Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/libextractor-1.10/src/include/platform.h
Examining data/libextractor-1.10/src/include/extractor.h
Examining data/libextractor-1.10/src/include/gettext.h
Examining data/libextractor-1.10/src/include/plibc.h
Examining data/libextractor-1.10/src/intlemu/intlemu.c
Examining data/libextractor-1.10/src/intlemu/libintlemu.h
Examining data/libextractor-1.10/src/main/extractor_ipc_gnu.c
Examining data/libextractor-1.10/src/main/extract.c
Examining data/libextractor-1.10/src/main/test_gzip.c
Examining data/libextractor-1.10/src/main/test2_extractor.c
Examining data/libextractor-1.10/src/main/extractor_plugin_main.c
Examining data/libextractor-1.10/src/main/extractor_common.c
Examining data/libextractor-1.10/src/main/extractor_datasource.c
Examining data/libextractor-1.10/src/main/extractor_datasource.h
Examining data/libextractor-1.10/src/main/iconv.c
Examining data/libextractor-1.10/src/main/test_trivial.c
Examining data/libextractor-1.10/src/main/extractor_metatypes.c
Examining data/libextractor-1.10/src/main/extractor_common.h
Examining data/libextractor-1.10/src/main/extractor_ipc.h
Examining data/libextractor-1.10/src/main/getopt1.c
Examining data/libextractor-1.10/src/main/extractor.c
Examining data/libextractor-1.10/src/main/getopt.c
Examining data/libextractor-1.10/src/main/extractor_plugpath.h
Examining data/libextractor-1.10/src/main/test_plugin_loading.c
Examining data/libextractor-1.10/src/main/extractor_logging.h
Examining data/libextractor-1.10/src/main/extractor_plugin_main.h
Examining data/libextractor-1.10/src/main/getopt.h
Examining data/libextractor-1.10/src/main/extractor_print.c
Examining data/libextractor-1.10/src/main/test_file.c
Examining data/libextractor-1.10/src/main/extractor_ipc_w32.c
Examining data/libextractor-1.10/src/main/extractor_plugpath.c
Examining data/libextractor-1.10/src/main/extractor_plugins.c
Examining data/libextractor-1.10/src/main/test_plugin_load_multi.c
Examining data/libextractor-1.10/src/main/extractor_plugins.h
Examining data/libextractor-1.10/src/main/test_bzip2.c
Examining data/libextractor-1.10/src/main/extractor_logging.c
Examining data/libextractor-1.10/src/main/test_extractor.c
Examining data/libextractor-1.10/src/main/test_ipc.c
Examining data/libextractor-1.10/src/main/extractor_ipc.c
Examining data/libextractor-1.10/src/common/convert.h
Examining data/libextractor-1.10/src/common/le_architecture.h
Examining data/libextractor-1.10/src/common/unzip.c
Examining data/libextractor-1.10/src/common/unzip.h
Examining data/libextractor-1.10/src/common/convert.c
Examining data/libextractor-1.10/src/plugins/test_previewopus.c
Examining data/libextractor-1.10/src/plugins/test_riff.c
Examining data/libextractor-1.10/src/plugins/test_mime.c
Examining data/libextractor-1.10/src/plugins/test_thumbnailgtk.c
Examining data/libextractor-1.10/src/plugins/tiff_extractor.c
Examining data/libextractor-1.10/src/plugins/test_ps.c
Examining data/libextractor-1.10/src/plugins/test_thumbnailffmpeg.c
Examining data/libextractor-1.10/src/plugins/test_gif.c
Examining data/libextractor-1.10/src/plugins/test_tiff.c
Examining data/libextractor-1.10/src/plugins/test_archive.c
Examining data/libextractor-1.10/src/plugins/png_extractor.c
Examining data/libextractor-1.10/src/plugins/ole2_extractor.c
Examining data/libextractor-1.10/src/plugins/mp4_extractor.c
Examining data/libextractor-1.10/src/plugins/test_man.c
Examining data/libextractor-1.10/src/plugins/test_zip.c
Examining data/libextractor-1.10/src/plugins/gstreamer_extractor.c
Examining data/libextractor-1.10/src/plugins/test_ole2.c
Examining data/libextractor-1.10/src/plugins/test_xm.c
Examining data/libextractor-1.10/src/plugins/gif_extractor.c
Examining data/libextractor-1.10/src/plugins/man_extractor.c
Examining data/libextractor-1.10/src/plugins/wav_extractor.c
Examining data/libextractor-1.10/src/plugins/test_s3m.c
Examining data/libextractor-1.10/src/plugins/test_dvi.c
Examining data/libextractor-1.10/src/plugins/archive_extractor.c
Examining data/libextractor-1.10/src/plugins/nsfe_extractor.c
Examining data/libextractor-1.10/src/plugins/test_midi.c
Examining data/libextractor-1.10/src/plugins/test_it.c
Examining data/libextractor-1.10/src/plugins/previewopus_extractor.c
Examining data/libextractor-1.10/src/plugins/deb_extractor.c
Examining data/libextractor-1.10/src/plugins/mime_extractor.c
Examining data/libextractor-1.10/src/plugins/test_nsf.c
Examining data/libextractor-1.10/src/plugins/it_extractor.c
Examining data/libextractor-1.10/src/plugins/test_sid.c
Examining data/libextractor-1.10/src/plugins/jpeg_extractor.c
Examining data/libextractor-1.10/src/plugins/riff_extractor.c
Examining data/libextractor-1.10/src/plugins/test_odf.c
Examining data/libextractor-1.10/src/plugins/dvi_extractor.c
Examining data/libextractor-1.10/src/plugins/thumbnailgtk_extractor.c
Examining data/libextractor-1.10/src/plugins/s3m_extractor.c
Examining data/libextractor-1.10/src/plugins/test_wav.c
Examining data/libextractor-1.10/src/plugins/test_deb.c
Examining data/libextractor-1.10/src/plugins/ps_extractor.c
Examining data/libextractor-1.10/src/plugins/exiv2_extractor.cc
Examining data/libextractor-1.10/src/plugins/test_gstreamer.c
Examining data/libextractor-1.10/src/plugins/zip_extractor.c
Examining data/libextractor-1.10/src/plugins/test_png.c
Examining data/libextractor-1.10/src/plugins/odf_extractor.c
Examining data/libextractor-1.10/src/plugins/sid_extractor.c
Examining data/libextractor-1.10/src/plugins/test_rpm.c
Examining data/libextractor-1.10/src/plugins/midi_extractor.c
Examining data/libextractor-1.10/src/plugins/test_flac.c
Examining data/libextractor-1.10/src/plugins/rpm_extractor.c
Examining data/libextractor-1.10/src/plugins/test_html.c
Examining data/libextractor-1.10/src/plugins/test_jpeg.c
Examining data/libextractor-1.10/src/plugins/mpeg_extractor.c
Examining data/libextractor-1.10/src/plugins/pdf_extractor.c
Examining data/libextractor-1.10/src/plugins/test_ogg.c
Examining data/libextractor-1.10/src/plugins/xm_extractor.c
Examining data/libextractor-1.10/src/plugins/template_extractor.c
Examining data/libextractor-1.10/src/plugins/html_extractor.c
Examining data/libextractor-1.10/src/plugins/test_nsfe.c
Examining data/libextractor-1.10/src/plugins/nsf_extractor.c
Examining data/libextractor-1.10/src/plugins/ogg_extractor.c
Examining data/libextractor-1.10/src/plugins/flac_extractor.c
Examining data/libextractor-1.10/src/plugins/test_mpeg.c
Examining data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c
Examining data/libextractor-1.10/src/plugins/test_exiv2.c
Examining data/libextractor-1.10/src/plugins/test_lib.c
Examining data/libextractor-1.10/src/plugins/test_lib.h
Examining data/libextractor-1.10/debian/tests/build_test.c

FINAL RESULTS:

data/libextractor-1.10/src/include/plibc.h:762:22:  [5] (race) chmod:
  This accepts filename arguments; if an attacker can move those files, a
  race condition results. (CWE-362). Use fchmod( ) instead.
 #define CHMOD(f, p) chmod (f, p)
data/libextractor-1.10/src/include/plibc.h:784:28:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
 #define READLINK(p, b, s) readlink (p, b, s)
data/libextractor-1.10/src/main/extractor_plugins.c:146:9:  [5] (buffer) MultiByteToWideChar:
  Requires maximum length in CHARACTERS, not bytes (CWE-120). Risk is high,
  it appears that the size is given as bytes, but the function requires size
  as characters.
  if ( (MultiByteToWideChar (CP_UTF8, 0, plugin->libname, -1,
data/libextractor-1.10/src/main/extractor_plugpath.c:129:10:  [5] (race) readlink:
  This accepts filename arguments; if an attacker can move those files or
  change the link content, a race condition results. Also, it does not
  terminate with ASCII NUL. (CWE-362, CWE-20). Reconsider approach.
  size = readlink (fn, lnk, 1023);
data/libextractor-1.10/src/include/plibc.h:639:47:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
void *_win_mmap (void *start, size_t len, int access, int flags, int fd,
data/libextractor-1.10/src/include/plibc.h:761:23:  [4] (race) access:
  This usually indicates a security flaw. If an attacker can change anything
  along the path between the call to access() and the file's actual use
  (e.g., by moving files), the attacker can exploit the race condition
  (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
  and try to open the file directly.
 #define ACCESS(p, m) access (p, m)
data/libextractor-1.10/src/include/plibc.h:787:17:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
 #define PRINTF printf
data/libextractor-1.10/src/include/plibc.h:788:18:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
 #define FPRINTF fprintf
data/libextractor-1.10/src/include/plibc.h:789:24:  [4] (format) vprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
 #define VPRINTF(f, a) vprintf (f, a)
data/libextractor-1.10/src/include/plibc.h:790:28:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
 #define VFPRINTF(s, f, a) vfprintf (s, f, a)
data/libextractor-1.10/src/include/plibc.h:791:28:  [4] (format) vsprintf:
  Potential format string problem (CWE-134). Make format string constant.
 #define VSPRINTF(d, f, a) vsprintf (d, f, a)
data/libextractor-1.10/src/include/plibc.h:792:39:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
 #define VSNPRINTF(str, size, fmt, a) vsnprintf (str, size, fmt, a)
data/libextractor-1.10/src/include/plibc.h:793:25:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
 #define _REAL_SNPRINTF snprintf
data/libextractor-1.10/src/include/plibc.h:794:18:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
 #define SPRINTF sprintf
data/libextractor-1.10/src/include/plibc.h:795:27:  [4] (buffer) vsscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
 #define VSSCANF(s, f, a) vsscanf (s, f, a)
data/libextractor-1.10/src/include/plibc.h:796:17:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
 #define SSCANF sscanf
data/libextractor-1.10/src/include/plibc.h:797:27:  [4] (buffer) vfscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
 #define VFSCANF(s, f, a) vfscanf (s, f, a)
data/libextractor-1.10/src/include/plibc.h:798:23:  [4] (buffer) vscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
 #define VSCANF(f, a) vscanf (f, a)
data/libextractor-1.10/src/include/plibc.h:799:16:  [4] (buffer) scanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
 #define SCANF scanf
data/libextractor-1.10/src/include/plibc.h:800:17:  [4] (buffer) fscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
 #define FSCANF fscanf
data/libextractor-1.10/src/include/plibc.h:888:17:  [4] (format) printf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
 #define PRINTF printf
data/libextractor-1.10/src/include/plibc.h:889:18:  [4] (format) fprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
 #define FPRINTF fprintf
data/libextractor-1.10/src/include/plibc.h:890:24:  [4] (format) vprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
 #define VPRINTF(f, a) vprintf (f, a)
data/libextractor-1.10/src/include/plibc.h:891:28:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
 #define VFPRINTF(s, f, a) vfprintf (s, f, a)
data/libextractor-1.10/src/include/plibc.h:892:28:  [4] (format) vsprintf:
  Potential format string problem (CWE-134). Make format string constant.
