Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/gadmin-samba-0.2.9/src/widgets.c
Examining data/gadmin-samba-0.2.9/src/make_settings_buttons.c
Examining data/gadmin-samba-0.2.9/src/populate_conf_tab.c
Examining data/gadmin-samba-0.2.9/src/create_server_tab.h
Examining data/gadmin-samba-0.2.9/src/apply_server_settings.c
Examining data/gadmin-samba-0.2.9/src/functions.h
Examining data/gadmin-samba-0.2.9/src/widgets.h
Examining data/gadmin-samba-0.2.9/src/file_chooser.c
Examining data/gadmin-samba-0.2.9/src/commands.c
Examining data/gadmin-samba-0.2.9/src/save_settings.c
Examining data/gadmin-samba-0.2.9/src/create_share_tab.h
Examining data/gadmin-samba-0.2.9/src/populate_conns.h
Examining data/gadmin-samba-0.2.9/src/delete_share.h
Examining data/gadmin-samba-0.2.9/src/share_treeview_row_clicked.h
Examining data/gadmin-samba-0.2.9/src/system_defines.h
Examining data/gadmin-samba-0.2.9/src/status_update.h
Examining data/gadmin-samba-0.2.9/src/create_security_tab.c
Examining data/gadmin-samba-0.2.9/src/create_import_question.c
Examining data/gadmin-samba-0.2.9/src/change_macct.h
Examining data/gadmin-samba-0.2.9/src/delete_user.c
Examining data/gadmin-samba-0.2.9/src/create_import_selection.h
Examining data/gadmin-samba-0.2.9/src/chars_are_digits.c
Examining data/gadmin-samba-0.2.9/src/status_update.c
Examining data/gadmin-samba-0.2.9/src/make_settings_spinbuttons.c
Examining data/gadmin-samba-0.2.9/src/create_server_tab.c
Examining data/gadmin-samba-0.2.9/src/add_macct.h
Examining data/gadmin-samba-0.2.9/src/share_treeview_row_clicked.c
Examining data/gadmin-samba-0.2.9/src/make_settings_entries.h
Examining data/gadmin-samba-0.2.9/src/populate_macct_settings.h
Examining data/gadmin-samba-0.2.9/src/make_settings_combos.c
Examining data/gadmin-samba-0.2.9/src/create_user_settings.h
Examining data/gadmin-samba-0.2.9/src/populate_gadmin_samba.c
Examining data/gadmin-samba-0.2.9/src/create_disc_tab.h
Examining data/gadmin-samba-0.2.9/src/change_macct.c
Examining data/gadmin-samba-0.2.9/src/make_settings_hseparators.h
Examining data/gadmin-samba-0.2.9/src/credits_window.h
Examining data/gadmin-samba-0.2.9/src/create_macct_tab.c
Examining data/gadmin-samba-0.2.9/src/gadmin_samba.c
Examining data/gadmin-samba-0.2.9/src/functions.c
Examining data/gadmin-samba-0.2.9/src/select_first_user.h
Examining data/gadmin-samba-0.2.9/src/add_change_user.c
Examining data/gadmin-samba-0.2.9/src/show_info.c
Examining data/gadmin-samba-0.2.9/src/create_conf_tab.c
Examining data/gadmin-samba-0.2.9/src/create_main_window.h
Examining data/gadmin-samba-0.2.9/src/make_settings_combos.h
Examining data/gadmin-samba-0.2.9/src/create_conf_tab.h
Examining data/gadmin-samba-0.2.9/src/populate_shell_combo.c
Examining data/gadmin-samba-0.2.9/src/select_first_user.c
Examining data/gadmin-samba-0.2.9/src/populate_disc_tab.h
Examining data/gadmin-samba-0.2.9/src/select_first_share.h
Examining data/gadmin-samba-0.2.9/src/chars_are_digits.h
Examining data/gadmin-samba-0.2.9/src/create_import_question.h
Examining data/gadmin-samba-0.2.9/src/reread_button_clicked.c
Examining data/gadmin-samba-0.2.9/src/create_user_tab.h
Examining data/gadmin-samba-0.2.9/src/clear_security_tab.h
Examining data/gadmin-samba-0.2.9/src/populate_security_tab.c
Examining data/gadmin-samba-0.2.9/src/standard_conf.c
Examining data/gadmin-samba-0.2.9/src/create_security_tab.h
Examining data/gadmin-samba-0.2.9/src/deactivate_button_clicked.h
Examining data/gadmin-samba-0.2.9/src/populate_server_settings.c
Examining data/gadmin-samba-0.2.9/src/create_user_settings.c
Examining data/gadmin-samba-0.2.9/src/populate_shell_combo.h
Examining data/gadmin-samba-0.2.9/src/populate_security_tab.h
Examining data/gadmin-samba-0.2.9/src/gadmin_samba.h
Examining data/gadmin-samba-0.2.9/src/populate_share_settings.h
Examining data/gadmin-samba-0.2.9/src/populate_server_settings.h
Examining data/gadmin-samba-0.2.9/src/import_functions.h
Examining data/gadmin-samba-0.2.9/src/populate_users.c
Examining data/gadmin-samba-0.2.9/src/populate_users.h
Examining data/gadmin-samba-0.2.9/src/save_conf_tab.c
Examining data/gadmin-samba-0.2.9/src/save_conf_tab.h
Examining data/gadmin-samba-0.2.9/src/allocate.h
Examining data/gadmin-samba-0.2.9/src/select_first_macct.h
Examining data/gadmin-samba-0.2.9/src/support.h
Examining data/gadmin-samba-0.2.9/src/make_settings_progressbars.c
Examining data/gadmin-samba-0.2.9/src/populate_maccts.h
Examining data/gadmin-samba-0.2.9/src/populate_conns.c
Examining data/gadmin-samba-0.2.9/src/macct_treeview_row_clicked.h
Examining data/gadmin-samba-0.2.9/src/make_settings_checkbuttons.c
Examining data/gadmin-samba-0.2.9/src/create_share_settings.c
Examining data/gadmin-samba-0.2.9/src/gettext.h
Examining data/gadmin-samba-0.2.9/src/make_settings_entries.c
Examining data/gadmin-samba-0.2.9/src/add_change_user.h
Examining data/gadmin-samba-0.2.9/src/select_first_macct.c
Examining data/gadmin-samba-0.2.9/src/delete_share.c
Examining data/gadmin-samba-0.2.9/src/apply_server_settings.h
Examining data/gadmin-samba-0.2.9/src/delete_macct.c
Examining data/gadmin-samba-0.2.9/src/populate_macct_settings.c
Examining data/gadmin-samba-0.2.9/src/show_info.h
Examining data/gadmin-samba-0.2.9/src/standard_conf.h
Examining data/gadmin-samba-0.2.9/src/make_settings_labels.h
Examining data/gadmin-samba-0.2.9/src/make_settings_checkbuttons.h
Examining data/gadmin-samba-0.2.9/src/make_settings_buttons.h
Examining data/gadmin-samba-0.2.9/src/support.c
Examining data/gadmin-samba-0.2.9/src/delete_user.h
Examining data/gadmin-samba-0.2.9/src/show_help.c
Examining data/gadmin-samba-0.2.9/src/clear_security_tab.c
Examining data/gadmin-samba-0.2.9/src/add_standard_users.c
Examining data/gadmin-samba-0.2.9/src/allocate.c
Examining data/gadmin-samba-0.2.9/src/populate_conf_tab.h
Examining data/gadmin-samba-0.2.9/src/create_server_settings.c
Examining data/gadmin-samba-0.2.9/src/reread_button_clicked.h
Examining data/gadmin-samba-0.2.9/src/populate_maccts.c
Examining data/gadmin-samba-0.2.9/src/populate_user_settings.h
Examining data/gadmin-samba-0.2.9/src/populate_shares.c
Examining data/gadmin-samba-0.2.9/src/create_del_system_user_question.h
Examining data/gadmin-samba-0.2.9/src/create_share_settings.h
Examining data/gadmin-samba-0.2.9/src/activate_button_clicked.c
Examining data/gadmin-samba-0.2.9/src/set_version.h
Examining data/gadmin-samba-0.2.9/src/create_server_settings.h
Examining data/gadmin-samba-0.2.9/src/user_treeview_row_clicked.h
Examining data/gadmin-samba-0.2.9/src/add_standard_users.h
Examining data/gadmin-samba-0.2.9/src/populate_share_settings.c
Examining data/gadmin-samba-0.2.9/src/create_disc_tab.c
Examining data/gadmin-samba-0.2.9/src/import_functions.c
Examining data/gadmin-samba-0.2.9/src/create_del_system_user_question.c
Examining data/gadmin-samba-0.2.9/src/create_import_selection.c
Examining data/gadmin-samba-0.2.9/src/deactivate_button_clicked.c
Examining data/gadmin-samba-0.2.9/src/create_conn_tab.h
Examining data/gadmin-samba-0.2.9/src/make_settings_hseparators.c
Examining data/gadmin-samba-0.2.9/src/add_macct.c
Examining data/gadmin-samba-0.2.9/src/select_first_share.c
Examining data/gadmin-samba-0.2.9/src/reread_conf.h
Examining data/gadmin-samba-0.2.9/src/commands.h
Examining data/gadmin-samba-0.2.9/src/make_settings_spinbuttons.h
Examining data/gadmin-samba-0.2.9/src/add_share.h
Examining data/gadmin-samba-0.2.9/src/get_option_pos.c
Examining data/gadmin-samba-0.2.9/src/populate_gadmin_samba.h
Examining data/gadmin-samba-0.2.9/src/load_settings.c
Examining data/gadmin-samba-0.2.9/src/save_settings.h
Examining data/gadmin-samba-0.2.9/src/create_macct_settings.h
Examining data/gadmin-samba-0.2.9/src/set_version.c
Examining data/gadmin-samba-0.2.9/src/file_chooser.h
Examining data/gadmin-samba-0.2.9/src/populate_user_settings.c
Examining data/gadmin-samba-0.2.9/src/create_macct_settings.c
Examining data/gadmin-samba-0.2.9/src/commented.h
Examining data/gadmin-samba-0.2.9/src/create_conn_tab.c
Examining data/gadmin-samba-0.2.9/src/apply_share_settings.h
Examining data/gadmin-samba-0.2.9/src/activate_button_clicked.h
Examining data/gadmin-samba-0.2.9/src/delete_macct.h
Examining data/gadmin-samba-0.2.9/src/make_settings_labels.c
Examining data/gadmin-samba-0.2.9/src/credits_window.c
Examining data/gadmin-samba-0.2.9/src/user_treeview_row_clicked.c
Examining data/gadmin-samba-0.2.9/src/populate_disc_tab.c
Examining data/gadmin-samba-0.2.9/src/commented.c
Examining data/gadmin-samba-0.2.9/src/get_option_pos.h
Examining data/gadmin-samba-0.2.9/src/load_settings.h
Examining data/gadmin-samba-0.2.9/src/settings_window.c
Examining data/gadmin-samba-0.2.9/src/make_settings_progressbars.h
Examining data/gadmin-samba-0.2.9/src/create_user_tab.c
Examining data/gadmin-samba-0.2.9/src/create_share_tab.c
Examining data/gadmin-samba-0.2.9/src/apply_share_settings.c
Examining data/gadmin-samba-0.2.9/src/reread_conf.c
Examining data/gadmin-samba-0.2.9/src/macct_treeview_row_clicked.c
Examining data/gadmin-samba-0.2.9/src/system_defines.c
Examining data/gadmin-samba-0.2.9/src/settings_window.h
Examining data/gadmin-samba-0.2.9/src/populate_shares.h
Examining data/gadmin-samba-0.2.9/src/create_macct_tab.h
Examining data/gadmin-samba-0.2.9/src/show_help.h
Examining data/gadmin-samba-0.2.9/src/add_share.c
Examining data/gadmin-samba-0.2.9/src/create_main_window.c
FINAL RESULTS:
data/gadmin-samba-0.2.9/src/add_change_user.c:125:9: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/add_change_user.c:153:13: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/add_change_user.c:174:13: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/add_change_user.c:326:17: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/add_change_user.c:411:16: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/add_change_user.c:434:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/add_macct.c:133:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/add_share.c:100:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(access_buffer, conf_line);
data/gadmin-samba-0.2.9/src/add_share.c:121:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(access_buffer, conf_line);
data/gadmin-samba-0.2.9/src/add_share.c:142:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(access_buffer, conf_line);
data/gadmin-samba-0.2.9/src/add_share.c:163:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(access_buffer, conf_line);
data/gadmin-samba-0.2.9/src/add_share.c:315:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/add_share.c:325:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:328:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:333:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:339:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:346:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, access_buffer);
data/gadmin-samba-0.2.9/src/add_share.c:356:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:362:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:368:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:374:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:384:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:391:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:398:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:405:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:412:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:419:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:426:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:442:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:450:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, opt);
