Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/libhtml-template-pro-perl-0.9510/pstring.h Examining data/libhtml-template-pro-perl-0.9510/pabidecl.h Examining data/libhtml-template-pro-perl-0.9510/pstrutils.h Examining data/libhtml-template-pro-perl-0.9510/pabstract.h Examining data/libhtml-template-pro-perl-0.9510/pconst.h Examining data/libhtml-template-pro-perl-0.9510/optint.h Examining data/libhtml-template-pro-perl-0.9510/tmplpro_version.c Examining data/libhtml-template-pro-perl-0.9510/tmpllog.c Examining data/libhtml-template-pro-perl-0.9510/expr.c Examining data/libhtml-template-pro-perl-0.9510/pbuffer.c Examining data/libhtml-template-pro-perl-0.9510/pparam.h Examining data/libhtml-template-pro-perl-0.9510/exprtool.h Examining data/libhtml-template-pro-perl-0.9510/procore.c Examining data/libhtml-template-pro-perl-0.9510/tmpllog.h Examining data/libhtml-template-pro-perl-0.9510/calc.h Examining data/libhtml-template-pro-perl-0.9510/tmplpro.h Examining data/libhtml-template-pro-perl-0.9510/proscope.h Examining data/libhtml-template-pro-perl-0.9510/parse_expr.h Examining data/libhtml-template-pro-perl-0.9510/expr_iface.c Examining data/libhtml-template-pro-perl-0.9510/procore.h Examining data/libhtml-template-pro-perl-0.9510/pbuffer.h Examining data/libhtml-template-pro-perl-0.9510/exprval.h Examining data/libhtml-template-pro-perl-0.9510/ppport.h Examining data/libhtml-template-pro-perl-0.9510/exprpstr.h Examining data/libhtml-template-pro-perl-0.9510/proparam.c Examining data/libhtml-template-pro-perl-0.9510/loadfile.h Examining data/libhtml-template-pro-perl-0.9510/optint.c Examining data/libhtml-template-pro-perl-0.9510/pmiscdef.h Examining data/libhtml-template-pro-perl-0.9510/proparam.h Examining data/libhtml-template-pro-perl-0.9510/tagstack.h Examining data/libhtml-template-pro-perl-0.9510/prostate.h Examining data/libhtml-template-pro-perl-0.9510/provalue.h Examining data/libhtml-template-pro-perl-0.9510/exprtype.h FINAL RESULTS: data/libhtml-template-pro-perl-0.9510/expr.c:816:21: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. # define YYFPRINTF fprintf data/libhtml-template-pro-perl-0.9510/pmiscdef.h:10:11: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. # define snprintf _snprintf data/libhtml-template-pro-perl-0.9510/pmiscdef.h:10:20: [4] (format) _snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. # define snprintf _snprintf data/libhtml-template-pro-perl-0.9510/pmiscdef.h:29:23: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). # define strdup(str) strcpy(malloc(strlen(str) + 1), str) data/libhtml-template-pro-perl-0.9510/tmpllog.c:21:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, fmt, vl); data/libhtml-template-pro-perl-0.9510/tmpllog.c:27:5: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(tmpl_log_stream, fmt, vl); data/libhtml-template-pro-perl-0.9510/expr.c:1128:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char const *yyarg[YYERROR_VERBOSE_ARGS_MAXIMUM]; data/libhtml-template-pro-perl-0.9510/expr.c:1145:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char yyformat[sizeof yyunexpected data/libhtml-template-pro-perl-0.9510/expr.c:1342:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char yymsgbuf[128]; data/libhtml-template-pro-perl-0.9510/pparam.h:113:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char loopvarbuf[20]; /* for snprintf %d */ data/libhtml-template-pro-perl-0.9510/procore.c:704:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). file_p = fopen(logfilename, "a"); data/libhtml-template-pro-perl-0.9510/expr.c:1009:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). # define yystrlen strlen data/libhtml-template-pro-perl-0.9510/expr_iface.c:35:42: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (NULL!=sval) p->val.strval.endnext+=strlen(sval); data/libhtml-template-pro-perl-0.9510/expr_iface.c:65:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p->val.strval.endnext=p->val.strval.begin+strlen(p->val.strval.begin); data/libhtml-template-pro-perl-0.9510/pmiscdef.h:29:37: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). # define strdup(str) strcpy(malloc(strlen(str) + 1), str) data/libhtml-template-pro-perl-0.9510/ppport.h:726:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). STRLEN len = strlen(radix); ANALYSIS SUMMARY: Hits = 16 Lines analyzed = 8884 in approximately 0.36 seconds (24532 lines/second) Physical Source Lines of Code (SLOC) = 6012 Hits@level = [0] 1 [1] 5 [2] 5 [3] 0 [4] 6 [5] 0 Hits@level+ = [0+] 17 [1+] 16 [2+] 11 [3+] 6 [4+] 6 [5+] 0 Hits/KSLOC@level+ = [0+] 2.82768 [1+] 2.66134 [2+] 1.82967 [3+] 0.998004 [4+] 0.998004 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.