 #define VSPRINTF(d, f, a) vsprintf (d, f, a)
data/libextractor-1.10/src/include/plibc.h:893:39:  [4] (format) vsnprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
 #define VSNPRINTF(str, size, fmt, a) vsnprintf (str, size, fmt, a)
data/libextractor-1.10/src/include/plibc.h:894:25:  [4] (format) snprintf:
  If format strings can be influenced by an attacker, they can be exploited,
  and note that sprintf variations do not always \0-terminate (CWE-134). Use
  a constant for the format specification.
 #define _REAL_SNPRINTF snprintf
data/libextractor-1.10/src/include/plibc.h:895:18:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
 #define SPRINTF sprintf
data/libextractor-1.10/src/include/plibc.h:896:27:  [4] (buffer) vsscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
 #define VSSCANF(s, f, a) vsscanf (s, f, a)
data/libextractor-1.10/src/include/plibc.h:897:17:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
 #define SSCANF sscanf
data/libextractor-1.10/src/include/plibc.h:898:27:  [4] (buffer) vfscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
 #define VFSCANF(s, f, a) vfscanf (s, f, a)
data/libextractor-1.10/src/include/plibc.h:899:23:  [4] (buffer) vscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function. If the scanf format is influenceable by an
  attacker, it's exploitable.
 #define VSCANF(f, a) vscanf (f, a)
data/libextractor-1.10/src/include/plibc.h:900:16:  [4] (buffer) scanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
 #define SCANF scanf
data/libextractor-1.10/src/include/plibc.h:901:17:  [4] (buffer) fscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
 #define FSCANF fscanf
data/libextractor-1.10/src/main/extract.c:669:5:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
    strcpy (p, argv[i]);
data/libextractor-1.10/src/main/extractor_logging.c:45:3:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
  vfprintf (stderr, format, va);
data/libextractor-1.10/src/main/extractor_plugins.c:70:3:  [4] (format) sprintf:
  Potential format string problem (CWE-134). Make format string constant.
  sprintf (name,
data/libextractor-1.10/src/main/extractor_plugins.c:98:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf (name,
data/libextractor-1.10/src/main/extractor_plugpath.c:110:18:  [4] (buffer) sscanf:
  The scanf() family's %s operation, without a limit specification, permits
  buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
  different input function.
      if ( (1 == sscanf (line,
data/libextractor-1.10/src/main/extractor_plugpath.c:359:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf (buf, "%s/%s", pos, "extract");
data/libextractor-1.10/src/main/extractor_plugpath.c:382:3:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
  sprintf (buf, "%s/%s", pos, "extract");
data/libextractor-1.10/src/main/extractor_plugpath.c:429:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf (ret,
data/libextractor-1.10/src/main/extractor_plugpath.c:434:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf (ret,
data/libextractor-1.10/src/main/extractor_plugpath.c:440:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf (ret,
data/libextractor-1.10/src/main/extractor_plugpath.c:445:5:  [4] (buffer) sprintf:
  Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
  vsnprintf.
    sprintf (ret,
data/libextractor-1.10/src/plugins/mpeg_extractor.c:122:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy (lformat,
data/libextractor-1.10/src/plugins/odf_extractor.c:258:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
        strcat (needle, tmap[i].text);
data/libextractor-1.10/src/plugins/odf_extractor.c:263:11:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
          strcpy (needle, tmap[i].text);
data/libextractor-1.10/src/plugins/pdf_extractor.c:188:5:  [4] (shell) execvp:
  This causes a new program to execute and is difficult to use safely
  (CWE-78). try using a library call that implements the same functionality
  if available.
    execvp ("pdfinfo", args);
data/libextractor-1.10/src/plugins/previewopus_extractor.c:1196:3:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
  vfprintf (stderr, format, ap);
data/libextractor-1.10/src/plugins/ps_extractor.c:175:9:  [4] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused).
        strcpy (acc, line);
data/libextractor-1.10/src/plugins/ps_extractor.c:177:9:  [4] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused).
        strcat (acc, next + 3);
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:856:3:  [4] (format) vfprintf:
  If format strings can be influenced by an attacker, they can be exploited
  (CWE-134). Use a constant for the format specification.
  vfprintf (stderr, format, ap);
data/libextractor-1.10/src/include/plibc.h:610:7:  [3] (buffer) realpath:
  This function does not protect against buffer overflows, and some
  implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
  destination buffer is at least of size MAXPATHLEN, andto protect against
  implementation problems, the input argument should also be checked to
  ensure it is no larger than MAXPATHLEN.
char *realpath (const char *file_name, char *resolved_name);
data/libextractor-1.10/src/include/plibc.h:782:19:  [3] (random) random:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
 #define RANDOM() random ()
data/libextractor-1.10/src/include/plibc.h:783:21:  [3] (random) srandom:
  This function is not sufficiently random for security-related functions
  such as key and nonce creation (CWE-327). Use a more secure technique for
  acquiring random values.
 #define SRANDOM(s) srandom (s)
data/libextractor-1.10/src/main/extract.c:810:9:  [3] (buffer) getopt_long:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
    c = getopt_long (utf8_argc,
data/libextractor-1.10/src/main/extractor_ipc_gnu.c:147:11:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
  tpath = getenv ("TMPDIR");
data/libextractor-1.10/src/main/extractor_plugpath.c:342:20:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
  if (NULL == (p = getenv ("PATH")))
data/libextractor-1.10/src/main/extractor_plugpath.c:472:20:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
  if (NULL != (p = getenv ("LIBEXTRACTOR_PREFIX")))
data/libextractor-1.10/src/main/extractor_plugpath.c:689:9:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
  env = getenv ("LIBEXTRACTOR_LIBRARIES");
data/libextractor-1.10/src/main/getopt.c:211:7:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
char *getenv ();
data/libextractor-1.10/src/main/getopt.c:414:21:  [3] (buffer) getenv:
  Environment variables are untrustable input if they can be set by an
  attacker. They can have any content and length, and the same variable can
  be set more than once (CWE-807, CWE-20). Check environment variables
  carefully before using them.
  posixly_correct = getenv ("POSIXLY_CORRECT");
data/libextractor-1.10/src/main/getopt.c:984:1:  [3] (buffer) getopt:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
getopt (argc, argv, optstring)
data/libextractor-1.10/src/main/getopt.c:1014:9:  [3] (buffer) getopt:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
    c = getopt (argc, argv, "abc:d:0123456789");
data/libextractor-1.10/src/main/getopt.h:108:12:  [3] (buffer) getopt:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
extern int getopt (int argc, char *const *argv, const char *shortopts);
data/libextractor-1.10/src/main/getopt.h:111:12:  [3] (buffer) getopt:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
extern int getopt ();
data/libextractor-1.10/src/main/getopt.h:114:12:  [3] (buffer) getopt_long:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
extern int getopt_long (int argc, char *const *argv, const char *shortopts,
data/libextractor-1.10/src/main/getopt.h:128:12:  [3] (buffer) getopt:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
extern int getopt ();
data/libextractor-1.10/src/main/getopt.h:130:12:  [3] (buffer) getopt_long:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
extern int getopt_long ();
data/libextractor-1.10/src/main/getopt1.c:64:1:  [3] (buffer) getopt_long:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
getopt_long (argc, argv, options, long_options, opt_index)
data/libextractor-1.10/src/main/getopt1.c:122:9:  [3] (buffer) getopt_long:
  Some older implementations do not protect against internal buffer overflows
  (CWE-120, CWE-20). Check implementation on installation, or limit the size
  of all string inputs.
    c = getopt_long (argc, argv, "abc:d:0123456789",
data/libextractor-1.10/src/common/convert.c:83:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (ret, tmp, tmpSize - finSize);
data/libextractor-1.10/src/common/convert.c:92:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (ret, input, len);
data/libextractor-1.10/src/common/unzip.c:467:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char buf[BUFREADCOMMENT + 4];
data/libextractor-1.10/src/common/unzip.c:998:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char szCurrentFileName[UNZ_MAXFILENAMEINZIP + 1];
data/libextractor-1.10/src/common/unzip.c:1102:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy (pfile_in_zip_read_info->stream.next_out,
data/libextractor-1.10/src/common/unzip.c:1370:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (buf + done, ptr, ret);
data/libextractor-1.10/src/include/plibc.h:94:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char sun_path[108]; /*path name */
data/libextractor-1.10/src/include/plibc.h:537:5:  [2] (tmpfile) mkstemp:
  Potential for temporary file vulnerability in some circumstances. Some
  older Unix-like systems create temp files with permission to write by all
  by default, so be sure to set the umask to override this. Also, some older
  Unix systems might fail to use O_EXCL when opening the file, so make sure
  that O_EXCL is used by the library (CWE-377).
int mkstemp (char *tmplate);
data/libextractor-1.10/src/include/plibc.h:749:22:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
 #define FOPEN(f, m) fopen (f, m)
data/libextractor-1.10/src/include/plibc.h:756:15:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
 #define OPEN open
data/libextractor-1.10/src/include/plibc.h:949:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char q_data[1];
data/libextractor-1.10/src/main/extract.c:131:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char scp[80];
data/libextractor-1.10/src/main/extract.c:177:11:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
          memcpy (scp,
data/libextractor-1.10/src/main/extract.c:191:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy (scp,
data/libextractor-1.10/src/main/extract.c:569:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char temp[20];
data/libextractor-1.10/src/main/extractor.c:227:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buf[DEFAULT_SHM_SIZE];
data/libextractor-1.10/src/main/extractor_datasource.c:156:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char result[COM_CHUNK_SIZE];
data/libextractor-1.10/src/main/extractor_datasource.c:440:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (&cbuf[ret], bfds->data + bfds->buffer_pos, avail);
data/libextractor-1.10/src/main/extractor_datasource.c:464:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char hdata[12];
data/libextractor-1.10/src/main/extractor_datasource.c:483:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char fname[1024];
data/libextractor-1.10/src/main/extractor_datasource.c:518:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char fcomment[1024];
data/libextractor-1.10/src/main/extractor_datasource.c:808:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char buf[COM_CHUNK_SIZE];
data/libextractor-1.10/src/main/extractor_datasource.c:822:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (&dst[rc], &cfs->result[cfs->result_pos], in);
data/libextractor-1.10/src/main/extractor_datasource.c:871:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (&dst[rc], &cfs->result[cfs->result_pos], in);
data/libextractor-1.10/src/main/extractor_datasource.c:907:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buf[COM_CHUNK_SIZE];
data/libextractor-1.10/src/main/extractor_datasource.c:921:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (&dst[rc], &cfs->result[cfs->result_pos], in);
data/libextractor-1.10/src/main/extractor_datasource.c:970:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (&dst[rc], &cfs->result[cfs->result_pos], in);
data/libextractor-1.10/src/main/extractor_datasource.c:1106:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[COM_CHUNK_SIZE];
data/libextractor-1.10/src/main/extractor_datasource.c:1144:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char read_data[3];
data/libextractor-1.10/src/main/extractor_datasource.c:1408:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buf[32 * 1024];
data/libextractor-1.10/src/main/extractor_ipc_gnu.c:66:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char shm_name[MAX_SHM_NAME + 1];
data/libextractor-1.10/src/main/extractor_ipc_gnu.c:377:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&init[1], shm->shm_name, slen);
data/libextractor-1.10/src/main/extractor_ipc_w32.c:43:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char shm_name[MAX_SHM_NAME + 1];
data/libextractor-1.10/src/main/extractor_ipc_w32.c:287:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char pipename[MAX_PATH];
data/libextractor-1.10/src/main/extractor_ipc_w32.c:405:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (ptr, &libname_len, sizeof (size_t));
data/libextractor-1.10/src/main/extractor_ipc_w32.c:407:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (ptr, plugin->libname, libname_len);
data/libextractor-1.10/src/main/extractor_ipc_w32.c:409:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (ptr, &shortname_len, sizeof (size_t));
data/libextractor-1.10/src/main/extractor_ipc_w32.c:411:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (ptr, plugin->short_libname, shortname_len);
data/libextractor-1.10/src/main/extractor_ipc_w32.c:413:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (ptr, &opts_len, sizeof (size_t));
data/libextractor-1.10/src/main/extractor_ipc_w32.c:417:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (ptr, plugin->plugin_options, opts_len);
data/libextractor-1.10/src/main/extractor_ipc_w32.c:446:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char cmd[MAX_PATH + 1];
data/libextractor-1.10/src/main/extractor_ipc_w32.c:447:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char arg1[10], arg2[10];
data/libextractor-1.10/src/main/extractor_ipc_w32.c:574:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&init[1], shm->shm_name, slen);