data/gadmin-samba-0.2.9/src/add_share.c:463:16: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/add_share.c:471:16: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/apply_server_settings.c:261:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:306:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "wins server = %s\n", wins_servers);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:307:3: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:310:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:318:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "netbios name = %s\n", server_name);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:319:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:324:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "server string = %s\n", server_comment);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:325:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:330:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "workgroup = %s\n", domain_workgroup);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:331:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:336:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "hosts allow = %s\n", allowed_nets);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:337:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:342:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "interfaces = %s\n", listen_nets);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:343:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:348:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "remote announce = %s\n", announce_server_to);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:349:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:354:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "remote browse sync = %s\n", retrieve_announce_from);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:355:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:360:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "printcap name = %s\n", printcap_path);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:361:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:366:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "guest account = %s\n", guest_users);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:367:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:372:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "log file = %s\n", samba_logfile);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:373:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:378:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "username map = %s\n", samba_username_mapfile);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:379:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:384:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "add user script = %s\n", add_user_script);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:385:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:390:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "passwd program = %s\n", samba_password_program);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:391:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:397:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "passwd chat = %s\n", new_pass_phrase);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:398:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:403:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "socket options = %s\n", socket_options);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:404:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:409:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "name resolve order = %s\n", name_resolve_order);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:410:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:424:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "idmap uid = %s\n", idmap_uid);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:425:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:430:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "idmap gid = %s\n", idmap_gid);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:431:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:436:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "template shell = %s\n", template_shell);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:437:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:442:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "logon drive = %s\n", logon_drive);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:443:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:448:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "logon home = %s\n", logon_home);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:449:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:454:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "logon path = %s\n", logon_path);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:455:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:460:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "logon script = %s\n", logon_script);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:461:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:466:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "realm = %s\n", realm);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:467:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:479:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "add user script = %s\n", add_user_script);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:480:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:485:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "add user to group script = %s\n", add_user_to_group_script);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:486:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:491:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "add group script = %s\n", add_group_script);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:492:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:497:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "del user script = %s\n", del_user_script);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:498:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:503:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "del user from group script = %s\n", del_user_from_group_script);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:504:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:509:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "del group script = %s\n", del_group_script);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:510:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:515:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "add machine script = %s\n", add_machine_script);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:516:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:521:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "winbind separator = %s\n", winbind_separator);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:522:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:549:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:560:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:571:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:582:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:599:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:616:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:633:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:650:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:667:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:684:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:702:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:720:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:738:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:749:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:765:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:776:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:787:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:798:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:809:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:820:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:831:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:842:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:853:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:864:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:875:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:886:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:897:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:908:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:919:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:930:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:941:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:952:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:963:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:974:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:985:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:996:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1007:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1018:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1028:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "max log size = %s\n", max_log_file_size);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1029:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1034:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "username level = %s\n", username_match_level);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1035:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1040:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "password level = %s\n", password_match_level);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1041:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1053:12: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "os level = %s\n", election_level);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1055:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1060:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "passwd chat timeout = %s\n", password_chat_timeout);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1061:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1066:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "machine password timeout = %s\n", machine_password_timeout);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1067:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1072:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(conf_line, "winbind cache time = %s\n", winbind_cache_timeout);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1073:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, conf_line);
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1076:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line); /* Gather all other values */
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1082:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/apply_share_settings.c:102:21: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/apply_share_settings.c:108:11: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/commands.c:43:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(command, "r"))==NULL)
data/gadmin-samba-0.2.9/src/commands.c:53:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(info, line);
data/gadmin-samba-0.2.9/src/commands.c:68:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(command, "w"))==NULL)
data/gadmin-samba-0.2.9/src/commands.c:170:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/commands.c:186:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/commands.c:209:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/commands.c:225:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/create_import_selection.c:247:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_buffer, old_buffer);
data/gadmin-samba-0.2.9/src/delete_macct.c:60:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/delete_share.c:89:7: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/delete_share.c:95:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/delete_user.c:144:9: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_line, temp); /* Add the user */
data/gadmin-samba-0.2.9/src/delete_user.c:162:10: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, new_line); /* Add the users that wherent deleted */
data/gadmin-samba-0.2.9/src/delete_user.c:166:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/delete_user.c:169:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/functions.c:67:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(newbuf, "%s", buf);
data/gadmin-samba-0.2.9/src/functions.c:156:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_buffer, line);
data/gadmin-samba-0.2.9/src/functions.c:166:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_buffer, option);
data/gadmin-samba-0.2.9/src/functions.c:170:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_buffer, line);
data/gadmin-samba-0.2.9/src/functions.c:232:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_buffer, line);
data/gadmin-samba-0.2.9/src/functions.c:244:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_buffer, line);
data/gadmin-samba-0.2.9/src/functions.c:252:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_buffer, line);
data/gadmin-samba-0.2.9/src/functions.c:851:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(user_pass,"w"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:893:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(rnd_string, arr[where]);
data/gadmin-samba-0.2.9/src/functions.c:899:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(salt, "$1$%s$", rnd_string);
data/gadmin-samba-0.2.9/src/functions.c:902:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(salt, "%s", &rnd_string[6]);
data/gadmin-samba-0.2.9/src/functions.c:907:12: [4] (crypto) crypt:
The crypt functions use a poor one-way hashing algorithm; since they only
accept passwords of 8 characters or fewer and only a two-byte salt, they
are excessively vulnerable to dictionary attacks given today's faster
computing equipment (CWE-327). Use a different algorithm, such as SHA-256,
with a larger, non-repeating salt.
return crypt(password, salt);
data/gadmin-samba-0.2.9/src/functions.c:966:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_buffer, old_buffer);
data/gadmin-samba-0.2.9/src/functions.c:1005:6: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_buffer, old_buffer);
data/gadmin-samba-0.2.9/src/functions.c:1008:4: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_buffer, old_buffer);
data/gadmin-samba-0.2.9/src/functions.c:1135:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(homedir_username, rnd_string);
data/gadmin-samba-0.2.9/src/functions.c:1255:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rnd_string, u_arr[where]);
