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
result = write_binary( '1', pd1, cmd, strlen(cmd) );
data/flightgear-2020.1.3+dfsg/src/FDM/ExternalPipe/ExternalPipe.cxx:543:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd[strlen(cmd)-1] = '\0';
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:188:17: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy( Continuous_States[i].Symbol.Mod_Name, "*" );
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:327:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncasecmp( fac_name, line, strlen(fac_name) )) return 0L;
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_init.c:329:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bufptr = strtok( buffer+strlen(fac_name)+1, "\n");
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:372:21: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(fltname, optarg, MAX_FILE_NAME_LENGTH);
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:411:21: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(matname, optarg, MAX_FILE_NAME_LENGTH);
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:423:21: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tabname, optarg, MAX_FILE_NAME_LENGTH);
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_interface.c:431:21: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(asc1name, optarg, MAX_FILE_NAME_LENGTH);
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c:555:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strncasecmp( fac_name, line, strlen(fac_name) )) return 0L;
data/flightgear-2020.1.3+dfsg/src/FDM/LaRCsim/ls_trim.c:557:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bufptr = strtok_r( buffer+strlen(fac_name)+1, "\n", lasts);
data/flightgear-2020.1.3+dfsg/src/FDM/SP/ADA.cxx:222:29: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int result = fdmsock->read(Buffer, numberofbytes);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Hitch.cpp:291:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(myCallsign,cs->getStringValue(),256);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Hitch.cpp:603:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(towNode,_node->getStringValue("tow/node"),256);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Hitch.cpp:615:21: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(MPcallsign,MPc,256);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.cpp:436:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
void Rotor::strncpy(char *dest,const char *src,int maxlen)
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.cpp:662:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(_alphaoutput[i],text,255);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.cpp:667:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(_name,text,256);//256: some space needed for settings
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotor.hpp:149:10: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
void strncpy(char *dest,const char *src,int maxlen);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotorpart.cpp:310:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(_alphaoutputbuf[i>0],text,255);
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotorpart.cpp:354:17: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
void Rotorpart::strncpy(char *dest,const char *src,int maxlen)
data/flightgear-2020.1.3+dfsg/src/FDM/YASim/Rotorpart.hpp:81:14: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
void strncpy(char *dest,const char *src,int maxlen);
data/flightgear-2020.1.3+dfsg/src/FDM/flight.cxx:456:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/FDM/flight.cxx:462:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:684:72: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nas->createModule(_module.c_str(), _module.c_str(), s, strlen(s), props);
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:701:68: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nas->createModule(_module.c_str(), _module.c_str(), s, strlen(s), _props);
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:1340:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *buf = new char[strlen(str) + 1];
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:1342:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *s = buf + strlen(buf);
data/flightgear-2020.1.3+dfsg/src/GUI/FGPUIDialog.cxx:1361:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(s) == 1 && isascii(*s)) {
data/flightgear-2020.1.3+dfsg/src/GUI/InstallSceneryDialog.cxx:89:38: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
QByteArray firstData = f.read(8192);
data/flightgear-2020.1.3+dfsg/src/GUI/InstallSceneryDialog.cxx:129:34: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
QByteArray bytes = f.read(4 * 1024 * 1024);
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:152:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (std::strlen(throwable.getOrigin()) != 0) {
data/flightgear-2020.1.3+dfsg/src/GUI/gui_funcs.cxx:207:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(win32_name,address.c_str(), 1024);
data/flightgear-2020.1.3+dfsg/src/Input/FGHIDEventInput.cxx:364:37: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((serial != nullptr) && std::wcslen(serial) > 0) {
data/flightgear-2020.1.3+dfsg/src/Input/FGJoystickInput.cxx:355:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
js->read(&buttons, axis_values);
data/flightgear-2020.1.3+dfsg/src/Input/FGJoystickInput.cxx:368:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
js->read(NULL, joysticks[index].values);
data/flightgear-2020.1.3+dfsg/src/Input/FGLinuxEventInput.cxx:531:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if( read( fds[i].fd, &event, sizeof(event) ) != sizeof(event) )
data/flightgear-2020.1.3+dfsg/src/Input/js_demo.cxx:86:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
js[i]->read ( &b, ax[i] ) ;
data/flightgear-2020.1.3+dfsg/src/Input/js_demo.cxx:108:5: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep ( 1000 ) ;
data/flightgear-2020.1.3+dfsg/src/Input/jsinput.cxx:70:29: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
jss->getJoystick()->read ( &button_iv[jss->getCurrentJoystickId()],
