Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/igmpproxy-0.2.1/src/udpsock.c Examining data/igmpproxy-0.2.1/src/syslog.c Examining data/igmpproxy-0.2.1/src/rttable.c Examining data/igmpproxy-0.2.1/src/request.c Examining data/igmpproxy-0.2.1/src/os-qnxnto.h Examining data/igmpproxy-0.2.1/src/os-openbsd.h Examining data/igmpproxy-0.2.1/src/os-netbsd.h Examining data/igmpproxy-0.2.1/src/os-linux.h Examining data/igmpproxy-0.2.1/src/os-freebsd.h Examining data/igmpproxy-0.2.1/src/os-dragonfly.h Examining data/igmpproxy-0.2.1/src/mroute-api.c Examining data/igmpproxy-0.2.1/src/mcgroup.c Examining data/igmpproxy-0.2.1/src/lib.c Examining data/igmpproxy-0.2.1/src/kern.c Examining data/igmpproxy-0.2.1/src/igmpproxy.h Examining data/igmpproxy-0.2.1/src/igmpproxy.c Examining data/igmpproxy-0.2.1/src/igmpv3.h Examining data/igmpproxy-0.2.1/src/igmp.c Examining data/igmpproxy-0.2.1/src/ifvc.c Examining data/igmpproxy-0.2.1/src/confread.c Examining data/igmpproxy-0.2.1/src/config.c Examining data/igmpproxy-0.2.1/src/callout.c FINAL RESULTS: data/igmpproxy-0.2.1/src/rttable.c:732:21: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(src + strlen(src), "Src%d: %s, ", i, inetFmt(croute->originAddrs[i], s1)); data/igmpproxy-0.2.1/src/syslog.c:47:10: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. Ln = vsnprintf( LogMsg, sizeof( LogMsg ), FmtSt, ArgPt ); data/igmpproxy-0.2.1/src/igmpproxy.c:85:17: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while ((c = getopt(ArgCn, ArgVc, "vdnh")) != -1) { data/igmpproxy-0.2.1/src/config.c:330:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). tmpPtr->ratelimit = atoi( token ); data/igmpproxy-0.2.1/src/config.c:341:33: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). tmpPtr->threshold = atoi( token ); data/igmpproxy-0.2.1/src/config.c:381:22: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int bitcnt = atoi(tmpStr); data/igmpproxy-0.2.1/src/confread.c:58:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char cToken[MAX_TOKEN_LENGTH]; // Token buffer... data/igmpproxy-0.2.1/src/confread.c:70:19: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). confFilePtr = fopen(filename, "r"); data/igmpproxy-0.2.1/src/ifvc.c:84:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char FmtBu[ 32 ]; data/igmpproxy-0.2.1/src/ifvc.c:237:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char FmtBu[ 32 ]; data/igmpproxy-0.2.1/src/igmp.c:87:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char unknown[20]; data/igmpproxy-0.2.1/src/igmp.c:97:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(unknown, "unk: 0x%02x/0x%02x ", type, code); data/igmpproxy-0.2.1/src/igmpproxy.c:148:20: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). || open( "/dev/null", 0 ) != 0 || dup2( 0, 1 ) < 0 || dup2( 0, 2 ) < 0 data/igmpproxy-0.2.1/src/igmpproxy.h:149:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Name[IF_NAMESIZE]; data/igmpproxy-0.2.1/src/lib.c:40:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s1[19]; /* buffers to hold the string representations */ data/igmpproxy-0.2.1/src/lib.c:41:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s2[19]; /* of IP addresses, to be passed to inet_fmt() */ data/igmpproxy-0.2.1/src/lib.c:42:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s3[19]; /* or inet_fmts(). */ data/igmpproxy-0.2.1/src/lib.c:43:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char s4[19]; data/igmpproxy-0.2.1/src/lib.c:52:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf( St, "%u.%u.%u.%u", data/igmpproxy-0.2.1/src/lib.c:68:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(s, "%u.%u.%u.%u", a[0], a[1], a[2], a[3]); data/igmpproxy-0.2.1/src/lib.c:81:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(s, "default"); data/igmpproxy-0.2.1/src/lib.c:88:20: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. if (m[3] != 0) sprintf(s, "%u.%u.%u.%u/%d", a[0], a[1], a[2], a[3], data/igmpproxy-0.2.1/src/lib.c:90:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else if (m[2] != 0) sprintf(s, "%u.%u.%u/%d", a[0], a[1], a[2], bits); data/igmpproxy-0.2.1/src/lib.c:91:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else if (m[1] != 0) sprintf(s, "%u.%u/%d", a[0], a[1], bits); data/igmpproxy-0.2.1/src/lib.c:92:25: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. else sprintf(s, "%u/%d", a[0], bits); data/igmpproxy-0.2.1/src/mroute-api.c:188:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char FmtBuO[ 32 ], FmtBuM[ 32 ]; data/igmpproxy-0.2.1/src/mroute-api.c:225:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char FmtBuO[ 32 ], FmtBuM[ 32 ]; data/igmpproxy-0.2.1/src/rttable.c:723:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char src[MAX_ORIGINS * 30 + 1]; data/igmpproxy-0.2.1/src/syslog.c:42:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char LogMsg[ 128 ]; data/igmpproxy-0.2.1/src/config.c:253:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(strlen(token) >= IF_NAMESIZE) return NULL; data/igmpproxy-0.2.1/src/ifvc.c:103:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( Dp->Name, IfPt->ifr_name, sizeof( IfDescEp->Name ) ); data/igmpproxy-0.2.1/src/ifvc.c:249:13: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy( IfDescEp->Name, IfPt->ifr_name, sizeof( IfDescEp->Name ) ); data/igmpproxy-0.2.1/src/rttable.c:732:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). sprintf(src + strlen(src), "Src%d: %s, ", i, inetFmt(croute->originAddrs[i], s1)); ANALYSIS SUMMARY: Hits = 33 Lines analyzed = 4304 in approximately 0.13 seconds (33468 lines/second) Physical Source Lines of Code (SLOC) = 2340 Hits@level = [0] 6 [1] 4 [2] 26 [3] 1 [4] 2 [5] 0 Hits@level+ = [0+] 39 [1+] 33 [2+] 29 [3+] 3 [4+] 2 [5+] 0 Hits/KSLOC@level+ = [0+] 16.6667 [1+] 14.1026 [2+] 12.3932 [3+] 1.28205 [4+] 0.854701 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.