data/gadmin-samba-0.2.9/src/functions.c:1266:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(rnd_string, l_arr[where]);
data/gadmin-samba-0.2.9/src/functions.c:1284:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(rnd_string, u_arr[where]);
data/gadmin-samba-0.2.9/src/functions.c:1289:13: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(rnd_string, l_arr[where]);
data/gadmin-samba-0.2.9/src/import_functions.c:215:16: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/import_functions.c:224:16: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/macct_treeview_row_clicked.c:61:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(global_macct_name, "%s$", (gchar *)macct_name);
data/gadmin-samba-0.2.9/src/populate_conf_tab.c:60:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_buffy, old_buffy);
data/gadmin-samba-0.2.9/src/populate_conns.c:80:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd_buf, "w"))==NULL)
data/gadmin-samba-0.2.9/src/populate_conns.c:159:2: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
sscanf(line, "%s %s %s %s %s", input1, input2, input3, input4, input5);
data/gadmin-samba-0.2.9/src/populate_conns.c:210:6: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
sscanf(line, "%s %*s %*s %*s %*s %s", tmp_pid, input5);
data/gadmin-samba-0.2.9/src/populate_disc_tab.c:58:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(DISC_USAGE, "r"))==NULL)
data/gadmin-samba-0.2.9/src/populate_disc_tab.c:67:9: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
sscanf(buf, "%s %s %s %s %s %s", device, total, used, free, percent, mount);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:139:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:150:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:161:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:172:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:183:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:194:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:205:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:216:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:227:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:238:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:249:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:260:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:271:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:282:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:293:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:304:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:315:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:326:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:337:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:348:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:359:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:370:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:381:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:392:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:403:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:415:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:427:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:438:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:463:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:474:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:485:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:496:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:848:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:862:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:876:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:890:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:904:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:918:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:932:6: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(new_buffer, "%s", &line[opt_pos]);
data/gadmin-samba-0.2.9/src/populate_shell_combo.c:74:6: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(new_buf, line);
data/gadmin-samba-0.2.9/src/save_settings.c:76:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(new_conf, line);
data/gadmin-samba-0.2.9/src/set_version.c:48:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(command, "r"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:181:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buffer, info);
data/gadmin-samba-0.2.9/src/standard_conf.c:227:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buffer, info);
data/gadmin-samba-0.2.9/src/standard_conf.c:311:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buffer, LOCALSTATEDIR);
data/gadmin-samba-0.2.9/src/standard_conf.c:331:5: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buffer, info);
data/gadmin-samba-0.2.9/src/standard_conf.c:380:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:394:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:408:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:422:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:436:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:450:12: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if((fp=popen(cmd, "w"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:651:8: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(conf, line);
data/gadmin-samba-0.2.9/src/functions.c:886:5: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand((unsigned)time(NULL));
data/gadmin-samba-0.2.9/src/functions.c:1246:5: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand((unsigned)time(NULL));
data/gadmin-samba-0.2.9/src/functions.c:1277:5: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand((unsigned)time(NULL));
data/gadmin-samba-0.2.9/src/add_change_user.c:90:47: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if( password!=NULL && strlen(password) >= atoi(MIN_PASS_LEN) )
data/gadmin-samba-0.2.9/src/add_change_user.c:251:50: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
&& ( password == NULL || strlen(password) < atoi(MIN_PASS_LEN) ))
data/gadmin-samba-0.2.9/src/add_change_user.c:323:44: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if( password!=NULL && strlen(password) >= atoi(MIN_PASS_LEN) )
data/gadmin-samba-0.2.9/src/add_change_user.c:408:47: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if( password!=NULL && strlen(password) >= atoi(MIN_PASS_LEN) )
data/gadmin-samba-0.2.9/src/add_share.c:49:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_name[1024];
data/gadmin-samba-0.2.9/src/add_share.c:280:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/add_share.c:479:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/add_standard_users.c:49:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(path, "r"))==NULL)
data/gadmin-samba-0.2.9/src/add_standard_users.c:128:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(path, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/apply_server_settings.c:106:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/apply_server_settings.c:240:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/apply_server_settings.c:536:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "security = user\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:539:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "security = user\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:542:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "security = domain\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:545:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "security = ads\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:547:8: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "security = user\n"); /* Default to user sec level */
data/gadmin-samba-0.2.9/src/apply_server_settings.c:556:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "load printers = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:558:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "load printers = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:567:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "cups options = raw\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:569:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "cups options =\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:578:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "null passwords = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:580:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "null passwords = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:589:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "encrypt passwords = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:592:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "encrypt passwords = yes\n"); /* We still want this for user sec */
data/gadmin-samba-0.2.9/src/apply_server_settings.c:595:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "encrypt passwords = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:597:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "encrypt passwords = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:606:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "unix password sync = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:609:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "unix password sync = yes\n"); /* We still want this for user sec */
data/gadmin-samba-0.2.9/src/apply_server_settings.c:612:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "unix password sync = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:614:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "unix password sync = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:623:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "local master = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:626:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "local master = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:629:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "local master = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:631:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "local master = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:640:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "domain master = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:643:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "domain master = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:646:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "domain master = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:648:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "domain master = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:657:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "preferred master = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:660:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "preferred master = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:663:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "preferred master = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:665:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "preferred master = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:674:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "time server = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:677:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "time server = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:680:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "time server = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:682:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "time server = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:691:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "domain logons = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:694:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "domain logons = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:697:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "domain logons = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:700:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "domain logons = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:709:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "wins support = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:712:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "wins support = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:715:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "wins support = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:718:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "wins support = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:727:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "wins proxy = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:730:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "wins proxy = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:733:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "wins proxy = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:736:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "wins proxy = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:745:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "dns proxy = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:747:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "dns proxy = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:761:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "preserve case = yes\nshort preserve case = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:763:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "preserve case = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:772:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "client use spnego = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:774:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "client use spnego = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:783:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "client signing = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:785:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "client signing = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:794:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "client schannel = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:796:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "client schannel = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:805:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "server signing = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:807:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "server signing = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:816:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "server schannel = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:818:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "server schannel = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:827:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "nt pipe support = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:829:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "nt pipe support = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:838:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "nt status support = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:840:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "nt status support = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:849:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "allow trusted domains = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:851:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "allow trusted domains = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:860:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "obey pam restrictions = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:862:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "obey pam restrictions = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:871:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "enable spoolss = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:873:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "enable spoolss = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:882:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "client plaintext auth = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:884:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "client plaintext auth = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:893:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "disable netbios = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:895:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "disable netbios = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:904:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "follow symlinks = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:906:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "follow symlinks = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:915:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "update encrypted = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:917:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "update encrypted = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:926:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "pam password change = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:928:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "pam password change = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:937:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "hostname lookups = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:939:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "hostname lookups = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:948:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "hostname lookups = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:950:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "hostname lookups = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:959:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind use default domain = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:961:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind use default domain = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:970:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind trusted domains only = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:972:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind trusted domains only = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:981:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind nested groups = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:983:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind nested groups = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:992:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind nss info = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:994:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind nss info = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1003:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind refresh tickets = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1005:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind refresh tickets = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1014:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind offline logon = yes\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1016:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "winbind offline logon = no\n");
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1048:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "os level = 80\n"); /* 35 is max but 80 doesnt hurt */
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1051:12: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(conf_line, "os level = 33\n"); /* 33 is default for user level security */
data/gadmin-samba-0.2.9/src/apply_server_settings.c:1092:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/apply_share_settings.c:37:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_name[1024];
data/gadmin-samba-0.2.9/src/apply_share_settings.c:69:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/apply_share_settings.c:121:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/clear_security_tab.c:43:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(path, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/commands.c:133:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(infile, "r"))==NULL)
data/gadmin-samba-0.2.9/src/create_import_selection.c:225:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(PASSWD_FILE, "r"))==NULL)
data/gadmin-samba-0.2.9/src/delete_macct.c:41:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_macct_name[1024];
data/gadmin-samba-0.2.9/src/delete_share.c:42:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_name[1024];
data/gadmin-samba-0.2.9/src/delete_share.c:54:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/delete_share.c:108:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/delete_user.c:53:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_user_name[1024];
data/gadmin-samba-0.2.9/src/delete_user.c:86:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/delete_user.c:154:12: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(new_conf, "valid users ="); /* Whitespace added above */
data/gadmin-samba-0.2.9/src/delete_user.c:157:12: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(new_conf, "write list ="); /* Whitespace added above */
data/gadmin-samba-0.2.9/src/delete_user.c:160:12: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(new_conf, "admin users ="); /* Whitespace added above */
data/gadmin-samba-0.2.9/src/delete_user.c:178:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:115:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:167:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(new_buffer, " =\n");
data/gadmin-samba-0.2.9/src/functions.c:175:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:210:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:257:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:278:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempname[4096]="";
data/gadmin-samba-0.2.9/src/functions.c:285:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(GADMIN_SAMBA_USERS,"r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:333:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempname[4096]="";
data/gadmin-samba-0.2.9/src/functions.c:337:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(GADMIN_SAMBA_USERS,"r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:418:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempname[4096]="";
data/gadmin-samba-0.2.9/src/functions.c:421:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(PASSWD_FILE,"r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:457:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SHADOW_FILE,"r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:505:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempname[4096]="";
data/gadmin-samba-0.2.9/src/functions.c:508:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(GROUP_FILE,"r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:543:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp = fopen(GSHADOW_FILE,"r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:599:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(GROUP_FILE,"r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:710:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(PASSWD_FILE,"r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:876:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char salt[13]=""; /* The total salt length is 12 */
data/gadmin-samba-0.2.9/src/functions.c:911:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void make_dir_chmod(gchar *directory, char perm[128])
data/gadmin-samba-0.2.9/src/functions.c:923:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void make_file_chmod(gchar *file, char perm[128])
data/gadmin-samba-0.2.9/src/functions.c:946:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:976:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:987:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:1014:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/functions.c:1073:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
len = atoi((char *)default_username_length);
data/gadmin-samba-0.2.9/src/functions.c:1165:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
len = atoi(default_password_length);
data/gadmin-samba-0.2.9/src/functions.h:65:35: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void make_file_chmod(gchar *file, char perm[128]);
data/gadmin-samba-0.2.9/src/functions.h:66:39: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void make_dir_chmod(gchar *directory, char perm[128]);
data/gadmin-samba-0.2.9/src/gadmin_samba.c:67:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char global_user_name[1024]="";
data/gadmin-samba-0.2.9/src/gadmin_samba.c:68:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char global_share_name[1024]="";
data/gadmin-samba-0.2.9/src/gadmin_samba.c:69:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char global_share_comment[1024]="";
data/gadmin-samba-0.2.9/src/gadmin_samba.c:70:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char global_share_directory[16384]="";
data/gadmin-samba-0.2.9/src/gadmin_samba.c:71:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char global_macct_name[1024]="";
data/gadmin-samba-0.2.9/src/import_functions.c:48:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_name[1024];
data/gadmin-samba-0.2.9/src/load_settings.c:46:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(settings_file, "r"))==NULL)
data/gadmin-samba-0.2.9/src/macct_treeview_row_clicked.c:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_macct_name[1024];
data/gadmin-samba-0.2.9/src/make_settings_buttons.c:31:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icon_name[100],
data/gadmin-samba-0.2.9/src/make_settings_buttons.h:28:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char icon_name[100],
data/gadmin-samba-0.2.9/src/populate_conf_tab.c:45:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/populate_conns.c:69:13: [2] (tmpfile) mkstemp:
Potential for temporary file vulnerability in some circumstances. Some
older Unix-like systems create temp files with permission to write by all
by default, so be sure to set the umask to override this. Also, some older
Unix systems might fail to use O_EXCL when opening the file, so make sure
that O_EXCL is used by the library (CWE-377).