data/flightgear-2020.1.3+dfsg/src/Input/jsinput.cxx:80:33: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
jss->getJoystick()->read ( ¤t_button, axes ) ;
data/flightgear-2020.1.3+dfsg/src/Input/jsinput.cxx:136:29: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
jss->getJoystick()->read ( NULL,
data/flightgear-2020.1.3+dfsg/src/Input/jsinput.cxx:153:37: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
jss->getJoystick()->read ( NULL, axes ) ;
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD.cxx:588:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(_msg, s, BUFSIZE);
data/flightgear-2020.1.3+dfsg/src/Instrumentation/HUD/HUD.cxx:638:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(tmp2, _msg, p1);
data/flightgear-2020.1.3+dfsg/src/Instrumentation/gps.cxx:1000:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(identBuf, _prevWaypt->ident().c_str(), 15);
data/flightgear-2020.1.3+dfsg/src/Instrumentation/gps.cxx:1028:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(identBuf, _currentWaypt->ident().c_str(), 15);
data/flightgear-2020.1.3+dfsg/src/Main/bootstrap.cxx:315:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (std::strlen(t.getOrigin()) != 0)
data/flightgear-2020.1.3+dfsg/src/Main/locale.cxx:197:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((language != nullptr) && (std::strlen(language) > 0)) {
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:179:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int pos = strlen(buf);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:219:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(&buf[strlen(buf)], "%d:%d", range_from, range_to);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:221:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(&buf[strlen(buf)], "%d", wind_dir);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:222:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(&buf[strlen(buf)], "@%.0lf", wind_speed);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:224:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(&buf[strlen(buf)], ":%.0lf", gust_speed);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:256:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(s, p, 255);
data/flightgear-2020.1.3+dfsg/src/Main/metar_main.cxx:259:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (t = s + strlen(s); t > s; t--)
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:418:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( !strlen(*ppParserPos) )
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:479:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(time_str) ) {
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:491:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(time_str) ) {
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:509:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(time_str) ) {
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:527:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(time_str) ) {
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:572:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(date_str) ||
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:1470:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(callsign,arg,10);
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:3066:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const auto len = strlen(checkArg);
data/flightgear-2020.1.3+dfsg/src/Main/options.cxx:3074:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const auto alen = strlen(arg);
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:210:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
p->string_value = new char[strlen(stringvalue) + 1];
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1260:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(PosMsg->Model, fgGetString("/sim/model/path"), MAX_MODEL_NAME_LEN);
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1468:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
uint32_t len = strlen(lcharptr);
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1522:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
uint32_t len = strlen(lcharptr);
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1680:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (ChatMsg.Text,
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:1950:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(cstr);
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:2290:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(chatStr, ChatMsg->Text,
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:2322:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(MsgHdr->Callsign, mCallsign.c_str(), MAX_CALLSIGN_LEN);
data/flightgear-2020.1.3+dfsg/src/MultiPlayer/multiplaymgr.cxx:2389:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
std::string tail = modelName.substr(strlen("Aircraft/"));
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:79:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int result = read( fd, analog_in_bytes, ATC_ANAL_IN_BYTES );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:94:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int result = read( fd, switch_data, ATC_RADIO_SWITCH_BYTES );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Inputs.cxx:109:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int result = read( fd, switch_bytes, ATC_SWITCH_BYTES );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Main.cxx:68:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int result = read( fd, tmp, 1 );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:65:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int result = read( fd, tmp, 1 );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:190:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = read( fd, buf, 1 );
data/flightgear-2020.1.3+dfsg/src/Network/ATC-Outputs.cxx:353:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(33);
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:67:5: [1] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source is a constant character.