data/libextractor-1.10/src/main/extractor_ipc_w32.c:650:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (channel->old_buf, data, size);
data/libextractor-1.10/src/main/extractor_plugin_main.c:408:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char shm_name[init.shm_name_length + 1];
data/libextractor-1.10/src/main/extractor_plugin_main.c:575:8:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
  fd = open ("/dev/null", flags);
data/libextractor-1.10/src/main/extractor_plugin_main.c:577:8:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
  fd = open ("\\\\?\\NUL", flags);
data/libextractor-1.10/src/main/extractor_plugins.c:124:3:  [2] (buffer) wchar_t:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  wchar_t wlibname[4097];
data/libextractor-1.10/src/main/extractor_plugins.c:125:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char llibname[4097];
data/libextractor-1.10/src/main/extractor_plugpath.c:93:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char fn[64];
data/libextractor-1.10/src/main/extractor_plugpath.c:94:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char line[1024];
data/libextractor-1.10/src/main/extractor_plugpath.c:95:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char dir[1024];
data/libextractor-1.10/src/main/extractor_plugpath.c:154:3:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
  strcat (ret, "/lib/"); /* guess "lib/" as the library dir */
data/libextractor-1.10/src/main/extractor_plugpath.c:207:3:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
  strcat (ret, "/lib/"); /* guess "lib/" as the library dir */
data/libextractor-1.10/src/main/extractor_plugpath.c:279:3:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
  strcat (ret, "/lib/");
data/libextractor-1.10/src/main/extractor_plugpath.c:377:7:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
      strcat (ret, "/lib/");
data/libextractor-1.10/src/main/extractor_plugpath.c:397:5:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
    strcat (ret, "/lib/");
data/libextractor-1.10/src/main/getopt.c:340:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy (new_str, __getopt_nonoption_flags, nonoption_flags_max_len);
data/libextractor-1.10/src/main/getopt.c:454:11:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
          memcpy (__getopt_nonoption_flags, orig_str, len);
data/libextractor-1.10/src/main/iconv.c:75:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (buf, in, inSize);
data/libextractor-1.10/src/main/test_ipc.c:137:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char buf[1024 * 150];
data/libextractor-1.10/src/main/test_ipc.c:143:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (buf, "test", 4);
data/libextractor-1.10/src/plugins/deb_extractor.c:64:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (tmp, str, n);
data/libextractor-1.10/src/plugins/deb_extractor.c:192:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[100];
data/libextractor-1.10/src/plugins/deb_extractor.c:197:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char mode[8];
data/libextractor-1.10/src/plugins/deb_extractor.c:202:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char userId[8];
data/libextractor-1.10/src/plugins/deb_extractor.c:207:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char groupId[8];
data/libextractor-1.10/src/plugins/deb_extractor.c:212:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char filesize[12];
data/libextractor-1.10/src/plugins/deb_extractor.c:217:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char lastModTime[12];
data/libextractor-1.10/src/plugins/deb_extractor.c:222:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char chksum[8];
data/libextractor-1.10/src/plugins/deb_extractor.c:232:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char linkName[100];
data/libextractor-1.10/src/plugins/deb_extractor.c:249:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char magic[6];
data/libextractor-1.10/src/plugins/deb_extractor.c:254:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char version[2];
data/libextractor-1.10/src/plugins/deb_extractor.c:259:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char uname[32];
data/libextractor-1.10/src/plugins/deb_extractor.c:264:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char gname[32];
data/libextractor-1.10/src/plugins/deb_extractor.c:269:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char devmajor[8];
data/libextractor-1.10/src/plugins/deb_extractor.c:274:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char devminor[8];
data/libextractor-1.10/src/plugins/deb_extractor.c:279:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char prefix[155];
data/libextractor-1.10/src/plugins/deb_extractor.c:306:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[13];
data/libextractor-1.10/src/plugins/deb_extractor.c:322:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (buf, &tar->filesize[0], 12);
data/libextractor-1.10/src/plugins/deb_extractor.c:380:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (&cdata[off],
data/libextractor-1.10/src/plugins/deb_extractor.c:425:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char name[16];
data/libextractor-1.10/src/plugins/deb_extractor.c:430:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char lastModTime[12];
data/libextractor-1.10/src/plugins/deb_extractor.c:435:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char userId[6];
data/libextractor-1.10/src/plugins/deb_extractor.c:440:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char groupId[6];
data/libextractor-1.10/src/plugins/deb_extractor.c:445:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char modeInOctal[8];
data/libextractor-1.10/src/plugins/deb_extractor.c:450:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char filesize[10];
data/libextractor-1.10/src/plugins/deb_extractor.c:455:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char trailer[2];
data/libextractor-1.10/src/plugins/deb_extractor.c:472:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buf[11];
data/libextractor-1.10/src/plugins/deb_extractor.c:495:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (buf, &hdr->filesize[0], 10);
data/libextractor-1.10/src/plugins/dvi_extractor.c:101:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
        char value[slen + 1];
data/libextractor-1.10/src/plugins/dvi_extractor.c:104:9:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
        memcpy (value, &data[pos], slen);
data/libextractor-1.10/src/plugins/dvi_extractor.c:134:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&p, data, 4);          /* ensure alignment! */
data/libextractor-1.10/src/plugins/dvi_extractor.c:150:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&p, data, sizeof (uint16_t));          /* ensure alignment! */
data/libextractor-1.10/src/plugins/dvi_extractor.c:168:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char pages[16];
data/libextractor-1.10/src/plugins/dvi_extractor.c:189:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (data, buf, iret);
data/libextractor-1.10/src/plugins/dvi_extractor.c:198:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (&data[off], buf, iret);
data/libextractor-1.10/src/plugins/dvi_extractor.c:263:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char comment[klen + 1];
data/libextractor-1.10/src/plugins/dvi_extractor.c:266:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (comment, &data[15], klen);
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:78:13:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
virtual int open ();
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:244:14:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
ExtractorIO::open ()
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:302:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (&buf[got], data, ret);
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:741:56:  [2] (misc) open:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    Exiv2::Image::AutoPtr image = Exiv2::ImageFactory::open (eio);
data/libextractor-1.10/src/plugins/flac_extractor.c:69:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (buffer, data, ret);
data/libextractor-1.10/src/plugins/flac_extractor.c:252:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (d, s, n);
data/libextractor-1.10/src/plugins/flac_extractor.c:316:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char buf[128];
data/libextractor-1.10/src/plugins/gif_extractor.c:52:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (bt, data, ret);
data/libextractor-1.10/src/plugins/gif_extractor.c:69:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char dims[128];
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:965:7:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
      memcpy (&mi.data[accumulated], le_data, data_len);
data/libextractor-1.10/src/plugins/html_extractor.c:458:11:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
          memcpy (ret, pstart, pend - pstart);
data/libextractor-1.10/src/plugins/html_extractor.c:632:11:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
          memcpy (xtmp, t->dataStart, t->dataEnd - t->dataStart);
data/libextractor-1.10/src/plugins/it_extractor.c:43:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char magicid[4];
data/libextractor-1.10/src/plugins/it_extractor.c:44:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char title[26];
data/libextractor-1.10/src/plugins/it_extractor.c:45:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char hilight[2];
data/libextractor-1.10/src/plugins/it_extractor.c:46:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char orders[2];
data/libextractor-1.10/src/plugins/it_extractor.c:47:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char instruments[2];
data/libextractor-1.10/src/plugins/it_extractor.c:48:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char samples[2];
data/libextractor-1.10/src/plugins/it_extractor.c:49:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char patterns[2];
data/libextractor-1.10/src/plugins/it_extractor.c:50:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char version[2];
data/libextractor-1.10/src/plugins/it_extractor.c:51:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char compatible[2];
data/libextractor-1.10/src/plugins/it_extractor.c:52:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char flags[2];
data/libextractor-1.10/src/plugins/it_extractor.c:53:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char special[2];
data/libextractor-1.10/src/plugins/it_extractor.c:69:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char title[27];
data/libextractor-1.10/src/plugins/it_extractor.c:70:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char itversion[8];
data/libextractor-1.10/src/plugins/it_extractor.c:108:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&title, head->title, 26);
data/libextractor-1.10/src/plugins/jpeg_extractor.c:98:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char format[128];
data/libextractor-1.10/src/plugins/man_extractor.c:45:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (tmp, str, n);
data/libextractor-1.10/src/plugins/midi_extractor.c:81:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (data, buf, iret);
data/libextractor-1.10/src/plugins/midi_extractor.c:90:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (&data[off], buf, iret);
data/libextractor-1.10/src/plugins/mp4_extractor.c:106:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (buffer, buf, ret);
data/libextractor-1.10/src/plugins/mp4_extractor.c:186:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char ecp[128];
data/libextractor-1.10/src/plugins/mpeg_extractor.c:57:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char format[256];
data/libextractor-1.10/src/plugins/mpeg_extractor.c:58:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char lformat[256];
data/libextractor-1.10/src/plugins/mpeg_extractor.c:59:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char gop_format[256];
data/libextractor-1.10/src/plugins/nsf_extractor.c:52:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char magicid[5];
data/libextractor-1.10/src/plugins/nsf_extractor.c:87:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char title[32];
data/libextractor-1.10/src/plugins/nsf_extractor.c:92:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char artist[32];
data/libextractor-1.10/src/plugins/nsf_extractor.c:97:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char copyright[32];
data/libextractor-1.10/src/plugins/nsf_extractor.c:107:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char bankswitch[8];
data/libextractor-1.10/src/plugins/nsf_extractor.c:150:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char album[33];
data/libextractor-1.10/src/plugins/nsf_extractor.c:151:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char artist[33];
data/libextractor-1.10/src/plugins/nsf_extractor.c:152:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char copyright[33];
data/libextractor-1.10/src/plugins/nsf_extractor.c:153:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char songs[32];
data/libextractor-1.10/src/plugins/nsf_extractor.c:154:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char startingsong[32];
data/libextractor-1.10/src/plugins/nsf_extractor.c:155:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char nsfversion[32];
data/libextractor-1.10/src/plugins/nsf_extractor.c:187:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&album, head->title, 32);
data/libextractor-1.10/src/plugins/nsf_extractor.c:190:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&artist, head->artist, 32);
data/libextractor-1.10/src/plugins/nsf_extractor.c:193:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&copyright, head->copyright, 32);
data/libextractor-1.10/src/plugins/nsfe_extractor.c:49:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char magicid[4];
data/libextractor-1.10/src/plugins/nsfe_extractor.c:96:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (s, data, length);
data/libextractor-1.10/src/plugins/nsfe_extractor.c:184:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char songs[32];
data/libextractor-1.10/src/plugins/odf_extractor.c:90:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char filename_inzip[MAXFILENAME];
data/libextractor-1.10/src/plugins/odf_extractor.c:158:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char filename_inzip[MAXFILENAME];
data/libextractor-1.10/src/plugins/odf_extractor.c:250:7:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
      char needle[256];
data/libextractor-1.10/src/plugins/odf_extractor.c:264:11:  [2] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant string.
