Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/igmpproxy-0.2.1/src/udpsock.c
Examining data/igmpproxy-0.2.1/src/syslog.c
Examining data/igmpproxy-0.2.1/src/rttable.c
Examining data/igmpproxy-0.2.1/src/request.c
Examining data/igmpproxy-0.2.1/src/os-qnxnto.h
Examining data/igmpproxy-0.2.1/src/os-openbsd.h
Examining data/igmpproxy-0.2.1/src/os-netbsd.h
Examining data/igmpproxy-0.2.1/src/os-linux.h
Examining data/igmpproxy-0.2.1/src/os-freebsd.h
Examining data/igmpproxy-0.2.1/src/os-dragonfly.h
Examining data/igmpproxy-0.2.1/src/mroute-api.c
Examining data/igmpproxy-0.2.1/src/mcgroup.c
Examining data/igmpproxy-0.2.1/src/lib.c
Examining data/igmpproxy-0.2.1/src/kern.c
Examining data/igmpproxy-0.2.1/src/igmpproxy.h
Examining data/igmpproxy-0.2.1/src/igmpproxy.c
Examining data/igmpproxy-0.2.1/src/igmpv3.h
Examining data/igmpproxy-0.2.1/src/igmp.c
Examining data/igmpproxy-0.2.1/src/ifvc.c
Examining data/igmpproxy-0.2.1/src/confread.c
Examining data/igmpproxy-0.2.1/src/config.c
Examining data/igmpproxy-0.2.1/src/callout.c
FINAL RESULTS:
data/igmpproxy-0.2.1/src/rttable.c:732:21: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(src + strlen(src), "Src%d: %s, ", i, inetFmt(croute->originAddrs[i], s1));
data/igmpproxy-0.2.1/src/syslog.c:47:10: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
Ln = vsnprintf( LogMsg, sizeof( LogMsg ), FmtSt, ArgPt );
data/igmpproxy-0.2.1/src/igmpproxy.c:85:17: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((c = getopt(ArgCn, ArgVc, "vdnh")) != -1) {
data/igmpproxy-0.2.1/src/config.c:330:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmpPtr->ratelimit = atoi( token );
data/igmpproxy-0.2.1/src/config.c:341:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmpPtr->threshold = atoi( token );
data/igmpproxy-0.2.1/src/config.c:381:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int bitcnt = atoi(tmpStr);
data/igmpproxy-0.2.1/src/confread.c:58:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cToken[MAX_TOKEN_LENGTH]; // Token buffer...
data/igmpproxy-0.2.1/src/confread.c:70:19: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
confFilePtr = fopen(filename, "r");
data/igmpproxy-0.2.1/src/ifvc.c:84:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char FmtBu[ 32 ];
data/igmpproxy-0.2.1/src/ifvc.c:237:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char FmtBu[ 32 ];
data/igmpproxy-0.2.1/src/igmp.c:87:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char unknown[20];
data/igmpproxy-0.2.1/src/igmp.c:97:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(unknown, "unk: 0x%02x/0x%02x ", type, code);
data/igmpproxy-0.2.1/src/igmpproxy.c:148:20: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
|| open( "/dev/null", 0 ) != 0 || dup2( 0, 1 ) < 0 || dup2( 0, 2 ) < 0
data/igmpproxy-0.2.1/src/igmpproxy.h:149:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Name[IF_NAMESIZE];
data/igmpproxy-0.2.1/src/lib.c:40:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s1[19]; /* buffers to hold the string representations */
data/igmpproxy-0.2.1/src/lib.c:41:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s2[19]; /* of IP addresses, to be passed to inet_fmt() */
data/igmpproxy-0.2.1/src/lib.c:42:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s3[19]; /* or inet_fmts(). */
data/igmpproxy-0.2.1/src/lib.c:43:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s4[19];
data/igmpproxy-0.2.1/src/lib.c:52:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf( St, "%u.%u.%u.%u",
data/igmpproxy-0.2.1/src/lib.c:68:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s, "%u.%u.%u.%u", a[0], a[1], a[2], a[3]);
data/igmpproxy-0.2.1/src/lib.c:81:9: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(s, "default");
data/igmpproxy-0.2.1/src/lib.c:88:20: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
if (m[3] != 0) sprintf(s, "%u.%u.%u.%u/%d", a[0], a[1], a[2], a[3],
data/igmpproxy-0.2.1/src/lib.c:90:25: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (m[2] != 0) sprintf(s, "%u.%u.%u/%d", a[0], a[1], a[2], bits);
data/igmpproxy-0.2.1/src/lib.c:91:25: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else if (m[1] != 0) sprintf(s, "%u.%u/%d", a[0], a[1], bits);
data/igmpproxy-0.2.1/src/lib.c:92:25: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
else sprintf(s, "%u/%d", a[0], bits);
data/igmpproxy-0.2.1/src/mroute-api.c:188:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char FmtBuO[ 32 ], FmtBuM[ 32 ];
data/igmpproxy-0.2.1/src/mroute-api.c:225:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char FmtBuO[ 32 ], FmtBuM[ 32 ];
data/igmpproxy-0.2.1/src/rttable.c:723:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char src[MAX_ORIGINS * 30 + 1];
data/igmpproxy-0.2.1/src/syslog.c:42:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char LogMsg[ 128 ];
data/igmpproxy-0.2.1/src/config.c:253:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(token) >= IF_NAMESIZE) return NULL;
data/igmpproxy-0.2.1/src/ifvc.c:103:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( Dp->Name, IfPt->ifr_name, sizeof( IfDescEp->Name ) );
data/igmpproxy-0.2.1/src/ifvc.c:249:13: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( IfDescEp->Name, IfPt->ifr_name, sizeof( IfDescEp->Name ) );
data/igmpproxy-0.2.1/src/rttable.c:732:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
sprintf(src + strlen(src), "Src%d: %s, ", i, inetFmt(croute->originAddrs[i], s1));
ANALYSIS SUMMARY:
Hits = 33
Lines analyzed = 4304 in approximately 0.13 seconds (33468 lines/second)
Physical Source Lines of Code (SLOC) = 2340
Hits@level = [0] 6 [1] 4 [2] 26 [3] 1 [4] 2 [5] 0
Hits@level+ = [0+] 39 [1+] 33 [2+] 29 [3+] 3 [4+] 2 [5+] 0
Hits/KSLOC@level+ = [0+] 16.6667 [1+] 14.1026 [2+] 12.3932 [3+] 1.28205 [4+] 0.854701 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.