sprintf( msg_A, "A");
data/flightgear-2020.1.3+dfsg/src/Network/AV400.cxx:157:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( buf, sentence.c_str(), length );
data/flightgear-2020.1.3+dfsg/src/Network/AV400Sim.cxx:188:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( buf, sentence.c_str(), length );
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:121:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( buf, sentence.c_str(), length );
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:856:29: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( ( templen = io->read( readbuf, 1 ) ) == 1 ) {
data/flightgear-2020.1.3+dfsg/src/Network/AV400WSim.cxx:977:29: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( ( templen = io->read( readbuf, 1 ) ) == 1 ) {
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:67:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(sentence);
data/flightgear-2020.1.3+dfsg/src/Network/atlas.cxx:182:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( buf, atlas_sentence.c_str(), length );
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:361:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int32_t strlength = strlen(strdata);
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:375:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(&buf[length], strdata, strlength);
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:470:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( buf, generic_sentence.c_str(), length );
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:688:30: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
length = io->read( buf, binary_record_length );
data/flightgear-2020.1.3+dfsg/src/Network/generic.cxx:705:38: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((length = io->read( buf, binary_record_length ))
data/flightgear-2020.1.3+dfsg/src/Network/joyclient.cxx:75:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/joyclient.cxx:93:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/jsclient.cxx:92:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/jsclient.cxx:105:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/lfsglass.cxx:307:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/lfsglass.cxx:312:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/native_ctrls.cxx:481:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ( io->read( (char *)(& net_ctrls), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/native_ctrls.cxx:486:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( io->read( (char *)(& net_ctrls), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/native_fdm.cxx:518:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/native_fdm.cxx:524:26: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = io->read( (char *)(& buf), length );
data/flightgear-2020.1.3+dfsg/src/Network/native_fdm.cxx:530:30: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = io->read( (char *)(& buf), length );
data/flightgear-2020.1.3+dfsg/src/Network/native_gui.cxx:349:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/native_gui.cxx:354:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/opengc.cxx:307:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Network/opengc.cxx:312:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( io->read( (char *)(& buf), length ) == length ) {
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalModelData.cxx:131:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nasalSys->createModule(_module.c_str(), _path.c_str(), s, strlen(s),
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalModelData.cxx:153:69: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nasalSys->createModule(_module.c_str(), _module.c_str(), s, strlen(s), _root);
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalPositioned.cxx:118:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
naStr_fromdata(s, (char*)key, strlen(key));
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:273:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
naStr_fromdata(s, (char*)key, strlen(key));
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:376:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
script->_code = parse(name, src, strlen(src));
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:447:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
naStr_fromdata(nastr, (char*)val, strlen(val));
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:793:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return naStr_fromdata(naNewString(ctx), t, strlen(t));
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:1277:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
createModule(module, n->getPath().c_str(), src, strlen(src));
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:1357:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
file_in.read(bytes, 8192);
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:1388:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
naStr_fromdata(modname, (char*)moduleName, strlen(moduleName));
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:1414:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
naStr_fromdata(modname, (char*)moduleName, strlen(moduleName));
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:1431:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
naStr_fromdata(srcfile, (char*)filename, strlen(filename));
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:1455:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
naRef code = parse(ctx, fileName, src, strlen(src), errorMessage);
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:1467:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
naStr_fromdata(modname, (char*)moduleName, strlen(moduleName));
data/flightgear-2020.1.3+dfsg/src/Scripting/NasalSys.cxx:1845:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
n < 0 ? strlen(s) : n);
data/flightgear-2020.1.3+dfsg/src/Scripting/nasal-props.cxx:55:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
#define NASTR(s) s ? naStr_fromdata(naNewString(c),(char*)(s),strlen(s)) : naNil()
data/flightgear-2020.1.3+dfsg/src/Sound/voice.cxx:166:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int len = _sock->read(buf, 3);
data/flightgear-2020.1.3+dfsg/src/Viewer/renderingpipeline.cxx:98:75: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
SGExpressionb* validExp = dynamic_cast<SGExpressionb*>(parser.read(predProp->getChild(0)));
data/flightgear-2020.1.3+dfsg/test_suite/attic/alcinfo.cxx:261:7: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy((char *)&devname, s, len);
data/flightgear-2020.1.3+dfsg/test_suite/attic/alcinfo.cxx:262:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len -= strlen(s);
data/flightgear-2020.1.3+dfsg/test_suite/attic/alcinfo.cxx:267:10: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
strncat((char *)&devname, " on ", len);
data/flightgear-2020.1.3+dfsg/test_suite/attic/alcinfo.cxx:270:10: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
strncat((char *)&devname, s, len);
data/flightgear-2020.1.3+dfsg/test_suite/attic/alcinfo.cxx:292:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while (*(nptr += strlen(ptr)+1) != 0)
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:8:18: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ( (c = fgetc(fd)) != EOF ) {
data/flightgear-2020.1.3+dfsg/test_suite/attic/test-text.cxx:24:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(line);
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/MIDG-II.cxx:391:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = ch->read( buf, length );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear.cxx:347:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
