Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/libqglviewer-2.6.3+dfsg2/designerPlugin/qglviewerPlugin.cpp Examining data/libqglviewer-2.6.3+dfsg2/designerPlugin/qglviewerPlugin.h Examining data/libqglviewer-2.6.3+dfsg2/designerPlugin/qglviewerPlugin.Qt3.cpp Examining data/libqglviewer-2.6.3+dfsg2/designerPlugin/qglviewerPlugin.Qt3.h Examining data/libqglviewer-2.6.3+dfsg2/examples/animation/animation.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/animation/animation.h Examining data/libqglviewer-2.6.3+dfsg2/examples/animation/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/callback/callback.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/callback/callback.h Examining data/libqglviewer-2.6.3+dfsg2/examples/callback/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/cameraLight/cameraLight.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/cameraLight/cameraLight.h Examining data/libqglviewer-2.6.3+dfsg2/examples/cameraLight/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/clippingPlane/clippingPlane.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/clippingPlane/clippingPlane.h Examining data/libqglviewer-2.6.3+dfsg2/examples/clippingPlane/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/constrainedCamera/constrainedCamera.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/constrainedCamera/constrainedCamera.h Examining data/libqglviewer-2.6.3+dfsg2/examples/constrainedCamera/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/constrainedFrame/constrainedFrame.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/constrainedFrame/constrainedFrame.h Examining data/libqglviewer-2.6.3+dfsg2/examples/constrainedFrame/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/3dsViewer/3dsViewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/3dsViewer/3dsViewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/3dsViewer/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/AI/ai.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/agoraViewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/agoraViewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/board.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/board.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/case.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/case.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/computerPlayer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/computerPlayer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/move.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/move.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/undo.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/undo.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/anaglyph/anaglyph.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/anaglyph/anaglyph.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/anaglyph/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/backgroundImage/backgroundImage.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/backgroundImage/backgroundImage.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/backgroundImage/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/AI/ai.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/blobWarViewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/blobWarViewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/board.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/board.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/boardDraw.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/computerPlayer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/computerPlayer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/move.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/move.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/undo.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/undo.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/cornerAxis/cornerAxis.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/cornerAxis/cornerAxis.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/cornerAxis/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/board.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/board.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/drawer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/drawer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/dvonnviewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/dvonnviewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/dvonnwindowimpl.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/dvonnwindowimpl.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/game.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/game.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/dvonn/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/eventRecorder/eventRecorder.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/eventRecorder/eventRecorder.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/eventRecorder/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/eventRecorder/viewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/eventRecorder/viewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/quarto/glview.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/quarto/glview.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/quarto/jeu.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/quarto/jeu.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/quarto/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/quarto/piece.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/quarto/piece.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/quarto/quarto.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/quarto/quarto.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/quadtree.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/quadtree.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/sky.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/sky.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/terrain.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/terrain.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/tree.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/tree.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/viewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/viewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/water.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/water.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/textureViewer/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/textureViewer/textureViewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/textureViewer/textureViewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/thumbnail/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/thumbnail/thumbnail.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/contribs/thumbnail/thumbnail.h Examining data/libqglviewer-2.6.3+dfsg2/examples/drawLight/drawLight.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/drawLight/drawLight.h Examining data/libqglviewer-2.6.3+dfsg2/examples/drawLight/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/fastDraw/fastDraw.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/fastDraw/fastDraw.h Examining data/libqglviewer-2.6.3+dfsg2/examples/fastDraw/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/frameTransform/frameTransform.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/frameTransform/frameTransform.h Examining data/libqglviewer-2.6.3+dfsg2/examples/frameTransform/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/frustumCulling/box.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/frustumCulling/box.h Examining data/libqglviewer-2.6.3+dfsg2/examples/frustumCulling/cullingCamera.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/frustumCulling/cullingCamera.h Examining data/libqglviewer-2.6.3+dfsg2/examples/frustumCulling/frustumCulling.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/frustumCulling/frustumCulling.h Examining data/libqglviewer-2.6.3+dfsg2/examples/frustumCulling/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/interface/interface.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/interface/interface.h Examining data/libqglviewer-2.6.3+dfsg2/examples/interface/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/keyboardAndMouse/keyboardAndMouse.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/keyboardAndMouse/keyboardAndMouse.h Examining data/libqglviewer-2.6.3+dfsg2/examples/keyboardAndMouse/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/keyFrames/keyFrames.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/keyFrames/keyFrames.h Examining data/libqglviewer-2.6.3+dfsg2/examples/keyFrames/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/luxo/luxo.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/luxo/luxo.h Examining data/libqglviewer-2.6.3+dfsg2/examples/luxo/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/manipulatedFrame/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/manipulatedFrame/manipulatedFrame.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/manipulatedFrame/manipulatedFrame.h Examining data/libqglviewer-2.6.3+dfsg2/examples/mouseGrabber/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/mouseGrabber/mouseGrabber.