Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/libdata-messagepack-perl-1.00/include/msgpack/pack_define.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/unpack_define.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/unpack.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/pack.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/android.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/ios.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/hpux.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/unix.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd/open.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd/free.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd/dragonfly.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd/bsdi.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/bsd/net.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/beos.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/vms.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/irix.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/haiku.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/macos.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/aix.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/qnxnto.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/cygwin.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/amigaos.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/os400.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/windows.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/linux.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os/solaris.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/version_number.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c/gnu.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c/vms.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c/zos.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c/_prefix.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/c/uc.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/sgi.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/dinkumware.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/roguewave.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/stdcpp3.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/_prefix.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/libcomo.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/vacpp.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/modena.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/stlport.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/msl.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library/std/cxx.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/version.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/language/objc.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/language/stdc.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/language/stdcpp.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/sunpro.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/digitalmars.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/gcc.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/iar.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/sgi_mipspro.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/greenhills.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/diab.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/gcc_xml.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/borland.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/microtec.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/watcom.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/compaq.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/mpw.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/pgi.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/ibm.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/kai.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/dignus.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/palm.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/metaware.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/comeau.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/intel.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/llvm.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/edg.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/ekopath.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/tendra.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/visualc.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/hp_acc.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/metrowerks.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler/clang.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/compiler.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/language.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/make.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/pyramid.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/sys370.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/sys390.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/z.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/mips.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/x86.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/rs6k.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/parisc.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/ia64.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/sparc.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/x86/64.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/x86/32.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/blackfin.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/superh.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/alpha.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/ppc.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/m68k.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/convex.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture/arm.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/other/endian.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/other.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/os.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/endian_compat.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/os_detected.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/test.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/_exception.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/_cassert.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/comp_detected.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/detail/platform_detected.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/architecture.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/library.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform/windows_store.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform/mingw.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform/windows_desktop.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform/windows_runtime.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/predef/platform/windows_phone.h Examining data/libdata-messagepack-perl-1.00/include/msgpack/unpack_template.h Examining data/libdata-messagepack-perl-1.00/include/msgpack.h Examining data/libdata-messagepack-perl-1.00/xshelper.h Examining data/libdata-messagepack-perl-1.00/xs-src/unpack.c Examining data/libdata-messagepack-perl-1.00/xs-src/pack.c FINAL RESULTS: data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:49:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xcc, TAKE8_8(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:61:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xcc, TAKE8_16(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:65:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:79:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xcc, TAKE8_32(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:85:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:90:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:105:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xcc, TAKE8_64(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:111:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:116:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:121:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[9]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:132:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xd0, TAKE8_8(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:145:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:150:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xd0, TAKE8_16(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:159:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xcc, TAKE8_16(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:163:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:175:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:180:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:185:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xd0, TAKE8_32(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:194:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xcc, TAKE8_32(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:198:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:203:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:216:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[9]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:221:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:228:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:233:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xd0, TAKE8_64(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:244:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xcc, TAKE8_64(d)}; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:248:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:255:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:260:26: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[9]; \ data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:273:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xcc, TAKE8_8(d)}; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:279:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:286:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:293:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[9]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:300:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2] = {0xd0, TAKE8_8(d)}; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:306:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:313:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:320:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[9]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:653:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:662:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[9]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:715:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:719:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:736:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:740:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:757:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:761:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:765:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:786:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:790:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:808:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:812:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:816:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[5]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:835:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:841:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:847:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:853:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:859:18: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[2]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:866:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[3]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:872:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[4]; data/libdata-messagepack-perl-1.00/include/msgpack/pack_template.h:878:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[6]; data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:142:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((cast*)(to), (from), sizeof(cast)); \ data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:147:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((cast*)(to), (from), sizeof(cast)); \ data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:151:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((cast*)(to), (from), sizeof(cast)); \ data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:156:45: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. do { uint16_t val = _msgpack_be16(num); memcpy(to, &val, 2); } while(0) data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:158:45: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. do { uint32_t val = _msgpack_be32(num); memcpy(to, &val, 4); } while(0) data/libdata-messagepack-perl-1.00/include/msgpack/sysdep.h:160:45: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. do { uint64_t val = _msgpack_be64(num); memcpy(to, &val, 8); } while(0) data/libdata-messagepack-perl-1.00/xs-src/pack.c:37:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(enc->cur, buf, len); data/libdata-messagepack-perl-1.00/xs-src/unpack.c:149:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tbuf[64]; data/libdata-messagepack-perl-1.00/xs-src/unpack.c:158:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tbuf[64]; ANALYSIS SUMMARY: Hits = 68 Lines analyzed = 9350 in approximately 0.34 seconds (27126 lines/second) Physical Source Lines of Code (SLOC) = 5216 Hits@level = [0] 0 [1] 0 [2] 68 [3] 0 [4] 0 [5] 0 Hits@level+ = [0+] 68 [1+] 68 [2+] 68 [3+] 0 [4+] 0 [5+] 0 Hits/KSLOC@level+ = [0+] 13.0368 [1+] 13.0368 [2+] 13.0368 [3+] 0 [4+] 0 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.