Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/mathgl-2.4.4/src/other.cpp
Examining data/mathgl-2.4.4/src/def_font.cc
Examining data/mathgl-2.4.4/src/font.cpp
Examining data/mathgl-2.4.4/src/s_hull/s_hull_pro.h
Examining data/mathgl-2.4.4/src/s_hull/s_hull_pro.cpp
Examining data/mathgl-2.4.4/src/eval.cpp
Examining data/mathgl-2.4.4/src/data_png.cpp
Examining data/mathgl-2.4.4/src/obj.cpp
Examining data/mathgl-2.4.4/src/complex_io.cpp
Examining data/mathgl-2.4.4/src/cont.hpp
Examining data/mathgl-2.4.4/src/prc/oPRCFile.cc
Examining data/mathgl-2.4.4/src/prc/writePRC.h
Examining data/mathgl-2.4.4/src/prc/PRCbitStream.cc
Examining data/mathgl-2.4.4/src/prc/PRCbitStream.h
Examining data/mathgl-2.4.4/src/prc/writePRC.cc
Examining data/mathgl-2.4.4/src/prc/PRC.h
Examining data/mathgl-2.4.4/src/prc/PRCdouble.h
Examining data/mathgl-2.4.4/src/prc/oPRCFile.h
Examining data/mathgl-2.4.4/src/prc/PRCdouble.cc
Examining data/mathgl-2.4.4/src/canvas_cf.cpp
Examining data/mathgl-2.4.4/src/prc.cpp
Examining data/mathgl-2.4.4/src/evalc.cpp
Examining data/mathgl-2.4.4/src/base_cf.cpp
Examining data/mathgl-2.4.4/src/surf.cpp
Examining data/mathgl-2.4.4/src/fft.cpp
Examining data/mathgl-2.4.4/src/prim.cpp
Examining data/mathgl-2.4.4/src/c2mdual.c
Examining data/mathgl-2.4.4/src/data_gr.cpp
Examining data/mathgl-2.4.4/src/vect.cpp
Examining data/mathgl-2.4.4/src/pixel_gen.cpp
Examining data/mathgl-2.4.4/src/tex_table.cc
Examining data/mathgl-2.4.4/src/plot.cpp
Examining data/mathgl-2.4.4/src/data_io.cpp
Examining data/mathgl-2.4.4/src/pixel_pix.cpp
Examining data/mathgl-2.4.4/src/volume.cpp
Examining data/mathgl-2.4.4/src/window.cpp
Examining data/mathgl-2.4.4/src/exec_prm.cpp
Examining data/mathgl-2.4.4/src/export_3d.cpp
Examining data/mathgl-2.4.4/src/export_2d.cpp
Examining data/mathgl-2.4.4/src/complex_ex.cpp
Examining data/mathgl-2.4.4/src/exec_dat.cpp
Examining data/mathgl-2.4.4/src/exec_gr.cpp
Examining data/mathgl-2.4.4/src/evalp.cpp
Examining data/mathgl-2.4.4/src/complex.cpp
Examining data/mathgl-2.4.4/src/interp.hpp
Examining data/mathgl-2.4.4/src/pde.cpp
Examining data/mathgl-2.4.4/src/crust.cpp
Examining data/mathgl-2.4.4/src/data.cpp
Examining data/mathgl-2.4.4/src/export.cpp
Examining data/mathgl-2.4.4/src/axis.cpp
Examining data/mathgl-2.4.4/src/canvas.cpp
Examining data/mathgl-2.4.4/src/opengl.cpp
Examining data/mathgl-2.4.4/src/pixel.cpp
Examining data/mathgl-2.4.4/src/data_ex.cpp
Examining data/mathgl-2.4.4/src/exec_set.cpp
Examining data/mathgl-2.4.4/src/addon.cpp
Examining data/mathgl-2.4.4/src/fractal.cpp
Examining data/mathgl-2.4.4/src/mpi.cpp
Examining data/mathgl-2.4.4/src/fit.cpp
Examining data/mathgl-2.4.4/src/parser.cpp
Examining data/mathgl-2.4.4/src/base.cpp
Examining data/mathgl-2.4.4/src/cont.cpp
Examining data/mathgl-2.4.4/include/mgl2/abstract.h
Examining data/mathgl-2.4.4/include/mgl2/vect.h
Examining data/mathgl-2.4.4/include/mgl2/plot.h
Examining data/mathgl-2.4.4/include/mgl2/wnd.h
Examining data/mathgl-2.4.4/include/mgl2/wx.h
Examining data/mathgl-2.4.4/include/mgl2/mgl_cf.h
Examining data/mathgl-2.4.4/include/mgl2/Fl_MathGL.h
Examining data/mathgl-2.4.4/include/mgl2/eval.h
Examining data/mathgl-2.4.4/include/mgl2/surf.h
Examining data/mathgl-2.4.4/include/mgl2/canvas.h
Examining data/mathgl-2.4.4/include/mgl2/evalc.h
Examining data/mathgl-2.4.4/include/mgl2/prim.h
Examining data/mathgl-2.4.4/include/mgl2/cont.h
Examining data/mathgl-2.4.4/include/mgl2/base_cf.h
Examining data/mathgl-2.4.4/include/mgl2/fit.h
Examining data/mathgl-2.4.4/include/mgl2/wnd_cf.h
Examining data/mathgl-2.4.4/include/mgl2/datac.h