result = ch->read( buf, length );
data/flightgear-2020.1.3+dfsg/utils/GPSsmooth/UGear_command.cxx:24:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = std::strlen(sentence);
data/flightgear-2020.1.3+dfsg/utils/Modeller/normalmap.cxx:37:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sz = strlen(opt);
data/flightgear-2020.1.3+dfsg/utils/Modeller/normalmap.cxx:91:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i=strlen(texture_file); i>=0; --i)
data/flightgear-2020.1.3+dfsg/utils/demconvert/demconvert.cxx:65:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
arguments.read("--inputvfp", inputvfp);
data/flightgear-2020.1.3+dfsg/utils/demconvert/demconvert.cxx:68:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
arguments.read("--demroot", demroot);
data/flightgear-2020.1.3+dfsg/utils/demconvert/demconvert.cxx:104:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (!arguments.read("--width", tileWidth)) {
data/flightgear-2020.1.3+dfsg/utils/demconvert/demconvert.cxx:112:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (!arguments.read("--height", tileHeight)) {
data/flightgear-2020.1.3+dfsg/utils/demconvert/demconvert.cxx:120:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (!arguments.read("--resx", resx)) {
data/flightgear-2020.1.3+dfsg/utils/demconvert/demconvert.cxx:128:20: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (!arguments.read("--resy", resy)) {
data/flightgear-2020.1.3+dfsg/utils/demconvert/demconvert.cxx:136:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--overlap", overlap)) {
data/flightgear-2020.1.3+dfsg/utils/fgelev/fgelev.cxx:99:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--expire", expire)) {
data/flightgear-2020.1.3+dfsg/utils/fgelev/fgelev.cxx:102:37: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
bool printSolidness = arguments.read("--print-solidness");
data/flightgear-2020.1.3+dfsg/utils/fgelev/fgelev.cxx:105:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--fg-root", fg_root)) {
data/flightgear-2020.1.3+dfsg/utils/fgelev/fgelev.cxx:114:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--fg-scenery", s)) {
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanelApplication.cxx:162:30: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
panel = FGReadablePanel::read (n);
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGPanelApplication.cxx:301:7: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep (useconds_t (requested_us));
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGRGBTextureLoader.cxx:181:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
fin.read ((char*) raw, 12);
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGRGBTextureLoader.cxx:246:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
fin.read ((char*) raw->rowStart, x);
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGRGBTextureLoader.cxx:247:11: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
fin.read ((char*) raw->rowSize, x);
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGRGBTextureLoader.cxx:264:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
raw->file->read ((char*) raw->tmp, (unsigned int) (raw->rowSize[y + z * raw->sizeY]));
data/flightgear-2020.1.3+dfsg/utils/fgpanel/FGRGBTextureLoader.cxx:337:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
raw->file->read ((char*) buf, raw->sizeX * raw->bpc);
data/flightgear-2020.1.3+dfsg/utils/fgpanel/panel_io.cxx:510:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
FGReadablePanel::read (SGPropertyNode_ptr root) {
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/localprop.cpp:132:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return childWithNameAndIndex(QByteArray::fromRawData(name, strlen(name))) != nullptr;
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/localprop.cpp:195:62: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return getOrCreateWithPath(QByteArray::fromRawData(name, strlen(name)));
data/flightgear-2020.1.3+dfsg/utils/fgqcanvas/localprop.cpp:200:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return getWithPath(QByteArray::fromRawData(name, strlen(name)));
data/flightgear-2020.1.3+dfsg/utils/fgviewer/fgviewer.cxx:66:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--fg-root", r)) {
data/flightgear-2020.1.3+dfsg/utils/fgviewer/fgviewer.cxx:76:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--fg-scenery", s)) {
data/flightgear-2020.1.3+dfsg/utils/fgviewer/fgviewer.cxx:100:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (arguments.read("--config", config)) {
data/flightgear-2020.1.3+dfsg/utils/fgviewer/fgviewer.cxx:110:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (arguments.read("--prop", prop, value)) {
data/flightgear-2020.1.3+dfsg/utils/fgviewer/fgviewer.cxx:115:22: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while (arguments.read("--renderer", renderer));
data/flightgear-2020.1.3+dfsg/utils/fgviewer/fgviewer.cxx:117:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--hla")) {
data/flightgear-2020.1.3+dfsg/utils/fgviewer/fgviewer.cxx:121:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--federation", federation)) {
data/flightgear-2020.1.3+dfsg/utils/gui/genfonts.c:191:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
alphabet_length = strlen(alphabet);
data/flightgear-2020.1.3+dfsg/utils/js_server/js_server.cxx:103:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
js->read( &b, ax );
data/flightgear-2020.1.3+dfsg/utils/js_server/js_server.cxx:136:5: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep ( 200 ) ;
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:596:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--fg-root", fg_root)) {
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:603:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--fg-scenery", fg_scenery)) {
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:612:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--terrasync", fg_terrasync_root)) {
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:617:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (!arguments.read("--input", input)) {
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:630:17: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (!arguments.read("--output", output)) {
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:652:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--group-size")) {
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:653:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (! arguments.read("--group-size", group_size)) {
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:659:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--viewer")) {
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:663:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--optimize")) {
data/flightgear-2020.1.3+dfsg/utils/stgmerge/stgmerge.cxx:667:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (arguments.read("--copy-files")) {
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:12:27: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
tag = (a); if (tag) { strncat(s, " <tag>", TS-strlen(s)); strncat(s, tag, TS-strlen(s)); strncat(s, "</tag>\n", TS-strlen(s)); }
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:12:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tag = (a); if (tag) { strncat(s, " <tag>", TS-strlen(s)); strncat(s, tag, TS-strlen(s)); strncat(s, "</tag>\n", TS-strlen(s)); }
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:12:68: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings.