          strcat (needle, "=\"");
data/libextractor-1.10/src/plugins/odf_extractor.c:298:11:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
          char key[epos - spos + 1];
data/libextractor-1.10/src/plugins/odf_extractor.c:300:11:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
          memcpy (key, spos, epos - spos);
data/libextractor-1.10/src/plugins/ogg_extractor.c:64:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (ptr, data, ret);
data/libextractor-1.10/src/plugins/ole2_extractor.c:349:5:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    char buf[size];
data/libextractor-1.10/src/plugins/ole2_extractor.c:793:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (optional_buffer, buf, num_bytes);
data/libextractor-1.10/src/plugins/pdf_extractor.c:87:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char line[1025];
data/libextractor-1.10/src/plugins/png_extractor.c:55:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (tmp, str, n);
data/libextractor-1.10/src/plugins/png_extractor.c:318:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char tmp[128];
data/libextractor-1.10/src/plugins/png_extractor.c:433:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char val[256];
data/libextractor-1.10/src/plugins/png_extractor.c:442:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&y, data, sizeof (uint16_t));
data/libextractor-1.10/src/plugins/previewopus_extractor.c:94:10:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  static char error_buffer[255];
data/libextractor-1.10/src/plugins/previewopus_extractor.c:120:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (buf, data, ret);
data/libextractor-1.10/src/plugins/previewopus_extractor.c:164:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (buffer + totalSize, pBuffer, sizeToCopy);
data/libextractor-1.10/src/plugins/previewopus_extractor.c:1127:9:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    f = fopen ("example.opus", "wb");
data/libextractor-1.10/src/plugins/ps_extractor.c:115:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (res, cdata, eol - cdata);
data/libextractor-1.10/src/plugins/riff_extractor.c:103:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char codec[5];
data/libextractor-1.10/src/plugins/riff_extractor.c:104:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char format[256];
data/libextractor-1.10/src/plugins/riff_extractor.c:145:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (codec, &xdata[24], 4);
data/libextractor-1.10/src/plugins/rpm_extractor.c:351:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char tmp[80];
data/libextractor-1.10/src/plugins/rpm_extractor.c:376:13:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
            char tmp[14];
data/libextractor-1.10/src/plugins/s3m_extractor.c:34:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char song_name[28];
data/libextractor-1.10/src/plugins/s3m_extractor.c:44:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char SCRM[4];
data/libextractor-1.10/src/plugins/s3m_extractor.c:85:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char song_name_NT[29];
data/libextractor-1.10/src/plugins/s3m_extractor.c:103:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (song_name_NT, header.song_name, 28);
data/libextractor-1.10/src/plugins/sid_extractor.c:42:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
typedef char sidwrd[2];
data/libextractor-1.10/src/plugins/sid_extractor.c:47:9:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
typedef char sidlongwrd[4];
data/libextractor-1.10/src/plugins/sid_extractor.c:57:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char magicid[4];
data/libextractor-1.10/src/plugins/sid_extractor.c:102:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char title[32];
data/libextractor-1.10/src/plugins/sid_extractor.c:107:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char artist[32];
data/libextractor-1.10/src/plugins/sid_extractor.c:112:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char copyright[32];
data/libextractor-1.10/src/plugins/sid_extractor.c:174:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char album[33];
data/libextractor-1.10/src/plugins/sid_extractor.c:175:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char artist[33];
data/libextractor-1.10/src/plugins/sid_extractor.c:176:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char copyright[33];
data/libextractor-1.10/src/plugins/sid_extractor.c:177:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char songs[32];
data/libextractor-1.10/src/plugins/sid_extractor.c:178:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char startingsong[32];
data/libextractor-1.10/src/plugins/sid_extractor.c:179:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char sidversion[32];
data/libextractor-1.10/src/plugins/sid_extractor.c:220:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&album, head->title, 32);
data/libextractor-1.10/src/plugins/sid_extractor.c:224:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&artist, head->artist, 32);
data/libextractor-1.10/src/plugins/sid_extractor.c:228:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&copyright, head->copyright, 32);
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:133:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (buf, data, ret);
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:342:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (encoder_output_buffer,pkt.data, pkt.size);
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:430:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  unsigned char padded_data[PADDED_BUFFER_SIZE];
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:478:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (padded_data, data, iret);
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:519:9:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    f = fopen ("thumb.jpg", "wb");
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:521:9:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    f = fopen ("thumb.png", "wb");
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:732:9:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    f = fopen ("thumb.jpg", "wb");
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:734:9:  [2] (misc) fopen:
  Check when opening files - can an attacker redirect it (via symlinks),
  force the opening of special file type (e.g., device files), move things
  around to create a race condition, control its ancestors, or change its
  contents? (CWE-362).
    f = fopen ("thumb.png", "wb");
data/libextractor-1.10/src/plugins/thumbnailgtk_extractor.c:69:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char format[64];
data/libextractor-1.10/src/plugins/thumbnailgtk_extractor.c:98:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (buf, data, iret);
data/libextractor-1.10/src/plugins/thumbnailgtk_extractor.c:109:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (buf + off, data, iret);
data/libextractor-1.10/src/plugins/tiff_extractor.c:65:5:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
    memcpy (data, ptr, ret);
data/libextractor-1.10/src/plugins/tiff_extractor.c:181:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char format[128];
data/libextractor-1.10/src/plugins/wav_extractor.c:84:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char scratch[256];
data/libextractor-1.10/src/plugins/xm_extractor.c:36:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char magicid[17];
data/libextractor-1.10/src/plugins/xm_extractor.c:37:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char title[20];
data/libextractor-1.10/src/plugins/xm_extractor.c:38:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char something[1];
data/libextractor-1.10/src/plugins/xm_extractor.c:39:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char tracker[20];
data/libextractor-1.10/src/plugins/xm_extractor.c:40:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char version[2];
data/libextractor-1.10/src/plugins/xm_extractor.c:72:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char title[21];
data/libextractor-1.10/src/plugins/xm_extractor.c:73:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char tracker[21];
data/libextractor-1.10/src/plugins/xm_extractor.c:74:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char xmversion[8];
data/libextractor-1.10/src/plugins/xm_extractor.c:95:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&title, head->title, 20);
data/libextractor-1.10/src/plugins/xm_extractor.c:102:3:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
  memcpy (&tracker, head->tracker, 20);
data/libextractor-1.10/src/plugins/zip_extractor.c:41:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char fname[256];
data/libextractor-1.10/src/plugins/zip_extractor.c:42:3:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
  char fcomment[256];
data/libextractor-1.10/src/common/unzip.c:984:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (strlen (szFileName) >= UNZ_MAXFILENAMEINZIP)
data/libextractor-1.10/src/common/unzip.c:1365:15:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    ret = ec->read (ec->cls,
data/libextractor-1.10/src/include/extractor.h:494:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  ssize_t (*read) (void *cls,
data/libextractor-1.10/src/include/plibc.h:773:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
 #define READ(f, b, n) read (f, b, n)
data/libextractor-1.10/src/intlemu/intlemu.c:77:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    (CFIndex) strlen (msgid),
data/libextractor-1.10/src/main/extract.c:150:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    slen = 8 + strlen (opt[i].longArg);
data/libextractor-1.10/src/main/extract.c:155:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      slen += 1 + strlen (opt[i].mandatoryArg);
data/libextractor-1.10/src/main/extract.c:168:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    ml = strlen (trans);
data/libextractor-1.10/src/main/extract.c:590:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    for (n = strlen (temp) - 1; n>=0; n--)
data/libextractor-1.10/src/main/extract.c:661:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    argvsize += strlen (argv[i]) + 1 + sizeof (char *);
data/libextractor-1.10/src/main/extract.c:670:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    p += strlen (argv[i]) + 1;
data/libextractor-1.10/src/main/extractor_common.c:86:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    ret = read (fd, &data[off], size - off);
data/libextractor-1.10/src/main/extractor_datasource.c:240:8:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  rd = read (bfds->fd, bfds->buffer, bfds->buffer_size);
data/libextractor-1.10/src/main/extractor_ipc_gnu.c:365:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  slen = strlen (shm->shm_name) + 1;
data/libextractor-1.10/src/main/extractor_ipc_gnu.c:558:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    if ( (-1 == (iret = read (channel->cpipe_out,
data/libextractor-1.10/src/main/extractor_ipc_w32.c:386:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  libname_len = strlen (plugin->libname) + 1;
data/libextractor-1.10/src/main/extractor_ipc_w32.c:388:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  shortname_len = strlen (plugin->short_libname) + 1;
data/libextractor-1.10/src/main/extractor_ipc_w32.c:392:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    opts_len = strlen (plugin->plugin_options) + 1;
data/libextractor-1.10/src/main/extractor_ipc_w32.c:562:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  slen = strlen (shm->shm_name) + 1;
data/libextractor-1.10/src/main/extractor_plugin_main.c:336:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    mime_len = strlen (data_mime_type) + 1;
data/libextractor-1.10/src/main/extractor_plugins.c:65:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (NULL == (name = malloc (strlen (sym) + strlen (template) + 1)))
data/libextractor-1.10/src/main/extractor_plugins.c:65:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (NULL == (name = malloc (strlen (sym) + strlen (template) + 1)))
data/libextractor-1.10/src/main/extractor_plugins.c:275:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  len = strlen (config);
data/libextractor-1.10/src/main/extractor_plugpath.c:60:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  p = strlen (in);
data/libextractor-1.10/src/main/extractor_plugpath.c:148:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (NULL == (ret = realloc (lnk, strlen (lnk) + 6)))
data/libextractor-1.10/src/main/extractor_plugpath.c:194:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  idx = path + strlen (path);
data/libextractor-1.10/src/main/extractor_plugpath.c:201:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (NULL == (ret = realloc (path, strlen (path) + 6)))
data/libextractor-1.10/src/main/extractor_plugpath.c:266:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  len = strlen (path);
data/libextractor-1.10/src/main/extractor_plugpath.c:273:37:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (NULL == (ret = realloc (path, strlen (path) + 5)))
data/libextractor-1.10/src/main/extractor_plugpath.c:304:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if ( (NULL == path) || (0 == strlen (path)) )
data/libextractor-1.10/src/main/extractor_plugpath.c:311:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    s = p + strlen (p);
data/libextractor-1.10/src/main/extractor_plugpath.c:349:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (NULL == (buf = malloc (strlen (path) + 20)))
data/libextractor-1.10/src/main/extractor_plugpath.c:371:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if (NULL == (ret = realloc (pos, strlen (pos) + 6)))
data/libextractor-1.10/src/main/extractor_plugpath.c:391:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (NULL == (ret = realloc (pos, strlen (pos) + 6)))
data/libextractor-1.10/src/main/extractor_plugpath.c:420:20:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (0 == (slen = strlen (path)))
data/libextractor-1.10/src/main/extractor_plugpath.c:424:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  ret = malloc (slen + strlen (fname) + 2);
data/libextractor-1.10/src/main/extractor_plugpath.c:560:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    dlen = strlen (ent->d_name);
data/libextractor-1.10/src/main/extractor_plugpath.c:647:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    dlen = strlen (ent->d_name);
data/libextractor-1.10/src/main/getopt.c:236:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
extern int strlen (const char *);
data/libextractor-1.10/src/main/getopt.c:240:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
extern size_t strlen (const char *);
data/libextractor-1.10/src/main/getopt.c:445:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        int len = nonoption_flags_max_len = strlen (orig_str);
data/libextractor-1.10/src/main/getopt.c:672:31:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            == (unsigned int) strlen (p->name))
data/libextractor-1.10/src/main/getopt.c:696:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      nextchar += strlen (nextchar);
data/libextractor-1.10/src/main/getopt.c:728:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          nextchar += strlen (nextchar);
data/libextractor-1.10/src/main/getopt.c:744:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          nextchar += strlen (nextchar);
data/libextractor-1.10/src/main/getopt.c:749:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      nextchar += strlen (nextchar);
data/libextractor-1.10/src/main/getopt.c:859:54:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          if ((unsigned int) (nameend - nextchar) == strlen (p->name))
data/libextractor-1.10/src/main/getopt.c:882:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        nextchar += strlen (nextchar);
data/libextractor-1.10/src/main/getopt.c:902:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            nextchar += strlen (nextchar);
data/libextractor-1.10/src/main/getopt.c:916:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            nextchar += strlen (nextchar);
data/libextractor-1.10/src/main/getopt.c:920:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        nextchar += strlen (nextchar);
data/libextractor-1.10/src/main/test2_extractor.c:53:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (4 != ec->read (ec->cls, &dp, 4))
data/libextractor-1.10/src/main/test2_extractor.c:74:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (1 != ec->read (ec->cls, &dp, 1))
data/libextractor-1.10/src/main/test2_extractor.c:90:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (1 != ec->read (ec->cls, &dp, 1))
data/libextractor-1.10/src/main/test2_extractor.c:105:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (0 != ec->read (ec->cls, &dp, 1))
data/libextractor-1.10/src/main/test2_extractor.c:115:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (1 != ec->read (ec->cls, &dp, 1))
data/libextractor-1.10/src/main/test_bzip2.c:94:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       (data_len == strlen (HLO) + 1) &&
data/libextractor-1.10/src/main/test_bzip2.c:97:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (HLO))) )
data/libextractor-1.10/src/main/test_bzip2.c:106:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       (data_len == strlen (GOB) + 1) &&
data/libextractor-1.10/src/main/test_bzip2.c:109:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (GOB))) )
data/libextractor-1.10/src/main/test_extractor.c:53:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (4 != ec->read (ec->cls, &dp, 4))
data/libextractor-1.10/src/main/test_extractor.c:74:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (1 != ec->read (ec->cls, &dp, 1))
data/libextractor-1.10/src/main/test_extractor.c:90:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (1 != ec->read (ec->cls, &dp, 1))
data/libextractor-1.10/src/main/test_extractor.c:105:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (0 != ec->read (ec->cls, &dp, 1))
data/libextractor-1.10/src/main/test_extractor.c:115:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (1 != ec->read (ec->cls, &dp, 1))