Examining data/mathgl-2.4.4/include/mgl2/type.h
Examining data/mathgl-2.4.4/include/mgl2/glut.h
Examining data/mathgl-2.4.4/include/mgl2/data.h
Examining data/mathgl-2.4.4/include/mgl2/datac_cf.h
Examining data/mathgl-2.4.4/include/mgl2/parser.h
Examining data/mathgl-2.4.4/include/mgl2/qt.h
Examining data/mathgl-2.4.4/include/mgl2/base.h
Examining data/mathgl-2.4.4/include/mgl2/font.h
Examining data/mathgl-2.4.4/include/mgl2/define.h
Examining data/mathgl-2.4.4/include/mgl2/other.h
Examining data/mathgl-2.4.4/include/mgl2/canvas_cf.h
Examining data/mathgl-2.4.4/include/mgl2/mpi.h
Examining data/mathgl-2.4.4/include/mgl2/pde.h
Examining data/mathgl-2.4.4/include/mgl2/mgl.h
Examining data/mathgl-2.4.4/include/mgl2/volume.h
Examining data/mathgl-2.4.4/include/mgl2/canvas_wnd.h
Examining data/mathgl-2.4.4/include/mgl2/opengl.h
Examining data/mathgl-2.4.4/include/mgl2/data_cf.h
Examining data/mathgl-2.4.4/include/mgl2/window.h
Examining data/mathgl-2.4.4/include/mgl2/qmathgl.h
Examining data/mathgl-2.4.4/include/mgl2/thread.h
Examining data/mathgl-2.4.4/include/mgl2/fltk.h
Examining data/mathgl-2.4.4/include/mgl2/addon.h
Examining data/mathgl-2.4.4/utils/make_forth.cpp
Examining data/mathgl-2.4.4/utils/mglview.cpp
Examining data/mathgl-2.4.4/utils/mglcgi.cpp
Examining data/mathgl-2.4.4/utils/mgltask.cpp
Examining data/mathgl-2.4.4/utils/mglconv.cpp
Examining data/mathgl-2.4.4/utils/make_pas.cpp
Examining data/mathgl-2.4.4/examples/qt_example.cpp
Examining data/mathgl-2.4.4/examples/mpi_test.cpp
Examining data/mathgl-2.4.4/examples/mgl_module.cpp
Examining data/mathgl-2.4.4/examples/qgl_example.h
Examining data/mathgl-2.4.4/examples/full_test.cpp
Examining data/mathgl-2.4.4/examples/samples.cpp
Examining data/mathgl-2.4.4/examples/wnd_samples.cpp
Examining data/mathgl-2.4.4/examples/wx_example.cpp
Examining data/mathgl-2.4.4/examples/fltk_example.cpp
Examining data/mathgl-2.4.4/examples/glut_example.cpp
Examining data/mathgl-2.4.4/examples/qgl_example.cpp
Examining data/mathgl-2.4.4/mgllab/dialogs.cpp
Examining data/mathgl-2.4.4/mgllab/help.cpp
Examining data/mathgl-2.4.4/mgllab/table.cpp
Examining data/mathgl-2.4.4/mgllab/mgllab.cpp
Examining data/mathgl-2.4.4/mgllab/mathgl.cpp
Examining data/mathgl-2.4.4/mgllab/editor.cpp
Examining data/mathgl-2.4.4/mgllab/mgllab.h
Examining data/mathgl-2.4.4/mgllab/grid.cpp
Examining data/mathgl-2.4.4/json/MainWindow.cpp
Examining data/mathgl-2.4.4/json/Backend.cpp
Examining data/mathgl-2.4.4/json/Backend.hpp
Examining data/mathgl-2.4.4/json/MainWindow.hpp
Examining data/mathgl-2.4.4/addons/getopt/getopt.c
Examining data/mathgl-2.4.4/addons/getopt/getopt.h
Examining data/mathgl-2.4.4/udav/open_dlg.cpp
Examining data/mathgl-2.4.4/udav/setup_dlg.cpp
Examining data/mathgl-2.4.4/udav/text_pnl.cpp
Examining data/mathgl-2.4.4/udav/tree_pnl.cpp
Examining data/mathgl-2.4.4/udav/hint_dlg.cpp
Examining data/mathgl-2.4.4/udav/textedit.cpp
Examining data/mathgl-2.4.4/udav/prop_dlg.cpp
Examining data/mathgl-2.4.4/udav/anim_dlg.cpp
Examining data/mathgl-2.4.4/udav/subplot_dlg.h
Examining data/mathgl-2.4.4/udav/textedit.h
Examining data/mathgl-2.4.4/udav/setup_dlg.h
Examining data/mathgl-2.4.4/udav/opt_dlg.cpp
Examining data/mathgl-2.4.4/udav/subplot_dlg.cpp
Examining data/mathgl-2.4.4/udav/tree_pnl.h
Examining data/mathgl-2.4.4/udav/udav_wnd.cpp
Examining data/mathgl-2.4.4/udav/help_pnl.cpp
Examining data/mathgl-2.4.4/udav/data_dlg.h
Examining data/mathgl-2.4.4/udav/help_pnl.h
Examining data/mathgl-2.4.4/udav/dat_pnl.cpp
Examining data/mathgl-2.4.4/udav/info_dlg.cpp
Examining data/mathgl-2.4.4/udav/calc_dlg.h