tmpfd = mkstemp(filename);
data/gadmin-samba-0.2.9/src/populate_conns.c:93:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen((char *)filename, "r"))==NULL)
data/gadmin-samba-0.2.9/src/populate_disc_tab.c:52:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_READ_POPEN]="";
data/gadmin-samba-0.2.9/src/populate_disc_tab.c:53:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mount[8192]="", free[1024]="", used[1024]="", total[1024]="", percent[1024]="", device[8192]="";
data/gadmin-samba-0.2.9/src/populate_macct_settings.c:36:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_macct_name[1024];
data/gadmin-samba-0.2.9/src/populate_maccts.c:36:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_macct_name[1024];
data/gadmin-samba-0.2.9/src/populate_maccts.c:60:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(GADMIN_SAMBA_USERS, "r"))==NULL)
data/gadmin-samba-0.2.9/src/populate_security_tab.c:57:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen("/var/log/samba/samba.log", "r"))==NULL) // SECURE_LOG... hmm
data/gadmin-samba-0.2.9/src/populate_server_settings.c:48:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/populate_server_settings.c:854:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(new_buffer);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:868:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(new_buffer);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:882:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(new_buffer);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:896:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(new_buffer);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:910:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(new_buffer);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:924:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(new_buffer);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:938:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(new_buffer);
data/gadmin-samba-0.2.9/src/populate_share_settings.c:39:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_name[1024];
data/gadmin-samba-0.2.9/src/populate_share_settings.c:67:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/populate_shares.c:40:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_name[1024];
data/gadmin-samba-0.2.9/src/populate_shares.c:41:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_comment[1024];
data/gadmin-samba-0.2.9/src/populate_shares.c:42:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_directory[16384];
data/gadmin-samba-0.2.9/src/populate_shares.c:62:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/populate_shell_combo.c:53:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SHELLS_FILE, "r"))==NULL)
data/gadmin-samba-0.2.9/src/populate_user_settings.c:35:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_user_name[1024];
data/gadmin-samba-0.2.9/src/populate_users.c:37:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_user_name[1024];
data/gadmin-samba-0.2.9/src/populate_users.c:63:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(GADMIN_SAMBA_USERS, "r"))==NULL)
data/gadmin-samba-0.2.9/src/save_conf_tab.c:50:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/save_settings.c:47:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(settings_file, "r"))==NULL)
data/gadmin-samba-0.2.9/src/save_settings.c:88:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(settings_file, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/select_first_macct.c:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_macct_name[1024];
data/gadmin-samba-0.2.9/src/select_first_share.c:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_name[1024];
data/gadmin-samba-0.2.9/src/select_first_share.c:30:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_comment[1024];
data/gadmin-samba-0.2.9/src/select_first_share.c:31:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_directory[16384];
data/gadmin-samba-0.2.9/src/select_first_user.c:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_user_name[1024];
data/gadmin-samba-0.2.9/src/share_treeview_row_clicked.c:30:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_share_name[1024];
data/gadmin-samba-0.2.9/src/standard_conf.c:49:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(file_path, "r"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:81:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "r"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:152:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SAMBA_CONF, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:161:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(buffer, "[global]\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:162:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "netbios name = Samba24\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:163:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "server string = Samba file and print server\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:164:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "workgroup = Workgroup\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:165:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "security = user\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:167:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "hosts allow = 127. 192.168.0.\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:168:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "interfaces = 127.0.0.1/8 192.168.0.0/24\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:169:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "bind interfaces only = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:170:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "remote announce = 192.168.0.255\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:171:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "remote browse sync = 192.168.0.255\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:173:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "printcap name = cups\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:174:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "load printers = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:175:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "cups options = raw\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:176:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "printing = cups\n"); /* Fixme: Combo: cups, bsd etc */
data/gadmin-samba-0.2.9/src/standard_conf.c:178:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "guest account = smbguest\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:184:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "max log size = 1000\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:185:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "null passwords = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:186:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "username level = 6\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:187:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "password level = 6\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:188:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "encrypt passwords = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:189:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "unix password sync = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:190:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:191:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "local master = no\n"); /* Only one per subnet. */
data/gadmin-samba-0.2.9/src/standard_conf.c:192:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "domain master = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:193:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "preferred master = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:194:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "domain logons = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:195:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "os level = 33\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:196:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "logon drive = m:\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:197:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "logon home = \\\\%L\\homes\\%u\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:198:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "logon path = \\\\%L\\profiles\\%u\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:199:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "logon script = %G.bat\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:200:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "time server = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:201:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "name resolve order = wins lmhosts bcast\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:202:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "wins support = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:204:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "wins proxy = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:205:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "dns proxy = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:206:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "preserve case = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:207:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "short preserve case = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:208:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "client use spnego = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:209:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "client signing = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:210:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "client schannel = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:211:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "server signing = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:212:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "server schannel = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:213:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "nt pipe support = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:214:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "nt status support = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:215:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "allow trusted domains = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:216:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "obey pam restrictions = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:217:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "enable spoolss = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:218:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "client plaintext auth = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:219:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "disable netbios = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:220:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "follow symlinks = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:221:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "update encrypted = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:222:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "pam password change = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:223:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "passwd chat timeout = 120\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:224:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "hostname lookups = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:231:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "passdb backend = tdbsam\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:234:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "passwd program = /usr/bin/passwd '%u'\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:240:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "passwd chat = *New*password* %n\\n *ReType*new*password* %n\\n *passwd*changed*\\n\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:241:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "add user script = /usr/sbin/useradd -d /dev/null -c 'Samba User Account' -s /dev/null '%u'\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:242:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "add user to group script=/usr/sbin/useradd -d /dev/null -c 'Samba User Account' -s /dev/null -g '%g' '%u'\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:243:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "add group script = /usr/sbin/groupadd '%g'\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:244:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "delete user script = /usr/sbin/userdel '%u'\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:245:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "delete user from group script = /usr/sbin/userdel '%u' '%g'\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:246:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "delete group script = /usr/sbin/groupdel '%g'\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:247:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "add machine script = /usr/sbin/useradd -d /dev/null -g sambamachines -c 'Samba Machine Account' -s /dev/null -M '%u'\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:248:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "machine password timeout = 120\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:249:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "idmap uid = 16777216-33554431\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:250:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "idmap gid = 16777216-33554431\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:251:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "template shell = /dev/null\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:254:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "winbind use default domain = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:255:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "winbind separator = @\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:256:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "winbind cache time = 360\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:257:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "winbind trusted domains only = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:258:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "winbind nested groups = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:259:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "winbind nss info = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:260:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "winbind refresh tickets = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:261:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "winbind offline logon = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:275:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "[homes]\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:276:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "comment = Home Directories\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:277:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "path = /home\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:278:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "read only = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:279:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "available = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:280:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "browseable = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:281:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "writable = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:282:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "guest ok = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:283:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "public = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:284:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "printable = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:286:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "locking = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:287:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "strict locking = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:290:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "[netlogon]\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:291:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "comment = Network Logon Service\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:292:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "path = /home/netlogon\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:293:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "read only = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:294:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "available = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:295:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "browseable = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:296:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "writable = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:297:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "guest ok = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:298:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "public = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:299:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "printable = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:301:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "locking = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:302:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "strict locking = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:307:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "[profiles]\n"); /* This must be writable */