tag = (a); if (tag) { strncat(s, " <tag>", TS-strlen(s)); strncat(s, tag, TS-strlen(s)); strncat(s, "</tag>\n", TS-strlen(s)); }
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:12:87: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tag = (a); if (tag) { strncat(s, " <tag>", TS-strlen(s)); strncat(s, tag, TS-strlen(s)); strncat(s, "</tag>\n", TS-strlen(s)); }
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:12:99: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
tag = (a); if (tag) { strncat(s, " <tag>", TS-strlen(s)); strncat(s, tag, TS-strlen(s)); strncat(s, "</tag>\n", TS-strlen(s)); }
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:12:125: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tag = (a); if (tag) { strncat(s, " <tag>", TS-strlen(s)); strncat(s, tag, TS-strlen(s)); strncat(s, "</tag>\n", TS-strlen(s)); }
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:20:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int slen = strlen(option);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:303:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *fname = calloc(1, strlen(path)+strlen("Engines/")+
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:303:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *fname = calloc(1, strlen(path)+strlen("Engines/")+
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:304:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(file)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:304:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(file)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:309:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:310:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:310:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:311:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:311:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:311:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:312:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:312:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:312:58: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:312:80: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:503:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen("Engines/")+
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:503:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen("Engines/")+
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:504:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(engine)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:504:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(engine)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:509:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:510:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:510:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:511:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), engine, strlen(engine));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:511:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), engine, strlen(engine));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:511:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), engine, strlen(engine));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:512:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(engine), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:512:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(engine), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:512:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(engine), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:512:78: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(engine), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:549:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen("Engines/")+
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:549:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen("Engines/")+
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:550:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(file)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:550:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(file)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:555:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:556:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:556:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:557:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:557:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:557:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:558:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:558:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:558:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:558:76: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:592:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen("Engines/")+
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:592:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen("Engines/")+
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:593:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(file)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:593:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(file)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:598:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:599:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:599:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), "Engines/", strlen("Engines/"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:600:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:600:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:600:61: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/"), file, strlen(file));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:601:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:601:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:601:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:601:76: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen("Engines/")+strlen(file), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:636:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen(aero)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:636:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen(aero)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:636:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen(aero)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:643:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:644:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), aero, strlen(aero));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:644:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), aero, strlen(aero));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:645:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen(aero), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:645:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen(aero), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:645:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen(aero), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:669:13: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
s = strncat(s, " </tags>", TS-strlen(s));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:669:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = strncat(s, " </tags>", TS-strlen(s));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:938:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen(aero)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:938:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen(aero)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:938:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = calloc(1, strlen(path)+strlen(aero)+strlen(".xml")+1);
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:945:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname, path, strlen(path));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:946:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), aero, strlen(aero));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:946:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path), aero, strlen(aero));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:947:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen(aero), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:947:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen(aero), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:947:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(fname+strlen(path)+strlen(aero), ".xml", strlen(".xml"));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:971:13: [1] (buffer) strncat:
Easily used incorrectly (e.g., incorrectly computing the correct maximum
size to add) [MS-banned] (CWE-120). Consider strcat_s, strlcat, snprintf,
or automatically resizing strings. Risk is low because the source is a
constant string.
s = strncat(s, " </tags>", TS-strlen(s));
data/flightgear-2020.1.3+dfsg/utils/xmlgrep/metadata.c:971:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
s = strncat(s, " </tags>", TS-strlen(s));
ANALYSIS SUMMARY:
Hits = 2090
Lines analyzed = 582636 in approximately 16.74 seconds (34802 lines/second)
Physical Source Lines of Code (SLOC) = 416709
Hits@level = [0] 1972 [1] 505 [2] 1325 [3] 90 [4] 169 [5] 1
Hits@level+ = [0+] 4062 [1+] 2090 [2+] 1585 [3+] 260 [4+] 170 [5+] 1
Hits/KSLOC@level+ = [0+] 9.74781 [1+] 5.01549 [2+] 3.80361 [3+] 0.623937 [4+] 0.407959 [5+] 0.00239976
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.