data/libextractor-1.10/src/main/test_extractor.c:127:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen ("Hello world!") + 1))
data/libextractor-1.10/src/main/test_extractor.c:137:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen ("Goodbye!") + 1))
data/libextractor-1.10/src/main/test_file.c:94:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       (data_len == strlen (HLO) + 1) &&
data/libextractor-1.10/src/main/test_file.c:97:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (HLO))) )
data/libextractor-1.10/src/main/test_file.c:106:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       (data_len == strlen (GOB) + 1) &&
data/libextractor-1.10/src/main/test_file.c:109:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (GOB))) )
data/libextractor-1.10/src/main/test_gzip.c:98:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       (data_len == strlen (HLO) + 1) &&
data/libextractor-1.10/src/main/test_gzip.c:101:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (HLO))) )
data/libextractor-1.10/src/main/test_gzip.c:110:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       (data_len == strlen (GOB) + 1) &&
data/libextractor-1.10/src/main/test_gzip.c:113:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (GOB))) )
data/libextractor-1.10/src/main/test_ipc.c:97:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       (data_len == strlen (HLO) + 1) &&
data/libextractor-1.10/src/main/test_ipc.c:100:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (HLO))) )
data/libextractor-1.10/src/main/test_ipc.c:109:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       (data_len == strlen (GOB) + 1) &&
data/libextractor-1.10/src/main/test_ipc.c:112:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (GOB))) )
data/libextractor-1.10/src/plugins/archive_extractor.c:47:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (-1 == (ret = ec->read (ec->cls, (void **) buff, 16 * 1024)))
data/libextractor-1.10/src/plugins/archive_extractor.c:122:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                       s, strlen (s) + 1))
data/libextractor-1.10/src/plugins/archive_extractor.c:136:46:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                       "text/plain", format, strlen (format) + 1))
data/libextractor-1.10/src/plugins/deb_extractor.c:168:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen (val) + 1))
data/libextractor-1.10/src/plugins/deb_extractor.c:312:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if (0 == strncmp ("ustar", &ustar->magic[0], strlen ("ustar")))
data/libextractor-1.10/src/plugins/deb_extractor.c:329:51:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (0 == strncmp (&tar->name[0], "./control", strlen ("./control")))
data/libextractor-1.10/src/plugins/deb_extractor.c:375:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    if (0 >= (sret = ec->read (ec->cls, &data, size - off)))
data/libextractor-1.10/src/plugins/deb_extractor.c:479:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls, &data, 8))
data/libextractor-1.10/src/plugins/deb_extractor.c:490:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        ec->read (ec->cls, &data, sizeof (struct ObjectHeader)))
data/libextractor-1.10/src/plugins/deb_extractor.c:504:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen ("control.tar.gz")))
data/libextractor-1.10/src/plugins/deb_extractor.c:512:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      "debian-binary", strlen ("debian-binary")))
data/libextractor-1.10/src/plugins/deb_extractor.c:520:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                         strlen ("application/x-debian-package") + 1))
data/libextractor-1.10/src/plugins/dvi_extractor.c:82:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  slen = strlen ("ps:SDict begin [");
data/libextractor-1.10/src/plugins/dvi_extractor.c:91:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      slen = strlen (tmap[i].text);
data/libextractor-1.10/src/plugins/dvi_extractor.c:175:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (40 >= (iret = ec->read (ec->cls, &buf, 1024)))
data/libextractor-1.10/src/plugins/dvi_extractor.c:193:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    if (0 >= (iret = ec->read (ec->cls, &buf, 16 * 1024)))
data/libextractor-1.10/src/plugins/dvi_extractor.c:252:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen (pages) + 1))
data/libextractor-1.10/src/plugins/dvi_extractor.c:260:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen ("application/x-dvi") + 1))
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:93:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
virtual Exiv2::DataBuf read (long rcount);
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:102:14:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
virtual long read (Exiv2::byte *buf,
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:269:14:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
ExtractorIO::read (long rcount)
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:274:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (-1 == (ret = ec->read (ec->cls, &data, rcount)))
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:288:14:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
ExtractorIO::read (Exiv2::byte *buf,
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:298:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    if (-1 == (ret = ec->read (ec->cls, &data, rcount - got)))
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:321:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (1 != ec->read (ec->cls, &data, 1))
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:576:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                         "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:608:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  while ( (strlen (str) > 0) && isspace ((unsigned char) str[0]))
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:610:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (strlen (str) > 0)
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:646:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    while ((strlen (str) > 0) && isspace ((unsigned char) str[0]))
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:648:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (strlen (str) > 0)
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:684:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    while ( (strlen (str) > 0) && isspace ((unsigned char) str[0]))
data/libextractor-1.10/src/plugins/exiv2_extractor.cc:686:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (strlen (str) > 0)
data/libextractor-1.10/src/plugins/flac_extractor.c:59:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  ret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/flac_extractor.c:234:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                "text/plain", s, strlen (s) + 1); } while (0)
data/libextractor-1.10/src/plugins/flac_extractor.c:280:26:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if ( (type_length != strlen (tmap[i].text)) ||
data/libextractor-1.10/src/plugins/gif_extractor.c:47:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  ret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/gif_extractor.c:96:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                strlen ("image/gif") + 1))
data/libextractor-1.10/src/plugins/gif_extractor.c:110:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                strlen (dims) + 1))
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:961:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    data_len = ps->ec->read (ps->ec->cls, (void **) &le_data, size
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1111:63:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                          (const char *) str, strlen (str) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1133:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (senddata) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1165:65:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                           (const char *) ctmp, strlen (ctmp)
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1181:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1200:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1219:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1238:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1257:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1296:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1315:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1335:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1355:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1376:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1395:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1425:70:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                                (const char *) ctmp, strlen (
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1696:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                          strlen (str) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1738:66:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                      (const char *) structname, strlen (
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1880:27:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        ps->toc_length += strlen (topen) + strlen (str) + strlen (tclose);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1880:44:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        ps->toc_length += strlen (topen) + strlen (str) + strlen (tclose);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1880:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        ps->toc_length += strlen (topen) + strlen (str) + strlen (tclose);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1928:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      ps->toc_length += strlen (s);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1941:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      ps->toc_length += strlen ("<tags>\n") + ps->toc_depth * 2;
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1951:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      ps->toc_length += strlen ("</tags>\n") + ps->toc_depth * 2;
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:1968:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      ps->toc_length += strlen (s);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:2002:41:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                        strlen (s) + 1);
data/libextractor-1.10/src/plugins/gstreamer_extractor.c:2028:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      ps->toc_length += 1 + strlen (TOC_XML_HEADER);
data/libextractor-1.10/src/plugins/html_extractor.c:132:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls,
data/libextractor-1.10/src/plugins/html_extractor.c:190:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (-1 == (iret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/html_extractor.c:198:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    strlen ("text/html")))
data/libextractor-1.10/src/plugins/html_extractor.c:298:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (name) + 1))
data/libextractor-1.10/src/plugins/html_extractor.c:322:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  return (((e - s) == strlen (tag)) && (0 == strncasecmp (tag, s, e - s)));
data/libextractor-1.10/src/plugins/html_extractor.c:399:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  len = strlen (key);
data/libextractor-1.10/src/plugins/html_extractor.c:538:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if ((strlen (relevantTags[i]) == tag.tagEnd - tag.tagStart) &&
data/libextractor-1.10/src/plugins/html_extractor.c:569:45:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (0 == strncasecmp (tmp, "text/html", strlen ("text/html")))
data/libextractor-1.10/src/plugins/html_extractor.c:576:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                  strlen ("text/html") + 1);
data/libextractor-1.10/src/plugins/html_extractor.c:579:34:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      charset = strdup (&charset[strlen ("charset=")]);
data/libextractor-1.10/src/plugins/html_extractor.c:597:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/html_extractor.c:602:50:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                                 strlen (tmp),
data/libextractor-1.10/src/plugins/html_extractor.c:612:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (xtmp) + 1);
data/libextractor-1.10/src/plugins/html_extractor.c:640:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (xtmp) + 1);
data/libextractor-1.10/src/plugins/html_extractor.c:657:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (xtmp) + 1);
data/libextractor-1.10/src/plugins/it_extractor.c:74:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls,
data/libextractor-1.10/src/plugins/it_extractor.c:89:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen ("audio/x-mod") + 1))
data/libextractor-1.10/src/plugins/it_extractor.c:104:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen (itversion) + 1))
data/libextractor-1.10/src/plugins/it_extractor.c:116:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen (title) + 1))
data/libextractor-1.10/src/plugins/jpeg_extractor.c:116:27:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    if (-1 == (size = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/jpeg_extractor.c:141:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                strlen ("image/jpeg") + 1))
data/libextractor-1.10/src/plugins/jpeg_extractor.c:155:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                strlen (format) + 1))
data/libextractor-1.10/src/plugins/man_extractor.c:72:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
       (keyword[strlen (keyword) - 1] == '\"') )
data/libextractor-1.10/src/plugins/man_extractor.c:74:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    keyword[strlen (keyword) - 1] = '\0';
data/libextractor-1.10/src/plugins/man_extractor.c:79:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (0 == strlen (value))
data/libextractor-1.10/src/plugins/man_extractor.c:90:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
              strlen (value) + 1);
data/libextractor-1.10/src/plugins/man_extractor.c:149:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  const size_t xlen = strlen (".TH ");
data/libextractor-1.10/src/plugins/man_extractor.c:157:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (0 >= (size = ec->read (ec->cls, &data, MAX_READ)))
data/libextractor-1.10/src/plugins/midi_extractor.c:70:24:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (4 >= (iret = ec->read (ec->cls, &buf, 1024)))
data/libextractor-1.10/src/plugins/midi_extractor.c:85:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    if (0 >= (iret = ec->read (ec->cls, &buf, 16 * 1024)))
data/libextractor-1.10/src/plugins/midi_extractor.c:99:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen ("audio/midi") + 1))
data/libextractor-1.10/src/plugins/mime_extractor.c:56:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  ret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/mime_extractor.c:91:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            strlen (mime) + 1);
data/libextractor-1.10/src/plugins/mp4_extractor.c:102:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      (ret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/mpeg_extractor.c:39:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                         "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/mpeg_extractor.c:101:29:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      if (0 >= (avail = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/nsf_extractor.c:134:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                         "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/nsf_extractor.c:160:12:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  ds = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/nsfe_extractor.c:110:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                         "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/nsfe_extractor.c:123:60:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                          "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/nsfe_extractor.c:189:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls,
data/libextractor-1.10/src/plugins/nsfe_extractor.c:257:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls,
data/libextractor-1.10/src/plugins/nsfe_extractor.c:269:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    length = strlen (title) + 1;
data/libextractor-1.10/src/plugins/nsfe_extractor.c:299:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls,
data/libextractor-1.10/src/plugins/nsfe_extractor.c:308:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    left -= (strlen (album) + 1);
data/libextractor-1.10/src/plugins/nsfe_extractor.c:317:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    left -= (strlen (artist) + 1);
data/libextractor-1.10/src/plugins/nsfe_extractor.c:326:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    left -= (strlen (copyright) + 1);
data/libextractor-1.10/src/plugins/nsfe_extractor.c:356:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls,
data/libextractor-1.10/src/plugins/nsfe_extractor.c:370:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen ("audio/x-nsfe") + 1))
data/libextractor-1.10/src/plugins/nsfe_extractor.c:381:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
        ec->read (ec->cls,
data/libextractor-1.10/src/plugins/odf_extractor.c:177:24:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                       strlen (mimetype) + 1))
data/libextractor-1.10/src/plugins/odf_extractor.c:257:9:  [1] (buffer) strcpy:
  Does not check for buffer overflows when copying to destination [MS-banned]
  (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
  easily misused). Risk is low because the source is a constant character.