data/gadmin-samba-0.2.9/src/standard_conf.c:308:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "comment = User Profiles\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:310:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "path = ");
data/gadmin-samba-0.2.9/src/standard_conf.c:312:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "/samba/profiles\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:314:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "read only = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:315:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "available = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:316:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "browseable = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:317:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "writable = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:318:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "guest ok = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:319:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "public = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:320:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "printable = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:321:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "create mode = 0600\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:322:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "directory mask = 0700\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:323:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "locking = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:324:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "strict locking = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:328:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "[printers]\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:329:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "comment = All Printers\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:333:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "browseable = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:334:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "writable = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:335:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "guest ok = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:336:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "public = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:337:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "printable = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:339:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "locking = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:340:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "strict locking = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:345:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "[pdf-documents]\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:346:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "path = /home/pdf-documents\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:347:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "comment = Converted PDF Documents\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:348:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "available = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:349:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "browseable = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:350:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "writeable = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:351:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "guest ok = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:352:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "locking = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:353:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "strict locking = no\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:357:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "[pdf-printer]\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:358:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "path = /tmp\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:359:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "comment = PDF Printer Service\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:360:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "printable = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:361:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "guest ok = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:362:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "use client driver = yes\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:363:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "printing = bsd\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:364:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "print command = /usr/bin/gadmin-samba-pdf %s %u\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:365:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "lpq command =\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:366:5: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(buffer, "lprm command =\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:610:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SETTINGS_FILE, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:624:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SETTINGS_FILE, "r"))==NULL)
data/gadmin-samba-0.2.9/src/standard_conf.c:647:10: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(conf, "show_conf_question: false\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:659:7: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(conf, "show_conf_question: false\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:662:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(SETTINGS_FILE, "w+"))==NULL)
data/gadmin-samba-0.2.9/src/status_update.c:45:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char * get_process_pid(char process[1024])
data/gadmin-samba-0.2.9/src/status_update.c:45:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char * get_process_pid(char process[1024])
data/gadmin-samba-0.2.9/src/status_update.c:54:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(pid, "NONE");
data/gadmin-samba-0.2.9/src/status_update.c:72:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if((fp=fopen(sub_proc_path, "r"))==NULL)
data/gadmin-samba-0.2.9/src/status_update.c:157:8: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(ext_info,", inactive servers:");
data/gadmin-samba-0.2.9/src/status_update.c:160:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(ext_info," smbd ");
data/gadmin-samba-0.2.9/src/status_update.c:163:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(ext_info," nmbd ");
data/gadmin-samba-0.2.9/src/status_update.c:166:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(ext_info," winbindd ");
data/gadmin-samba-0.2.9/src/status_update.h:26:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char * process_running(char process[1024]); //, char extmatch[1024]);
data/gadmin-samba-0.2.9/src/status_update.h:26:24: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char * process_running(char process[1024]); //, char extmatch[1024]);
data/gadmin-samba-0.2.9/src/user_treeview_row_clicked.c:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char global_user_name[1024];
data/gadmin-samba-0.2.9/src/add_change_user.c:90:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( password!=NULL && strlen(password) >= atoi(MIN_PASS_LEN) )
data/gadmin-samba-0.2.9/src/add_change_user.c:105:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( username == NULL || strlen(username) < 1 )
data/gadmin-samba-0.2.9/src/add_change_user.c:251:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& ( password == NULL || strlen(password) < atoi(MIN_PASS_LEN) ))
data/gadmin-samba-0.2.9/src/add_change_user.c:275:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( username == NULL || strlen(username) < 1 )
data/gadmin-samba-0.2.9/src/add_change_user.c:282:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( groupname == NULL || strlen(groupname) < 1 )
data/gadmin-samba-0.2.9/src/add_change_user.c:289:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( comment == NULL || strlen(comment) < 1 )
data/gadmin-samba-0.2.9/src/add_change_user.c:296:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( homedir == NULL || strlen(homedir) < 2 )
data/gadmin-samba-0.2.9/src/add_change_user.c:303:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( shell == NULL || strlen(shell) < 2 )
data/gadmin-samba-0.2.9/src/add_change_user.c:323:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( password!=NULL && strlen(password) >= atoi(MIN_PASS_LEN) )
data/gadmin-samba-0.2.9/src/add_change_user.c:408:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( password!=NULL && strlen(password) >= atoi(MIN_PASS_LEN) )
data/gadmin-samba-0.2.9/src/add_share.c:75:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
data_size = data_size + (strlen(option1)+15);
data/gadmin-samba-0.2.9/src/add_share.c:199:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( share_name == NULL || strlen(share_name) < 1 )
data/gadmin-samba-0.2.9/src/add_share.c:207:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( directory == NULL || strlen(directory) < 2 )
data/gadmin-samba-0.2.9/src/add_share.c:245:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( access_buffer!=NULL && strlen(access_buffer) > 2
data/gadmin-samba-0.2.9/src/add_share.c:246:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& access_buffer[strlen(access_buffer)-1]!='\n' )
data/gadmin-samba-0.2.9/src/add_share.c:247:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(access_buffer, "\n");
data/gadmin-samba-0.2.9/src/add_share.c:255:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( access_buffer!=NULL && strlen(access_buffer) > 2
data/gadmin-samba-0.2.9/src/add_share.c:256:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& access_buffer[strlen(access_buffer)-1]!='\n' )
data/gadmin-samba-0.2.9/src/add_share.c:257:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(access_buffer, "\n");
data/gadmin-samba-0.2.9/src/add_share.c:265:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( access_buffer!=NULL && strlen(access_buffer) > 2
data/gadmin-samba-0.2.9/src/add_share.c:266:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& access_buffer[strlen(access_buffer)-1]!='\n' )
data/gadmin-samba-0.2.9/src/add_share.c:267:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(access_buffer, "\n");
data/gadmin-samba-0.2.9/src/add_share.c:275:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( access_buffer!=NULL && strlen(access_buffer) > 2
data/gadmin-samba-0.2.9/src/add_share.c:276:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& access_buffer[strlen(access_buffer)-1]!='\n' )
data/gadmin-samba-0.2.9/src/add_share.c:277:7: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(access_buffer, "\n");
data/gadmin-samba-0.2.9/src/add_share.c:330:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( comment !=NULL && strlen(comment) > 1 )
data/gadmin-samba-0.2.9/src/add_share.c:344:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( access_buffer!=NULL && strlen(access_buffer) > 5 )
data/gadmin-samba-0.2.9/src/add_share.c:353:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( dir_mask !=NULL && strlen(dir_mask) > 1 )
data/gadmin-samba-0.2.9/src/add_share.c:359:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( create_mode !=NULL && strlen(create_mode) > 1 )
data/gadmin-samba-0.2.9/src/add_share.c:365:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( force_user !=NULL && strlen(force_user) > 1 )
data/gadmin-samba-0.2.9/src/add_share.c:371:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( force_group !=NULL && strlen(force_group) > 1 )
data/gadmin-samba-0.2.9/src/apply_server_settings.c:223:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(server_name) == 0 )
data/gadmin-samba-0.2.9/src/apply_server_settings.c:230:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(domain_workgroup) == 0 )
data/gadmin-samba-0.2.9/src/apply_server_settings.c:288:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) > 4000 )
data/gadmin-samba-0.2.9/src/apply_server_settings.c:304:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( wins_servers!=NULL && strlen(wins_servers) > 7 )
data/gadmin-samba-0.2.9/src/commands.c:96:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(cmd) > 4 )
data/gadmin-samba-0.2.9/src/commands.c:118:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(cmd) > 4 )
data/gadmin-samba-0.2.9/src/commented.c:32:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( line!=NULL && strlen(line) > 0 )
data/gadmin-samba-0.2.9/src/create_import_selection.c:117:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(import_msg, strlen(import_msg), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_import_selection.c:203:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(import_msg, strlen(import_msg), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_import_selection.c:241:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(old_buffer) > 10 && strlen(old_buffer) < 4000 )
data/gadmin-samba-0.2.9/src/create_import_selection.c:241:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(old_buffer) > 10 && strlen(old_buffer) < 4000 )