Examining data/mathgl-2.4.4/udav/files_dlg.cpp
Examining data/mathgl-2.4.4/udav/calc_dlg.cpp
Examining data/mathgl-2.4.4/udav/newcmd_dlg.cpp
Examining data/mathgl-2.4.4/udav/plot_pnl.h
Examining data/mathgl-2.4.4/udav/files_dlg.h
Examining data/mathgl-2.4.4/udav/hint_dlg.h
Examining data/mathgl-2.4.4/udav/style_dlg.cpp
Examining data/mathgl-2.4.4/udav/opt_dlg.h
Examining data/mathgl-2.4.4/udav/data_dlg.cpp
Examining data/mathgl-2.4.4/udav/anim_dlg.h
Examining data/mathgl-2.4.4/udav/find_dlg.cpp
Examining data/mathgl-2.4.4/udav/dat_pnl.h
Examining data/mathgl-2.4.4/udav/args_dlg.h
Examining data/mathgl-2.4.4/udav/mem_pnl.cpp
Examining data/mathgl-2.4.4/udav/udav_wnd.h
Examining data/mathgl-2.4.4/udav/open_dlg.h
Examining data/mathgl-2.4.4/udav/info_dlg.h
Examining data/mathgl-2.4.4/udav/style_dlg.h
Examining data/mathgl-2.4.4/udav/find_dlg.h
Examining data/mathgl-2.4.4/udav/mem_pnl.h
Examining data/mathgl-2.4.4/udav/newcmd_dlg.h
Examining data/mathgl-2.4.4/udav/qmglsyntax.h
Examining data/mathgl-2.4.4/udav/plot_pnl.cpp
Examining data/mathgl-2.4.4/udav/prop_dlg.h
Examining data/mathgl-2.4.4/udav/qmglsyntax.cpp
Examining data/mathgl-2.4.4/udav/text_pnl.h
Examining data/mathgl-2.4.4/udav/args_dlg.cpp
Examining data/mathgl-2.4.4/widgets/qt.cpp
Examining data/mathgl-2.4.4/widgets/glut.cpp
Examining data/mathgl-2.4.4/widgets/wx.cpp
Examining data/mathgl-2.4.4/widgets/fltk.cpp
Examining data/mathgl-2.4.4/widgets/image.h
Examining data/mathgl-2.4.4/widgets/image.cpp
Examining data/mathgl-2.4.4/fonts/make_bin.cpp
FINAL RESULTS:
data/mathgl-2.4.4/examples/full_test.cpp:400:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf,s->mgl); strcat(buf,mmgl_dat_prepare);
data/mathgl-2.4.4/examples/full_test.cpp:400:24: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcpy(buf,s->mgl); strcat(buf,mmgl_dat_prepare);
data/mathgl-2.4.4/examples/full_test.cpp:448:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf,s->mgl); strcat(buf,mmgl_dat_prepare);
data/mathgl-2.4.4/examples/full_test.cpp:448:26: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcpy(buf,s->mgl); strcat(buf,mmgl_dat_prepare);
data/mathgl-2.4.4/examples/full_test.cpp:475:5: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf,s->mgl); strcat(buf,mmgl_dat_prepare);
data/mathgl-2.4.4/examples/full_test.cpp:475:26: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcpy(buf,s->mgl); strcat(buf,mmgl_dat_prepare);
data/mathgl-2.4.4/include/mgl2/define.h:98:18: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
#define gzprintf fprintf
data/mathgl-2.4.4/include/mgl2/define.h:139:9: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/mathgl-2.4.4/include/mgl2/define.h:139:18: [4] (format) _snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
#define snprintf _snprintf
data/mathgl-2.4.4/include/mgl2/define.h:181:22: [4] (buffer) swprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#define mglprintf swprintf
data/mathgl-2.4.4/json/Backend.cpp:7:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#undef sprintf // fix libintl bug of defining sprintf
data/mathgl-2.4.4/json/Backend.cpp:60:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
res.sprintf("x = %g, y = %g, z = %g for point (%d, %d)\n", p.x, p.y, p.z, x,y);
data/mathgl-2.4.4/mgllab/editor.cpp:113:30: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
char res=0, *w=new char[n]; strcpy(w,s);
data/mathgl-2.4.4/mgllab/grid.cpp:67:39: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
else if(mgl_isbad(data->v(C,R,sl))) strcpy(s,data->v(C,R,sl)>0?"inf":"-inf");
data/mathgl-2.4.4/mgllab/mathgl.cpp:123:28: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