        strcpy (needle, "<");
data/libextractor-1.10/src/plugins/odf_extractor.c:259:9:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
        strcat (needle, ">");
data/libextractor-1.10/src/plugins/odf_extractor.c:268:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          spos += strlen (needle);
data/libextractor-1.10/src/plugins/odf_extractor.c:277:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          spos += strlen (needle);
data/libextractor-1.10/src/plugins/ogg_extractor.c:54:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  ret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/ogg_extractor.c:133:66:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                                "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/ogg_extractor.c:184:38:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if ((comments->vendor != NULL) && (strlen (comments->vendor) > 0))
data/libextractor-1.10/src/plugins/ole2_extractor.c:76:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if (0 == strlen (phrase))
data/libextractor-1.10/src/plugins/ole2_extractor.c:87:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  while ( (strlen (tmp) > 0) &&
data/libextractor-1.10/src/plugins/ole2_extractor.c:88:42:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
          (isblank ((unsigned char) tmp [strlen (tmp) - 1])) )
data/libextractor-1.10/src/plugins/ole2_extractor.c:89:10:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    tmp [strlen (tmp) - 1] = '\0';
data/libextractor-1.10/src/plugins/ole2_extractor.c:96:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
              strlen (tmp) + 1);
data/libextractor-1.10/src/plugins/ole2_extractor.c:255:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                        strlen (mm[i].v) + 1))
data/libextractor-1.10/src/plugins/ole2_extractor.c:356:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                        strlen ("SfxDocumentInfo"))) ||
data/libextractor-1.10/src/plugins/ole2_extractor.c:603:15:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      bsize = strlen (author) + strlen (filename) + 512;
data/libextractor-1.10/src/plugins/ole2_extractor.c:603:33:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      bsize = strlen (author) + strlen (filename) + 512;
data/libextractor-1.10/src/plugins/ole2_extractor.c:780:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      != (ret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/ole2_extractor.c:934:36:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (512 + 898 > (data_size = ec->read (ec->cls, &data, fsize)))
data/libextractor-1.10/src/plugins/pdf_extractor.c:95:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (0 == strlen (line))
data/libextractor-1.10/src/plugins/pdf_extractor.c:97:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if ('\n' == line[strlen (line) - 1])
data/libextractor-1.10/src/plugins/pdf_extractor.c:98:12:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      line[strlen (line) - 1] = '\0';
data/libextractor-1.10/src/plugins/pdf_extractor.c:105:14:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if (0 == strlen (psuffix))
data/libextractor-1.10/src/plugins/pdf_extractor.c:119:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen (psuffix) + 1))
data/libextractor-1.10/src/plugins/pdf_extractor.c:147:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls, &data, 4))
data/libextractor-1.10/src/plugins/pdf_extractor.c:210:15:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    got = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/png_extractor.c:139:66:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                                "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/png_extractor.c:155:70:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                                                  s, strlen (s) \
data/libextractor-1.10/src/plugins/png_extractor.c:179:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (length != ec->read (ec->cls, &ptr, length))
data/libextractor-1.10/src/plugins/png_extractor.c:227:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (length != ec->read (ec->cls, &ptr, length))
data/libextractor-1.10/src/plugins/png_extractor.c:323:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (length != ec->read (ec->cls, &ptr, length))
data/libextractor-1.10/src/plugins/png_extractor.c:358:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (length != ec->read (ec->cls, &ptr, length))
data/libextractor-1.10/src/plugins/png_extractor.c:438:21:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (length != ec->read (ec->cls, &ptr, length))
data/libextractor-1.10/src/plugins/png_extractor.c:473:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  len = strlen (PNG_HEADER);
data/libextractor-1.10/src/plugins/png_extractor.c:474:18:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (len != ec->read (ec->cls, &data, len))
data/libextractor-1.10/src/plugins/png_extractor.c:482:38:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    if (sizeof (uint32_t) + 4 != ec->read (ec->cls,
data/libextractor-1.10/src/plugins/previewopus_extractor.c:117:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  ret = ec->read (ec->cls, &data, buf_size);
data/libextractor-1.10/src/plugins/previewopus_extractor.c:1169:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (-1 == (iret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/ps_extractor.c:108:23:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (0 >= (ret = ec->read (ec->cls, &data, MAX_LINE)))
data/libextractor-1.10/src/plugins/ps_extractor.c:138:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if ( (strlen (line) < strlen (PS_HEADER)) ||
data/libextractor-1.10/src/plugins/ps_extractor.c:138:25:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
  if ( (strlen (line) < strlen (PS_HEADER)) ||
data/libextractor-1.10/src/plugins/ps_extractor.c:141:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen (PS_HEADER))) )
data/libextractor-1.10/src/plugins/ps_extractor.c:153:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen ("application/postscript") + 1))
data/libextractor-1.10/src/plugins/ps_extractor.c:166:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if ( (strlen (line) < strlen (match)) ||
data/libextractor-1.10/src/plugins/ps_extractor.c:166:29:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if ( (strlen (line) < strlen (match)) ||
data/libextractor-1.10/src/plugins/ps_extractor.c:167:40:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           (0 != strncmp (line, match, strlen (match))) )
data/libextractor-1.10/src/plugins/ps_extractor.c:171:43:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
              (0 == strncmp (next, "%%+", strlen ("%%+"))) )
data/libextractor-1.10/src/plugins/ps_extractor.c:173:36:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if (NULL == (acc = malloc (strlen (line) + strlen (next) - 1)))
data/libextractor-1.10/src/plugins/ps_extractor.c:173:52:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        if (NULL == (acc = malloc (strlen (line) + strlen (next) - 1)))
data/libextractor-1.10/src/plugins/ps_extractor.c:176:9:  [1] (buffer) strcat:
  Does not check for buffer overflows when concatenating to destination
  [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
  snprintf (warning: strncat is easily misused). Risk is low because the
  source is a constant character.
        strcat (acc, " ");
data/libextractor-1.10/src/plugins/ps_extractor.c:183:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if ( (line[strlen (line) - 1] == ')') &&
data/libextractor-1.10/src/plugins/ps_extractor.c:184:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
           (line[strlen (match)] == '(') )
data/libextractor-1.10/src/plugins/ps_extractor.c:186:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        acc = &line[strlen (match) + 1];
data/libextractor-1.10/src/plugins/ps_extractor.c:187:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        acc[strlen (acc) - 1] = '\0'; /* remove ")" */
data/libextractor-1.10/src/plugins/ps_extractor.c:191:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        acc = &line[strlen (match)];
data/libextractor-1.10/src/plugins/ps_extractor.c:195:13:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if ( (strlen (acc) > 0) &&
data/libextractor-1.10/src/plugins/ps_extractor.c:202:28:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                           strlen (acc) + 1)) )
data/libextractor-1.10/src/plugins/riff_extractor.c:81:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                         "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/riff_extractor.c:107:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (72 > (xsize = ec->read (ec->cls, &data, 72)))
data/libextractor-1.10/src/plugins/riff_extractor.c:134:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (32 > ec->read (ec->cls, &data, 32))
data/libextractor-1.10/src/plugins/rpm_extractor.c:96:30:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    if (-1 == (rret = p->ec->read (p->ec->cls, &ptr, BUF_SIZE)))
data/libextractor-1.10/src/plugins/rpm_extractor.c:311:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen ("application/x-rpm") + 1))
data/libextractor-1.10/src/plugins/rpm_extractor.c:338:30:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                             strlen (str) + 1))
data/libextractor-1.10/src/plugins/rpm_extractor.c:357:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
            if ( (strlen (tmp) > 0) &&
data/libextractor-1.10/src/plugins/rpm_extractor.c:358:48:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                 (isspace ((unsigned char) tmp[strlen (tmp) - 1])) )
data/libextractor-1.10/src/plugins/rpm_extractor.c:359:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
              tmp[strlen (tmp) - 1] = '\0';         /* eat linefeed */
data/libextractor-1.10/src/plugins/rpm_extractor.c:367:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                               strlen (tmp) + 1))
data/libextractor-1.10/src/plugins/rpm_extractor.c:390:32:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                               strlen (tmp) + 1))
data/libextractor-1.10/src/plugins/s3m_extractor.c:66:60:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                          "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/s3m_extractor.c:88:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls,
data/libextractor-1.10/src/plugins/sid_extractor.c:159:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                         "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/sid_extractor.c:184:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls,
data/libextractor-1.10/src/plugins/test_archive.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("test.html") + 1,
data/libextractor-1.10/src/plugins/test_archive.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("test.jpg") + 1,
data/libextractor-1.10/src/plugins/test_archive.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("GNU tar format") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/x-debian-package") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("bzip2") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1.0.6-4") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("i386") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:77:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Anibal Monsalve Salazar <anibal@debian.org>") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:85:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("113") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:93:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("libbz2-1.0 (= 1.0.6-4), libc6 (>= 2.4)") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:101:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("bzip2-doc") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:109:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("libbz2 (<< 0.9.5d-3)") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:117:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("utils") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:125:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("standard") + 1,
data/libextractor-1.10/src/plugins/test_deb.c:146:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("high-quality block-sorting file compressor - utilities\n"
data/libextractor-1.10/src/plugins/test_dvi.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/x-dvi") + 1,
data/libextractor-1.10/src/plugins/test_dvi.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("10") + 1,
data/libextractor-1.10/src/plugins/test_dvi.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_dvi.c:71:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Register Allocation") + 1,
data/libextractor-1.10/src/plugins/test_dvi.c:79:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (" TeX output 2005.02.06:0725") + 1,
data/libextractor-1.10/src/plugins/test_dvi.c:87:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("LaTeX with hyperref package") + 1,
data/libextractor-1.10/src/plugins/test_dvi.c:95:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_dvi.c:105:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("dvips + Distiller") + 1,
data/libextractor-1.10/src/plugins/test_dvi.c:113:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_exiv2.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("North") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("28deg 8' (18|17.585)\" ?") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:62:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("West") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:70:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("14deg 14' (22|21.713)\" ?"),
data/libextractor-1.10/src/plugins/test_exiv2.c:79:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("PENTAX Corporation") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:87:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("PENTAX Optio W30") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:95:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("top, left") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:103:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2008:06:29 16:06:10") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:111:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("0 EV") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:119:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("No, compulsory") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:127:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("18.9 mm") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:135:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("114.0 mm") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:143:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("64") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:151:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Multi-segment") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:159:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("F8") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:167:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1/320 s") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:175:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Los Verdes") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:183:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Los Verdes") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:191:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Fuerteventura") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:199:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Spain") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:207:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Spain") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:215:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Fuerteventura") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:223:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Landschaftsbild") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:231:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("ProCenter Rene Egli") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:239:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Sand") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:247:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Sport") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:255:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Urlaub") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:263:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Was?") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:271:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Wind") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:279:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Windsurfen") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:287:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Wo?") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:295:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("3") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:303:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("50") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:311:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("ES") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:319:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Optio W30 Ver 1.00") + 1,
data/libextractor-1.10/src/plugins/test_exiv2.c:327:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_flac.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("44100 Hz, 2 channels") + 1,
data/libextractor-1.10/src/plugins/test_flac.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Test Title") + 1,
data/libextractor-1.10/src/plugins/test_gif.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("image/gif") + 1,
data/libextractor-1.10/src/plugins/test_gif.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("4x4") + 1,
data/libextractor-1.10/src/plugins/test_gif.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Testing keyword extraction\n"),
data/libextractor-1.10/src/plugins/test_gstreamer.c:147:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("0:00:05.061000000") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:155:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("21") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:163:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("Zee Album") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:171:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("9999") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:179:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("All performed by Nobody") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:187:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("This Artist Contributed") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:195:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("Some title") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:204:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("A witty comment") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:212:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ASF") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:220:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("WMA Version 8") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:228:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("video/x-ms-asf") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:236:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("audio/x-wma") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:244:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("wmaversion=2") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:252:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("bitrate=96024") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:260:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("block_align=4459") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:268:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("en") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:276:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("2") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:284:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("44100") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:292:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("16") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:318:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("0:00:06.060000000") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:326:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("video/x-flv") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:334:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("video/x-vp6-flash") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:342:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("0:00:06.000000000") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:350:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("MPEG-1 Layer 3 (MP3)") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:358:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("On2 VP6/Flash") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:366:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("368x288") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:374:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("10/1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:382:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("1/1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:390:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("audio/mpeg") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:398:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("mpegversion=1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:406:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("mpegaudioversion=1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:414:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("layer=3") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:422:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("parsed=true") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:430:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("0:00:06.000000000") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:442:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("MPEG-1 Layer 3 (MP3)") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:450:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("On2 