data/gadmin-samba-0.2.9/src/create_import_selection.c:259:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_import_selection.c:266:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(group_name, strlen(group_name), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:88:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:94:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:100:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:106:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:146:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:149:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:167:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:193:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:196:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:214:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:217:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:225:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:228:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:241:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:244:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:252:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:255:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:263:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:266:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:279:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:282:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:310:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:313:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:326:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:329:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:342:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:345:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:353:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:356:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:364:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:367:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:375:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:378:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:386:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:389:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:397:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:400:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:408:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:411:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:419:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:422:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:430:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:433:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:441:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:444:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:452:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:455:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:463:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:466:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:474:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:477:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:485:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:488:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:496:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:499:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:507:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:510:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:518:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:521:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:529:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:532:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:545:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:548:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:641:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:644:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:662:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:665:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:673:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:676:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:684:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:687:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:695:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:698:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:706:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_server_settings.c:709:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:542:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:545:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:553:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:556:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:564:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:567:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:575:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:578:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:586:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:589:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:597:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:600:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:608:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:611:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:631:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:634:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:642:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/create_share_settings.c:645:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/delete_user.c:75:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length = strlen(username);
data/gadmin-samba-0.2.9/src/delete_user.c:122:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i=strlen(user_line)-1; user_line[i]!='\0'; i--)
data/gadmin-samba-0.2.9/src/delete_user.c:130:6: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(user_line, " ");
data/gadmin-samba-0.2.9/src/delete_user.c:143:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(new_line, " "); /* Add whitespace */
data/gadmin-samba-0.2.9/src/delete_user.c:163:10: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(new_conf, "\n");
data/gadmin-samba-0.2.9/src/delete_user.c:189:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& username[2]=='o' && username[3]=='t' && strlen(username)==4 )
data/gadmin-samba-0.2.9/src/delete_user.c:290:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
length = strlen(username);
data/gadmin-samba-0.2.9/src/delete_user.c:299:89: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( username[0]=='r' && username[1]=='o' && username[2]=='o' && username[3]=='t' && strlen(username) == 4 )
data/gadmin-samba-0.2.9/src/functions.c:62:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(buf) < 2 )
data/gadmin-samba-0.2.9/src/functions.c:65:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newbuf = allocate(strlen(buf)+1);
data/gadmin-samba-0.2.9/src/functions.c:109:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( option==NULL || strlen(option)<3 )
data/gadmin-samba-0.2.9/src/functions.c:202:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( option==NULL || strlen(option)<3 )
data/gadmin-samba-0.2.9/src/functions.c:628:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(y=strlen(temp)-1; temp[y]; y--)
data/gadmin-samba-0.2.9/src/functions.c:651:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(y=strlen(line)-1; line[y]!='\0'; y--)
data/gadmin-samba-0.2.9/src/functions.c:774:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(tempname) < 351 && ! strstr(tempname, ":") )
data/gadmin-samba-0.2.9/src/functions.c:973:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(new_buffer, "\n");
data/gadmin-samba-0.2.9/src/functions.c:1004:6: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(new_buffer, "\n");
data/gadmin-samba-0.2.9/src/functions.c:1035:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( path[strlen(path)-1]=='*' )
data/gadmin-samba-0.2.9/src/functions.c:1036:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
path[strlen(path)-1]='\0';
data/gadmin-samba-0.2.9/src/functions.c:1038:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( path[strlen(path)-1]=='/' )
data/gadmin-samba-0.2.9/src/functions.c:1039:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
path[strlen(path)-1]='\0';
data/gadmin-samba-0.2.9/src/functions.c:1072:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen((char *)default_username_length) < 4 )
data/gadmin-samba-0.2.9/src/functions.c:1097:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(rnd_string, strlen(rnd_string), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/functions.c:1110:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen((char *)default_homedir) > 8192 )
data/gadmin-samba-0.2.9/src/functions.c:1124:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( homedir_username[strlen(homedir_username)-1]=='/' )
data/gadmin-samba-0.2.9/src/functions.c:1125:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
homedir_username[strlen(homedir_username)-1]='\0';
data/gadmin-samba-0.2.9/src/functions.c:1127:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( homedir_username[strlen(homedir_username)-1]=='/' )
data/gadmin-samba-0.2.9/src/functions.c:1128:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
homedir_username[strlen(homedir_username)-1]='\0';
data/gadmin-samba-0.2.9/src/functions.c:1130:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( homedir_username[strlen(homedir_username)-1]=='*' )
data/gadmin-samba-0.2.9/src/functions.c:1131:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
homedir_username[strlen(homedir_username)-1]='\0';
data/gadmin-samba-0.2.9/src/functions.c:1134:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(homedir_username, "/");
data/gadmin-samba-0.2.9/src/functions.c:1137:47: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(homedir_username, strlen(homedir_username), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/functions.c:1164:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(default_password_length) < 4 )
data/gadmin-samba-0.2.9/src/functions.c:1189:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(rnd_string, strlen(rnd_string), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/functions.c:1243:5: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(300000);
data/gadmin-samba-0.2.9/src/functions.c:1276:5: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(300000);
data/gadmin-samba-0.2.9/src/gadmin_samba.c:123:10: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000*10);
data/gadmin-samba-0.2.9/src/get_option_pos.c:34:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( line!=NULL && strlen(line) > 0 )
data/gadmin-samba-0.2.9/src/get_option_pos.c:47:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( line!=NULL && strlen(line) > 0 )
data/gadmin-samba-0.2.9/src/import_functions.c:128:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(mod_name) == 0 && global_import_users && global_import_local )
data/gadmin-samba-0.2.9/src/import_functions.c:136:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(mod_name) < 2 && global_import_groups && global_import_local )
data/gadmin-samba-0.2.9/src/import_functions.c:159:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(mod_name, strlen(mod_name), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/import_functions.c:170:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(mod_name, strlen(mod_name), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/import_functions.c:181:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(mod_name, strlen(mod_name), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/import_functions.c:192:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(mod_name, strlen(mod_name), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/load_settings.c:60:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) > 1000 )
data/gadmin-samba-0.2.9/src/populate_conf_tab.c:64:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffy, strlen(new_buffy), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_conf_tab.c:66:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gtk_text_buffer_set_text(conf_textbuffer, utf8, strlen(utf8));
data/gadmin-samba-0.2.9/src/populate_conns.c:152:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) < 10 || strlen(line) > 4000 )
data/gadmin-samba-0.2.9/src/populate_conns.c:152:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) < 10 || strlen(line) > 4000 )
data/gadmin-samba-0.2.9/src/populate_conns.c:165:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(input1, strlen(input1), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_conns.c:169:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(input2, strlen(input2), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_conns.c:173:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(input3, strlen(input3), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_conns.c:177:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(input4, strlen(input4), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_conns.c:181:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(input5, strlen(input5), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_conns.c:206:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) < 10 || strlen(line) > 16000 )
data/gadmin-samba-0.2.9/src/populate_conns.c:206:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) < 10 || strlen(line) > 16000 )
data/gadmin-samba-0.2.9/src/populate_conns.c:229:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(z=strlen(line)-1; z>0; z--)
data/gadmin-samba-0.2.9/src/populate_conns.c:248:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combined, strlen(combined), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_disc_tab.c:71:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(mount, strlen(mount), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_disc_tab.c:74:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(free, strlen(free), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_disc_tab.c:77:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(used, strlen(used), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_disc_tab.c:80:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(total, strlen(total), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_disc_tab.c:83:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(percent, strlen(percent), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_disc_tab.c:86:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(device, strlen(device), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_macct_settings.c:50:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( info == NULL || strlen(info) < 1 )
data/gadmin-samba-0.2.9/src/populate_macct_settings.c:65:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( machine_name!=NULL && strlen(machine_name) > 1 )
data/gadmin-samba-0.2.9/src/populate_macct_settings.c:66:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
machine_name[strlen(machine_name)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_maccts.c:78:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strstr(line, "#") || ! strstr(line, "$") || strlen(line) < 10 )
data/gadmin-samba-0.2.9/src/populate_maccts.c:89:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(username, strlen(username)-1, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_maccts.c:98:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(groupname, strlen(groupname), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_maccts.c:106:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(val, strlen(val), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_maccts.c:125:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(global_macct_name, "");
data/gadmin-samba-0.2.9/src/populate_security_tab.c:73:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(buffy) < 10 )
