Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/libdata-messagepack-perl-1.00/include/msgpack/pack_define.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/unpack_define.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/unpack.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/pack.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/android.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/ios.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/hpux.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/unix.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd/open.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd/free.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd/dragonfly.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd/bsdi.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd/net.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/beos.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/vms.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/irix.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/haiku.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/macos.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/aix.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/qnxnto.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/cygwin.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/amigaos.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/os400.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/windows.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/linux.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/solaris.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/version_number.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c/gnu.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c/vms.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c/zos.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c/_prefix.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c/uc.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/sgi.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/dinkumware.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/roguewave.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/stdcpp3.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/_prefix.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/libcomo.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/vacpp.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/modena.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/stlport.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/msl.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/cxx.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/version.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/language/objc.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/language/stdc.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/language/stdcpp.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/sunpro.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/digitalmars.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/gcc.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/iar.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/sgi_mipspro.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/greenhills.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/diab.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/gcc_xml.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/borland.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/microtec.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/watcom.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/compaq.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/mpw.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/pgi.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/ibm.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/kai.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/dignus.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/palm.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/metaware.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/comeau.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/intel.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/llvm.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/edg.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/ekopath.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/tendra.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/visualc.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/hp_acc.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/metrowerks.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/clang.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/language.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/make.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/pyramid.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/sys370.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/sys390.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/z.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/mips.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/x86.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/rs6k.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/parisc.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/ia64.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/sparc.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/x86/64.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/x86/32.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/blackfin.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/superh.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/alpha.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/ppc.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/m68k.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/convex.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/arm.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/other/endian.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/other.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/endian_compat.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/os_detected.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/test.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/_exception.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/_cassert.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/comp_detected.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/platform_detected.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform/windows_store.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform/mingw.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform/windows_desktop.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform/windows_runtime.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform/windows_phone.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack/unpack_template.h
Examining data/libdata-messagepack-perl-1.00/include/msgpack.h
Examining data/libdata-messagepack-perl-1.00/xshelper.h
Examining data/libdata-messagepack-perl-1.00/xs-src/unpack.c
Examining data/libdata-messagepack-perl-1.00/xs-src/pack.c
FINAL RESULTS:
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:49:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_8(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:61:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_16(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:65:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:79:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_32(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:85:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:90:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:105:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_64(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:111:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:116:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:121:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[9]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:132:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xd0, TAKE8_8(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:145:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:150:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xd0, TAKE8_16(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:159:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_16(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:163:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:175:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:180:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:185:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xd0, TAKE8_32(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:194:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_32(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:198:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:203:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:216:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[9]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:221:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:228:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:233:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xd0, TAKE8_64(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:244:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_64(d)}; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:248:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:255:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:260:26: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[9]; \
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:273:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xcc, TAKE8_8(d)};
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:279:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:286:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:293:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[9];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:300:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2] = {0xd0, TAKE8_8(d)};
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:306:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:313:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:320:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[9];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:653:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:662:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[9];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:715:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:719:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:736:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:740:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:757:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:761:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:765:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:786:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:790:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:808:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:812:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:816:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[5];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:835:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:841:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:847:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:853:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:859:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[2];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:866:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[3];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:872:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[4];
data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:878:22: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[6];
data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:142:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((cast*)(to), (from), sizeof(cast)); \
data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:147:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((cast*)(to), (from), sizeof(cast)); \
data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:151:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy((cast*)(to), (from), sizeof(cast)); \
data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:156:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { uint16_t val = _msgpack_be16(num); memcpy(to, &val, 2); } while(0)
data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:158:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { uint32_t val = _msgpack_be32(num); memcpy(to, &val, 4); } while(0)
data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:160:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
do { uint64_t val = _msgpack_be64(num); memcpy(to, &val, 8); } while(0)
data/libdata-messagepack-perl-1.00/xs-src/pack.c:37:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(enc->cur, buf, len);
data/libdata-messagepack-perl-1.00/xs-src/unpack.c:149:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[64];
data/libdata-messagepack-perl-1.00/xs-src/unpack.c:158:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[64];
ANALYSIS SUMMARY:
Hits = 68
Lines analyzed = 9350 in approximately 0.34 seconds (27126 lines/second)
Physical Source Lines of Code (SLOC) = 5216
Hits@level = [0] 0 [1] 0 [2] 68 [3] 0 [4] 0 [5] 0
Hits@level+ = [0+] 68 [1+] 68 [2+] 68 [3+] 0 [4+] 0 [5+] 0
Hits/KSLOC@level+ = [0+] 13.0368 [1+] 13.0368 [2+] 13.0368 [3+] 0 [4+] 0 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.