VP6/Flash") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:458:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("has-crc=false") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:466:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("channel-mode=joint-stereo") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:474:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("2") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:482:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("44100") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:490:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("96000") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:515:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("0:00:05.000000000") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:523:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("video/quicktime") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:531:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("audio/x-qdm2") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:539:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("samplesize=16") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:547:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("QDesign Music v.2") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:555:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("2001-02-19T16:45:54Z") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:563:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("QuickTime Sample Movie") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:571:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("© Apple Computer, Inc. 2001") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:579:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ISO MP4/M4A") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:587:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("en") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:595:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("2") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:603:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("22050") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:611:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("video/x-svq") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:619:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("svqversion=1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:628:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("2001-02-19T16:45:54Z") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:636:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("QuickTime Sample Movie") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:644:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("© Apple Computer, Inc. 2001") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:652:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ISO MP4/M4A") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:660:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("Sorensen video v.1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:668:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("en") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:676:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("190x240") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:684:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("12/1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:692:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("1/1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:719:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("0:00:03.143000000") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:727:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("video/x-matroska") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:735:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("video/x-indeo") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:743:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("indeoversion=4") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:751:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("filesegmenttitle") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:759:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("TITLE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:767:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ALBUM/ARTIST") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:775:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ARTIST") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:783:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("COPYRIGHT") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:791:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("COMPOSER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:799:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("GENRE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:807:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ENCODER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:815:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ISRC") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:823:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("Matroska") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:831:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("Intel Video 4") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:839:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("it") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:847:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("256x240") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:855:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("35/1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:863:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("1/1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:880:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("0:00:03.143000000") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:888:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("video/x-matroska") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:896:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("video/x-indeo") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:904:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("indeoversion=4") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:912:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("filesegmenttitle") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:920:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ALBUM/TITLE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:928:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("TITLE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:936:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("SUBTITLE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:944:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("VIDEO/TITLE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:952:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ALBUM/ARTIST") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:960:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ARTIST") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:968:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("20") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:976:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PART_OFFSET=5") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:984:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ARTIST/INSTRUMENTS=ARTIST/INSTRUMENTS") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:992:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("LEAD_PERFORMER=LEAD_PERFORMER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1000:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ARRANGER=ARRANGER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1008:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("LYRICIST=LYRICIST") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1016:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("DIRECTOR") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1024:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ASSISTANT_DIRECTOR=ASSISTANT_DIRECTOR") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1032:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("DIRECTOR_OF_PHOTOGRAPHY=DIRECTOR_OF_PHOTOGRAPHY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1040:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("SOUND_ENGINEER=SOUND_ENGINEER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1048:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ART_DIRECTOR=ART_DIRECTOR") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1056:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PRODUCTION_DESIGNER=PRODUCTION_DESIGNER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1064:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("CHOREGRAPHER=CHOREGRAPHER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1072:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("COSTUME_DESIGNER=COSTUME_DESIGNER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1080:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ACTOR=ACTOR") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1088:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("CHARACTER=CHARACTER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1096:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("WRITTEN_BY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1104:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("SCREENPLAY_BY=SCREENPLAY_BY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1112:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("EDITED_BY=EDITED_BY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1120:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PRODUCER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1128:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("COPRODUCER=COPRODUCER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1136:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("EXECUTIVE_PRODUCER=EXECUTIVE_PRODUCER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1144:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("DISTRIBUTED_BY=DISTRIBUTED_BY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1152:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("MASTERED_BY=MASTERED_BY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1160:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("MIXED_BY=MIXED_BY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1168:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("REMIXED_BY=REMIXED_BY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1176:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PRODUCTION_STUDIO=PRODUCTION_STUDIO") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1184:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("THANKS_TO=THANKS_TO") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1192:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PUBLISHER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1200:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("LABEL=LABEL") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1208:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("MOOD") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1216:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ORIGINAL_MEDIA_TYPE=ORIGINAL_MEDIA_TYPE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1224:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("CONTENT_TYPE=CONTENT_TYPE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1232:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("SUBJECT") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1240:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("SUMMARY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1248:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("SYNOPSIS=SYNOPSIS") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1256:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("INITIAL_KEY=INITIAL_KEY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1264:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PERIOD=PERIOD") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1272:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("LAW_RATING=LAW_RATING") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1280:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("COMPOSITION_LOCATION=COMPOSITION_LOCATION") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1288:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("COMPOSER_NATIONALITY=COMPOSER_NATIONALITY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1296:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PLAY_COUNTER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1304:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("RATING") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1312:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ENCODER_SETTINGS=ENCODER_SETTINGS") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1320:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("FPS") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1328:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("MEASURE=MEASURE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1336:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("TUNING=TUNING") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1344:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ISBN=ISBN") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1352:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("BARCODE=BARCODE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1360:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("CATALOG_NUMBER=CATALOG_NUMBER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1368:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("LABEL_CODE=LABEL_CODE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1376:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("LCCN=LCCN") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1384:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PURCHASE_ITEM=PURCHASE_ITEM") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1392:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PURCHASE_INFO=PURCHASE_INFO") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1400:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PURCHASE_OWNER=PURCHASE_OWNER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1408:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PURCHASE_PRICE=PURCHASE_PRICE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1416:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("PURCHASE_CURRENCY=PURCHASE_CURRENCY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1424:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ORIGINAL/TITLE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1432:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ORIGINAL/ARTIST/SORT_WITH=ORIGINAL/ARTIST/SORT_WITH") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1440:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ORIGINAL/ARTIST") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1448:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("10") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1456:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("COPYRIGHT") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1464:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("COPYRIGHT/EMAIL") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1472:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("COPYRIGHT/ADDRESS") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1480:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("1999-01-01") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1488:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen (
data/libextractor-1.10/src/plugins/test_gstreamer.c:1498:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("COMPOSER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1506:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ACCOMPANIMENT") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1514:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("CONDUCTOR") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1522:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("LYRICS") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1530:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ENCODED_BY") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1538:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("GENRE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1546:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("DESCRIPTION") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1554:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("KEYWORDS") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1562:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("RECORDING_LOCATION") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1570:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ENCODER") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1578:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("ISRC") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1586:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("LICENSE") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1594:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("Matroska") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1602:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("Intel Video 4") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1610:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("it") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1618:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("256x240") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1626:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("35/1") + 1,
data/libextractor-1.10/src/plugins/test_gstreamer.c:1634:9:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
        strlen ("1/1") + 1,
data/libextractor-1.10/src/plugins/test_html.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Christian Grothoff") + 1,
data/libextractor-1.10/src/plugins/test_html.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Homepage of Christian Grothoff") + 1,
data/libextractor-1.10/src/plugins/test_html.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Christian Grothoff") + 1,
data/libextractor-1.10/src/plugins/test_html.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Christian,Grothoff") + 1,
data/libextractor-1.10/src/plugins/test_html.c:77:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Welcome to Christian Grothoff") + 1,
data/libextractor-1.10/src/plugins/test_html.c:85:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("en") + 1,
data/libextractor-1.10/src/plugins/test_html.c:93:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Christian Grothoff") + 1,
data/libextractor-1.10/src/plugins/test_html.c:101:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2000-08-20") + 1,
data/libextractor-1.10/src/plugins/test_html.c:109:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("(C) 2000 by Christian Grothoff") + 1,
data/libextractor-1.10/src/plugins/test_it.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/x-mod") + 1,
data/libextractor-1.10/src/plugins/test_it.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Dawn") + 1,
data/libextractor-1.10/src/plugins/test_it.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1.2") + 1,
data/libextractor-1.10/src/plugins/test_jpeg.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("image/jpeg") + 1,
data/libextractor-1.10/src/plugins/test_jpeg.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("3x3") + 1,
data/libextractor-1.10/src/plugins/test_jpeg.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("(C) 2001 by Christian Grothoff, using gimp 1.2 1"),
data/libextractor-1.10/src/plugins/test_man.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("EXTRACT") + 1,
data/libextractor-1.10/src/plugins/test_man.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (_ ("Commands")) + 1,
data/libextractor-1.10/src/plugins/test_man.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Aug 7, 2012") + 1,
data/libextractor-1.10/src/plugins/test_man.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (_ ("libextractor 0.7.0")) + 1,
data/libextractor-1.10/src/plugins/test_midi.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/midi") + 1,
data/libextractor-1.10/src/plugins/test_midi.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("(c) 2012 d-o-o"),
data/libextractor-1.10/src/plugins/test_midi.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Tage wie diese T2"),
data/libextractor-1.10/src/plugins/test_midi.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("XFhd:::Rock:8 Beat:1:m1:-:-:-:-:DD"),
data/libextractor-1.10/src/plugins/test_midi.c:77:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("XFln:L1:Tage wie diese:von Holst:von Holst:-:Toten Hosen:DD"),
data/libextractor-1.10/src/plugins/test_mime.c:55:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/ogg") + 1,
data/libextractor-1.10/src/plugins/test_mime.c:58:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/ogg") + 1,
data/libextractor-1.10/src/plugins/test_mime.c:70:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/ogg") + 1,
data/libextractor-1.10/src/plugins/test_mime.c:81:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("image/gif") + 1,
data/libextractor-1.10/src/plugins/test_mpeg.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("video/mpeg") + 1,
data/libextractor-1.10/src/plugins/test_mpeg.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("320x208") + 1,
data/libextractor-1.10/src/plugins/test_mpeg.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("MPEG1") + 1,
data/libextractor-1.10/src/plugins/test_mpeg.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("00:00:03 (22 frames)") + 1,
data/libextractor-1.10/src/plugins/test_mpeg.c:80:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("video/mpeg") + 1,
data/libextractor-1.10/src/plugins/test_mpeg.c:88:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("320x240") + 1,
data/libextractor-1.10/src/plugins/test_mpeg.c:96:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("MPEG1") + 1,
data/libextractor-1.10/src/plugins/test_nsf.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/x-nsf") + 1,
data/libextractor-1.10/src/plugins/test_nsf.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1") + 1,
data/libextractor-1.10/src/plugins/test_nsf.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("26") + 1,