data/gadmin-samba-0.2.9/src/populate_security_tab.c:78:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(buffy, strlen(buffy)-1, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:140:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:140:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:141:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:143:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:151:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:151:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:152:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:154:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:162:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:162:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:163:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:165:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:173:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:173:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:174:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:176:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:184:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:184:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:185:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:187:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:195:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:195:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:196:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:198:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:206:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:206:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:207:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:209:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:217:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:217:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:218:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:220:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:228:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:228:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:229:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:231:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:239:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:239:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:240:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:242:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:250:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:250:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:251:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:253:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:261:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:261:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:262:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:264:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:272:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:272:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:273:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:275:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:283:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:283:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:284:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:286:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:294:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:294:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:295:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:297:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:305:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:305:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:306:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:308:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:316:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:316:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:317:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:319:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:327:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:327:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:328:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:330:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:338:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:338:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:339:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:341:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:349:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:349:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:350:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:352:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:360:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:360:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:361:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:363:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:371:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:371:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:372:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:374:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:382:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:382:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:383:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:385:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:393:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:393:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:394:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:396:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:404:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:404:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:405:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:407:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:416:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:416:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:417:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:419:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:428:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:428:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:429:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:431:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:439:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:439:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:440:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:442:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:464:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:464:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:465:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:467:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:475:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:475:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:476:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:478:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:486:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:486:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:487:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:489:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:497:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:497:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:498:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:500:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buffer, strlen(new_buffer), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_server_settings.c:849:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:849:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:850:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:863:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:863:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:864:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:877:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:877:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:878:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:891:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:891:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:892:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:905:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:905:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:906:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:919:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:919:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:920:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_server_settings.c:933:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:933:63: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( new_buffer[strlen(new_buffer)-1]=='\n' || new_buffer[strlen(new_buffer)-1]=='\r' )
data/gadmin-samba-0.2.9/src/populate_server_settings.c:934:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
new_buffer[strlen(new_buffer)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_share_settings.c:95:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(shareopt, strlen(shareopt)-2, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_share_settings.c:121:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(shareopt, strlen(shareopt)-1, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_share_settings.c:130:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(shareopt, strlen(shareopt)-1, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_share_settings.c:167:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( shareopt[strlen(shareopt)-1]=='\n' )
data/gadmin-samba-0.2.9/src/populate_share_settings.c:168:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
shareopt[strlen(shareopt)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_share_settings.c:170:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(shareopt) > 0 && ! strstr(shareopt, "\\") )
data/gadmin-samba-0.2.9/src/populate_share_settings.c:172:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(shareopt, strlen(shareopt), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_share_settings.c:227:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( shareopt[strlen(shareopt)-1]=='\n' )
data/gadmin-samba-0.2.9/src/populate_share_settings.c:228:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
shareopt[strlen(shareopt)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_share_settings.c:230:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(shareopt) > 0 && ! strstr(shareopt, "\\") )
data/gadmin-samba-0.2.9/src/populate_share_settings.c:232:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(shareopt, strlen(shareopt), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_share_settings.c:287:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( shareopt[strlen(shareopt)-1]=='\n' )
data/gadmin-samba-0.2.9/src/populate_share_settings.c:288:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
shareopt[strlen(shareopt)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_share_settings.c:290:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(shareopt) > 0 && ! strstr(shareopt, "\\") )
data/gadmin-samba-0.2.9/src/populate_share_settings.c:292:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(shareopt, strlen(shareopt), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_share_settings.c:347:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( shareopt[strlen(shareopt)-1]=='\n' )
data/gadmin-samba-0.2.9/src/populate_share_settings.c:348:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
shareopt[strlen(shareopt)-1]='\0';
data/gadmin-samba-0.2.9/src/populate_share_settings.c:350:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(shareopt) > 0 && ! strstr(shareopt, "\\") )
data/gadmin-samba-0.2.9/src/populate_share_settings.c:352:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(shareopt, strlen(shareopt), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_share_settings.c:379:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(shareopt, strlen(shareopt)-1, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_share_settings.c:388:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(shareopt, strlen(shareopt)-1, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_shares.c:111:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(sharepath, strlen(sharepath), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_shares.c:138:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(sharepath, strlen(sharepath)-1, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_shares.c:147:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(sharepath, strlen(sharepath)-1, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_shares.c:164:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(global_share_name, "");
data/gadmin-samba-0.2.9/src/populate_shares.c:165:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(global_share_directory, "");
data/gadmin-samba-0.2.9/src/populate_shares.c:166:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(global_share_comment, "");
data/gadmin-samba-0.2.9/src/populate_shell_combo.c:48:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(combo_text, strlen(combo_text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_shell_combo.c:71:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) > 3 && ! strstr(line, "#") && ! strstr(line, "/dev/null") )
data/gadmin-samba-0.2.9/src/populate_shell_combo.c:75:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(new_buf, strlen(new_buf)-1, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_user_settings.c:46:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( info == NULL || strlen(info) < 1 )
data/gadmin-samba-0.2.9/src/populate_user_settings.c:81:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(atext, strlen(atext), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_user_settings.c:93:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(atext, strlen(atext), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_user_settings.c:106:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(atext, strlen(atext), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_user_settings.c:117:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(atext, strlen(atext), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_users.c:81:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( commented(line) || strstr(line, "$") || strlen(line) < 10 )
data/gadmin-samba-0.2.9/src/populate_users.c:92:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(username, strlen(username), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_users.c:101:49: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(groupname, strlen(groupname), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_users.c:109:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(val, strlen(val), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_users.c:116:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(val, strlen(val), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/populate_users.c:136:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(global_user_name, "");
data/gadmin-samba-0.2.9/src/save_settings.c:64:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) > 1000 )
data/gadmin-samba-0.2.9/src/save_settings.c:110:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(set_smb_conf) > 5 )
data/gadmin-samba-0.2.9/src/select_first_macct.c:47:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(global_macct_name, "");
data/gadmin-samba-0.2.9/src/select_first_share.c:51:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(global_share_name, "");
data/gadmin-samba-0.2.9/src/select_first_user.c:47:2: [1] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant character.
strcpy(global_user_name, "");
data/gadmin-samba-0.2.9/src/set_version.c:62:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strstr(version, "Version") && strlen(version) < 30 )
data/gadmin-samba-0.2.9/src/set_version.c:66:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(ver, strlen(ver)-1, NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/set_version.c:76:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(ver, strlen(ver), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/settings_window.c:95:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(SAMBA_CONF, strlen(SAMBA_CONF), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/show_info.c:53:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(content) < 5 )
data/gadmin-samba-0.2.9/src/show_info.c:113:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(content, strlen(content), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/show_info.c:117:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gtk_text_buffer_set_text(text_buffer, utf8, strlen(utf8));
data/gadmin-samba-0.2.9/src/standard_conf.c:66:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) > 5 )
data/gadmin-samba-0.2.9/src/standard_conf.c:97:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) > 5 )
data/gadmin-samba-0.2.9/src/standard_conf.c:274:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buffer, "\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:289:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buffer, "\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:306:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buffer, "\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:327:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buffer, "\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:344:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buffer, "\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:356:5: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buffer, "\n");
data/gadmin-samba-0.2.9/src/standard_conf.c:535:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(text, strlen(text), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/standard_conf.c:642:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen(line) > 5 )
data/gadmin-samba-0.2.9/src/status_update.c:136:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(info, strlen(info), NULL, NULL, NULL);
data/gadmin-samba-0.2.9/src/status_update.c:183:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
utf8 = g_locale_to_utf8(info, strlen(info), NULL, NULL, NULL);
ANALYSIS SUMMARY:
Hits = 1046
Lines analyzed = 18415 in approximately 0.67 seconds (27666 lines/second)
Physical Source Lines of Code (SLOC) = 11164
Hits@level = [0] 139 [1] 426 [2] 364 [3] 3 [4] 253 [5] 0
Hits@level+ = [0+] 1185 [1+] 1046 [2+] 620 [3+] 256 [4+] 253 [5+] 0
Hits/KSLOC@level+ = [0+] 106.145 [1+] 93.694 [2+] 55.5357 [3+] 22.9308 [4+] 22.6621 [5+] 0
Dot directories skipped = 2 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.