else { strcat(fname,"."); strcat(fname,ext); }
data/mathgl-2.4.4/mgllab/mgllab.cpp:235:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(fname,newfile); strcat(fname,".mgl");
data/mathgl-2.4.4/src/addon.cpp:43:14: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
tmp[i+1]=0; strcpy(str,&(tmp[n]));
data/mathgl-2.4.4/src/addon.cpp:75:4: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
system(buf.c_str());
data/mathgl-2.4.4/src/addon.cpp:96:48: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if(str[i+1]=='s') { s = va_arg(lst, char*); strcpy(s, t); }
data/mathgl-2.4.4/src/addon.cpp:119:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf,256,str,lst); buf[255]=0;
data/mathgl-2.4.4/src/addon.cpp:130:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf,256,str,lst); buf[255]=0;
data/mathgl-2.4.4/src/axis.cpp:427:13: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
if(d==0) wcscpy(buf,minus?L"-1":L"\u22121");
data/mathgl-2.4.4/src/axis.cpp:428:18: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
else if(d==1) wcscpy(buf,minus?L"-10":L"\u221210");
data/mathgl-2.4.4/src/axis.cpp:868:33: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
mgl_strncpy(font,FontDef,32); strcat(font,ff);
data/mathgl-2.4.4/src/axis.cpp:877:31: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
ff[0] = ac.a.y>0?'T':'t'; strcat(font,ff);
data/mathgl-2.4.4/src/axis.cpp:882:38: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
ff[0] = GetLabelPos(t, kk, *aa); strcat(font,ff);
data/mathgl-2.4.4/src/base.cpp:1269:32: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
{ mk = last_style[3] = p[3]; strcpy(last_style+11,s); }
data/mathgl-2.4.4/src/base_cf.cpp:266:3: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf,256,str,lst); buf[255]=0;
data/mathgl-2.4.4/src/canvas.cpp:885:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(se,64,ee,v); snprintf(sf,64,ff,v);
data/mathgl-2.4.4/src/canvas.cpp:885:24: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(se,64,ee,v); snprintf(sf,64,ff,v);
data/mathgl-2.4.4/src/canvas.cpp:925:73: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if((lf>le && !mglchr(fmt,'f')) || !strcmp(sf,"0") || !strcmp(sf,"-0")) strcpy(sf,se);
data/mathgl-2.4.4/src/canvas.cpp:965:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ff,fmt?fmt:""); strcat(ff,":L"); Push();
data/mathgl-2.4.4/src/canvas.cpp:1063:16: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
{ ss[0] = *s; strcat(fmt,ss); }
data/mathgl-2.4.4/src/complex_io.cpp:693:6: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
do{ snprintf(fname,n,templ,t); fname[n-1]=0; t+= step; } while(!mgl_datac_read(&d,fname) && t<=to);
data/mathgl-2.4.4/src/complex_io.cpp:703:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(fname,n,templ,t); fname[n-1]=0;
data/mathgl-2.4.4/src/cont.cpp:81:12: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
if(ffont) strcpy(fnt,ffont); else *fnt=0;
data/mathgl-2.4.4/src/data.cpp:1475:12: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
s[127]=0; strcat(buf,s);
data/mathgl-2.4.4/src/data.cpp:1481:12: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
s[127]=0; strcat(buf,s);
data/mathgl-2.4.4/src/data.cpp:1484:12: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
s[127]=0; strcat(buf,s);
data/mathgl-2.4.4/src/data.cpp:1489:12: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
s[127]=0; strcat(buf,s);
data/mathgl-2.4.4/src/data.cpp:1491:12: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
s[127]=0; strcat(buf,s);