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/mouseGrabber/mouseGrabber.h Examining data/libqglviewer-2.6.3+dfsg2/examples/multiSelect/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/multiSelect/manipulatedFrameSetConstraint.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/multiSelect/manipulatedFrameSetConstraint.h Examining data/libqglviewer-2.6.3+dfsg2/examples/multiSelect/multiSelect.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/multiSelect/multiSelect.h Examining data/libqglviewer-2.6.3+dfsg2/examples/multiSelect/object.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/multiSelect/object.h Examining data/libqglviewer-2.6.3+dfsg2/examples/multiView/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/multiView/multiView.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/multiView/multiView.h Examining data/libqglviewer-2.6.3+dfsg2/examples/overpainting/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/overpainting/viewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/overpainting/viewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/screenCoordSystem/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/screenCoordSystem/screenCoordSystem.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/screenCoordSystem/screenCoordSystem.h Examining data/libqglviewer-2.6.3+dfsg2/examples/select/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/select/select.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/select/select.h Examining data/libqglviewer-2.6.3+dfsg2/examples/simpleViewer/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/simpleViewer/simpleViewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/simpleViewer/simpleViewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/standardCamera/cameraViewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/standardCamera/cameraViewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/standardCamera/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/standardCamera/standardCamera.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/standardCamera/standardCamera.h Examining data/libqglviewer-2.6.3+dfsg2/examples/standardCamera/viewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/standardCamera/viewer.h Examining data/libqglviewer-2.6.3+dfsg2/examples/stereoViewer/main.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/stereoViewer/stereoViewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/examples/stereoViewer/stereoViewer.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/camera.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/camera.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/config.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/constraint.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/constraint.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/domUtils.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/frame.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/frame.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/keyFrameInterpolator.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/keyFrameInterpolator.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/manipulatedCameraFrame.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/manipulatedCameraFrame.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/manipulatedFrame.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/manipulatedFrame.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/mouseGrabber.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/mouseGrabber.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/qglviewer.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/quaternion.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/quaternion.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/saveSnapshot.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/vec.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/vec.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/AxisAlignedBox.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/BackFaceCullingOptimizer.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/BSPSortMethod.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/EPSExporter.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Exporter.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Exporter.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/FIGExporter.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/gpc.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/gpc.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/NVector3.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/NVector3.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Optimizer.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/ParserGL.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/ParserGL.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Primitive.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Primitive.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/PrimitivePositioning.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/PrimitivePositioning.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/SortMethod.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/TopologicalSortMethod.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Types.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Vector2.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Vector2.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Vector3.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Vector3.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/VisibilityOptimizer.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/VRender.cpp Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/VRender.h Examining data/libqglviewer-2.6.3+dfsg2/QGLViewer/qglviewer.h FINAL RESULTS: data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/VisibilityOptimizer.cpp:118:41: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stdout,buff); data/libqglviewer-2.6.3+dfsg2/QGLViewer/saveSnapshot.cpp:561:9: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. count.sprintf("%.04d", snapshotCounter_++); data/libqglviewer-2.6.3+dfsg2/QGLViewer/saveSnapshot.cpp:571:11: [4] (format) sprintf: Potential format string problem (CWE-134). Make format string constant. count.sprintf("%.04d", snapshotCounter_++); data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/terrain.cpp:196:3: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. srand( time(NULL) ); data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/Exporter.cpp:67:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!file.open(QIODevice::WriteOnly | QIODevice::Text)) { data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/VisibilityOptimizer.cpp:116:41: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buff[500] ; data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/VisibilityOptimizer.cpp:117:41: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buff,"Left: % 6ld - Culled: % 6ld", pindex,(long)nb_culled) ; data/libqglviewer-2.6.3+dfsg2/QGLViewer/qglviewer.cpp:3427:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (f.open(QIODevice::WriteOnly)) data/libqglviewer-2.6.3+dfsg2/QGLViewer/qglviewer.cpp:3481:8: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (f.open(QIODevice::ReadOnly)) data/libqglviewer-2.6.3+dfsg2/examples/contribs/agora/Viewer/undo.cpp:86:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[10000]; data/libqglviewer-2.6.3+dfsg2/examples/contribs/blobWar/Viewer/undo.cpp:86:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[10000]; data/libqglviewer-2.6.3+dfsg2/examples/contribs/eventRecorder/eventRecorder.cpp:313:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (f.open(IO_WriteOnly)) data/libqglviewer-2.6.3+dfsg2/examples/contribs/eventRecorder/eventRecorder.cpp:353:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (f.open(IO_ReadOnly) == true) data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/terrain.cpp:38:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!pFile.open(QIODevice::ReadOnly)) data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/terrain.cpp:40:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!pFile.open(IO_ReadOnly)) data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/terrain.cpp:66:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!pFile.open(QIODevice::WriteOnly)) data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/terrain.cpp:68:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (!pFile.open(IO_WriteOnly)) data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/terrain.cpp:269:31: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. SetHeightAtPoint( ( unsigned char )tempBuffer[( z*sizeHeightMap )+x], x, z ); data/libqglviewer-2.6.3+dfsg2/QGLViewer/VRender/VisibilityOptimizer.cpp:120:64: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for(unsigned int j=0;j<strlen(buff);++j) data/libqglviewer-2.6.3+dfsg2/examples/contribs/terrain/viewer.cpp:315:28: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cEndExtensions= szSupExt+strlen( szSupExt ); ANALYSIS SUMMARY: Hits = 20 Lines analyzed = 45502 in approximately 1.64 seconds (27800 lines/second) Physical Source Lines of Code (SLOC) = 26562 Hits@level = [0] 41 [1] 2 [2] 14 [3] 1 [4] 3 [5] 0 Hits@level+ = [0+] 61 [1+] 20 [2+] 18 [3+] 4 [4+] 3 [5+] 0 Hits/KSLOC@level+ = [0+] 2.29651 [1+] 0.752955 [2+] 0.67766 [3+] 0.150591 [4+] 0.112943 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.