data/libextractor-1.10/src/plugins/test_nsf.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1") + 1,
data/libextractor-1.10/src/plugins/test_nsf.c:77:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Arkanoid II - Revenge of Doh") + 1,
data/libextractor-1.10/src/plugins/test_nsf.c:85:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("<?>") + 1,
data/libextractor-1.10/src/plugins/test_nsf.c:93:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1988 Taito") + 1,
data/libextractor-1.10/src/plugins/test_nsf.c:101:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("NTSC") + 1,
data/libextractor-1.10/src/plugins/test_nsfe.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/x-nsfe") + 1,
data/libextractor-1.10/src/plugins/test_nsfe.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2") + 1,
data/libextractor-1.10/src/plugins/test_nsfe.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("0") + 1,
data/libextractor-1.10/src/plugins/test_nsfe.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("PAL") + 1,
data/libextractor-1.10/src/plugins/test_nsfe.c:77:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Adventures of Dr. Franken,The") + 1,
data/libextractor-1.10/src/plugins/test_nsfe.c:85:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Mark Cooksey") + 1,
data/libextractor-1.10/src/plugins/test_nsfe.c:93:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1993 Motivetime LTD.") + 1,
data/libextractor-1.10/src/plugins/test_nsfe.c:101:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Gil_Galad") + 1,
data/libextractor-1.10/src/plugins/test_nsfe.c:109:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Bach: Prelude & Fugue In C Minor") + 1,
data/libextractor-1.10/src/plugins/test_nsfe.c:117:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Beethoven: Moonlight Sonata") + 1,
data/libextractor-1.10/src/plugins/test_odf.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/vnd.oasis.opendocument.text") + 1,
data/libextractor-1.10/src/plugins/test_odf.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_odf.c:62:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1") + 1,
data/libextractor-1.10/src/plugins/test_odf.c:70:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2005-11-22T11:44:00") + 1,
data/libextractor-1.10/src/plugins/test_odf.c:78:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2010-06-09T13:09:34") + 1,
data/libextractor-1.10/src/plugins/test_odf.c:86:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Anhang 1: Profile der beteiligten Wissenschaftler") + 1,
data/libextractor-1.10/src/plugins/test_ogg.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/ogg") + 1,
data/libextractor-1.10/src/plugins/test_ogg.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Xiphophorus libVorbis I 20010813") + 1,
data/libextractor-1.10/src/plugins/test_ogg.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("xoc_SMW_06_courseclear") + 1,
data/libextractor-1.10/src/plugins/test_ogg.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("XOC") + 1,
data/libextractor-1.10/src/plugins/test_ogg.c:77:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("6") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Nils Durner") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2005-03-21T06:11:12Z") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:71:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("ole ole2 eole2extractor") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:79:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("GNU libextractor") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:87:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Testcase for the ole2 extractor") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:95:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Nils Durner") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:103:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2005-03-21T06:10:19Z") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:111:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:123:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Christian Grothoff") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:131:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2004-09-24T02:54:31Z") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:139:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("The comments") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:147:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("The Keywords") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:155:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("The Subject") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:163:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("The Title") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:171:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Christian Grothoff") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:179:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2004-09-24T02:53:15Z") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:187:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("4") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:195:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("The Title") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:203:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("The Subject") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:211:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("The comments") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:219:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("The Keywords") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:231:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("U.S. English") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:239:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("default") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:247:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2003-02-03T11:18:00Z") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:255:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:265:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("22090") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:273:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("MKhan") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:281:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:289:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("3875") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:297:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2003-02-03T09:31:00Z") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:305:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("4") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:313:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/vnd.ms-files") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:321:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Microsoft Word 8.0") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:329:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Normal.dot") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:337:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("184") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:345:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("44") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:353:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:363:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:373:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:383:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:393:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:402:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:412:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:422:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:432:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:442:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ole2.c:456:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("JV") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:464:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("JV") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:472:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2002-03-20T21:26:28Z") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:480:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/vnd.ms-files") + 1,
data/libextractor-1.10/src/plugins/test_ole2.c:488:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Microsoft Excel") + 1,
data/libextractor-1.10/src/plugins/test_png.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("image/png") + 1,
data/libextractor-1.10/src/plugins/test_png.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("4x4") + 1,
data/libextractor-1.10/src/plugins/test_png.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Testing keyword extraction\n") + 1,
data/libextractor-1.10/src/plugins/test_png.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("dc6c58c971715e8043baef058b675eec") + 1,
data/libextractor-1.10/src/plugins/test_ps.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/postscript") + 1,
data/libextractor-1.10/src/plugins/test_ps.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("A Quick Introduction to Bloom Filters") + 1,
data/libextractor-1.10/src/plugins/test_ps.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("dvips(k) 5.92b Copyright 2002 Radical Eye Software") + 1,
data/libextractor-1.10/src/plugins/test_ps.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1") + 1,
data/libextractor-1.10/src/plugins/test_ps.c:77:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Ascend") + 1,
data/libextractor-1.10/src/plugins/test_ps.c:88:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/postscript") + 1,
data/libextractor-1.10/src/plugins/test_ps.c:96:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ps.c:106:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (
data/libextractor-1.10/src/plugins/test_ps.c:116:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Greg Wallace") + 1,
data/libextractor-1.10/src/plugins/test_ps.c:124:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Tue, 17 Dec 91 14:49:50 PST") + 1,
data/libextractor-1.10/src/plugins/test_riff.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("video/x-msvideo") + 1,
data/libextractor-1.10/src/plugins/test_riff.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("codec: cvid, 35 fps, 3143 ms") + 1,
data/libextractor-1.10/src/plugins/test_riff.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("256x240") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:64:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/x-rpm") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:72:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("libtool") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:80:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1.5") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:88:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("6") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:96:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (SUMMARY) + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:104:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen (DESCRIPTION) + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:112:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Thu Oct  2 09:44:33 2003") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:120:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("bullwinkle.devel.redhat.com") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:128:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2623621") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:136:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Red Hat Linux") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:144:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Red Hat, Inc.") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:152:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("GPL") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:160:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:168:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Development/Tools") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:176:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("http://www.gnu.org/software/libtool/") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:184:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("linux") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:192:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("ia64") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:200:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("libtool") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:208:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("/bin/sh") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:216:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("/bin/sh") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:224:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("/bin/sh") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:232:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("/sbin/install-info") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:240:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("autoconf") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:248:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("automake") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:256:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("libtool-libs") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:264:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("m4") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:272:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("mktemp") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:280:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("perl") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:288:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("rpmlib(CompressedFileNames)") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:296:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("rpmlib(PayloadFilesHavePrefix)") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:304:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("rpmlib(VersionedDependencies)") + 1,
data/libextractor-1.10/src/plugins/test_rpm.c:312:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("ia64-redhat-linux-gnu") + 1,
data/libextractor-1.10/src/plugins/test_s3m.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/x-s3m") + 1,
data/libextractor-1.10/src/plugins/test_s3m.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("UnreaL ][ / PM ") + 1,
data/libextractor-1.10/src/plugins/test_sid.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/prs.sid") + 1,
data/libextractor-1.10/src/plugins/test_sid.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2") + 1,
data/libextractor-1.10/src/plugins/test_sid.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("9") + 1,
data/libextractor-1.10/src/plugins/test_sid.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("4") + 1,
data/libextractor-1.10/src/plugins/test_sid.c:77:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Wizball") + 1,
data/libextractor-1.10/src/plugins/test_sid.c:85:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Martin Galway") + 1,
data/libextractor-1.10/src/plugins/test_sid.c:93:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1987 Ocean") + 1,
data/libextractor-1.10/src/plugins/test_sid.c:101:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("PAL") + 1,
data/libextractor-1.10/src/plugins/test_sid.c:109:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("MOS6581") + 1,
data/libextractor-1.10/src/plugins/test_thumbnailgtk.c:46:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1600x1200") + 1,
data/libextractor-1.10/src/plugins/test_tiff.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("image/tiff") + 1,
data/libextractor-1.10/src/plugins/test_tiff.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Anders Espersen") + 1,
data/libextractor-1.10/src/plugins/test_tiff.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("2012:05:15 10:51:47") + 1,
data/libextractor-1.10/src/plugins/test_tiff.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("© Anders Espersen") + 1,
data/libextractor-1.10/src/plugins/test_tiff.c:77:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Hasselblad") + 1,
data/libextractor-1.10/src/plugins/test_tiff.c:85:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Hasselblad H4D-31") + 1,
data/libextractor-1.10/src/plugins/test_tiff.c:93:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("Adobe Photoshop CS5 Macintosh") + 1,
data/libextractor-1.10/src/plugins/test_tiff.c:101:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("4872x6496") + 1,
data/libextractor-1.10/src/plugins/test_wav.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/x-wav") + 1,
data/libextractor-1.10/src/plugins/test_wav.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1000 ms, 48000 Hz, mono") + 1,
data/libextractor-1.10/src/plugins/test_wav.c:64:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/x-wav") + 1,
data/libextractor-1.10/src/plugins/test_wav.c:72:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("525 ms, 22050 Hz, mono") + 1,
data/libextractor-1.10/src/plugins/test_xm.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("audio/x-xm") + 1,
data/libextractor-1.10/src/plugins/test_xm.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("1.4") + 1,
data/libextractor-1.10/src/plugins/test_xm.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("diesel") + 1,
data/libextractor-1.10/src/plugins/test_xm.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("FastTracker v2.00") + 1,
data/libextractor-1.10/src/plugins/test_zip.c:45:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("application/zip") + 1,
data/libextractor-1.10/src/plugins/test_zip.c:53:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("global zipfile comment") + 1,
data/libextractor-1.10/src/plugins/test_zip.c:61:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("ChangeLog") + 1,
data/libextractor-1.10/src/plugins/test_zip.c:69:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("test.png") + 1,
data/libextractor-1.10/src/plugins/test_zip.c:77:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("comment for test.png") + 1,
data/libextractor-1.10/src/plugins/test_zip.c:85:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("test.jpg") + 1,
data/libextractor-1.10/src/plugins/test_zip.c:93:7:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      strlen ("comment for test.jpg") + 1,
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:130:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  ret = ec->read (ec->cls, &data, buf_size);
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:474:26:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    if (0 >= (iret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/thumbnailffmpeg_extractor.c:810:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (-1 == (iret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/thumbnailgtk_extractor.c:77:25:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  if (-1 == (iret = ec->read (ec->cls,
data/libextractor-1.10/src/plugins/thumbnailgtk_extractor.c:85:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    strlen ("image/")))
data/libextractor-1.10/src/plugins/thumbnailgtk_extractor.c:102:16:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
    iret = ec->read (ec->cls, &data, size - off);
data/libextractor-1.10/src/plugins/thumbnailgtk_extractor.c:140:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen (format) + 1))
data/libextractor-1.10/src/plugins/tiff_extractor.c:63:13:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
  ret = ec->read (ec->cls, &ptr, size);
data/libextractor-1.10/src/plugins/tiff_extractor.c:208:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    strlen (meta) + 1)) )
data/libextractor-1.10/src/plugins/tiff_extractor.c:227:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                  strlen (format) + 1))
data/libextractor-1.10/src/plugins/tiff_extractor.c:236:19:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                  strlen ("image/tiff") + 1))
data/libextractor-1.10/src/plugins/wav_extractor.c:87:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls,  &data, 44))
data/libextractor-1.10/src/plugins/wav_extractor.c:132:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen (scratch) + 1))
data/libextractor-1.10/src/plugins/wav_extractor.c:140:22:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                     strlen ("audio/x-wav") + 1))
data/libextractor-1.10/src/plugins/xm_extractor.c:52:59:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                                         "text/plain", s, strlen (s) \
data/libextractor-1.10/src/plugins/xm_extractor.c:78:11:  [1] (buffer) read:
  Check buffer boundaries if used in a loop including recursive loops
  (CWE-120, CWE-20).
      ec->read (ec->cls,
data/libextractor-1.10/src/plugins/zip_extractor.c:71:17:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                strlen ("application/zip") + 1))
data/libextractor-1.10/src/plugins/zip_extractor.c:78:16:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
    if ( (0 != strlen (fcomment)) &&
data/libextractor-1.10/src/plugins/zip_extractor.c:86:21:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                    strlen (fcomment) + 1)))
data/libextractor-1.10/src/plugins/zip_extractor.c:100:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if ( (0 != strlen (fname)) &&
data/libextractor-1.10/src/plugins/zip_extractor.c:108:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (fname) + 1)))
data/libextractor-1.10/src/plugins/zip_extractor.c:110:18:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
      if ( (0 != strlen (fcomment)) &&
data/libextractor-1.10/src/plugins/zip_extractor.c:118:23:  [1] (buffer) strlen:
  Does not handle strings that are not \0-terminated; if given one it may
  perform an over-read (it could cause a crash if unprotected) (CWE-126).
                      strlen (fcomment) + 1)))

ANALYSIS SUMMARY:

Hits = 1024
Lines analyzed = 35164 in approximately 1.08 seconds (32412 lines/second)
Physical Source Lines of Code (SLOC) = 22710
Hits@level = [0] 250 [1] 732 [2] 220 [3]  19 [4]  49 [5]   4
Hits@level+ = [0+] 1274 [1+] 1024 [2+] 292 [3+]  72 [4+]  53 [5+]   4
Hits/KSLOC@level+ = [0+] 56.0986 [1+] 45.0903 [2+] 12.8578 [3+] 3.17041 [4+] 2.33377 [5+] 0.176134
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.