data/mathgl-2.4.4/src/data_io.cpp:435:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf,templ);
data/mathgl-2.4.4/src/data_io.cpp:1185:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf,res[0]);
data/mathgl-2.4.4/src/data_io.cpp:1186:44: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
for(long i=1;i<n;i++) { strcat(buf,"\t"); strcat(buf,res[i]); }
data/mathgl-2.4.4/src/data_io.cpp:1258:6: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
do{ snprintf(fname,n,templ,t); fname[n-1]=0; t+= step; } while(!mgl_data_read(&d,fname) && t<=to);
data/mathgl-2.4.4/src/data_io.cpp:1268:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(fname,n,templ,t); fname[n-1]=0;
data/mathgl-2.4.4/src/eval.cpp:208:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(str,string);
data/mathgl-2.4.4/src/evalc.cpp:93:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(str,string);
data/mathgl-2.4.4/src/export.cpp:202:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf,1023,str,lst); buf[1023]=0;
data/mathgl-2.4.4/src/export.cpp:213:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf,1023,str,lst); buf[1023]=0;
data/mathgl-2.4.4/src/export.cpp:629:7: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if(system(cmd)==-1) printf(_("Error to call external viewer\n"));
data/mathgl-2.4.4/src/export.cpp:638:7: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if(system(cmd)==-1) printf(_("Error to call external viewer\n"));
data/mathgl-2.4.4/src/export.cpp:645:6: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if(system(cmd)==-1) printf(_("Error to call external viewer\n"));
data/mathgl-2.4.4/src/export_2d.cpp:761:5: [4] (format) fwprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fwprintf(fp, j==0?L"(%.4g,%.4g)":L" -- (%.4g,%.4g)",0.01*x0,y0*0.01);
data/mathgl-2.4.4/src/export_3d.cpp:316:34: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
char *tname = new char[len+15]; strcpy(tname,fname);
data/mathgl-2.4.4/src/export_3d.cpp:431:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
char *tname = new char[len+2]; strcpy(tname,fname); tname[len+1]=tname[len]=0;
data/mathgl-2.4.4/src/fit.cpp:228:14: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
buf[31]=0; strcat(mglFitRes,buf);
data/mathgl-2.4.4/src/fit.cpp:240:15: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
buf[31]=0; strcat(mglFitRes+k, buf); k+=strlen(buf);
data/mathgl-2.4.4/src/font.cpp:815:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf,base);
data/mathgl-2.4.4/src/obj.cpp:420:33: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
char *tname = new char[len+5]; strcpy(tname,fname);
data/mathgl-2.4.4/src/prc.cpp:264:40: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
char * const tname = new char[len+9]; strcpy(tname,fname);
data/mathgl-2.4.4/src/prim.cpp:882:16: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
{ ss[0] = *s; strcat(fmt,ss); }
data/mathgl-2.4.4/src/window.cpp:282:11: [4] (buffer) wscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function. If the scanf format is influenceable by an
attacker, it's exploitable.
int res=wscanf(str+3, "%lg%lg%lg", &a1, &a2, &da);
data/mathgl-2.4.4/src/window.cpp:288:23: [4] (format) swprintf:
Potential format string problem (CWE-134). Make format string constant.
wchar_t buf[128]; swprintf(buf,128,L"%g",a);
data/mathgl-2.4.4/udav/anim_dlg.cpp:30:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#undef sprintf // fix libintl bug of defining sprintf
data/mathgl-2.4.4/udav/anim_dlg.cpp:78:15: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
QString s; s.sprintf("%d",animDelay); delay->setText(s);
data/mathgl-2.4.4/udav/dat_pnl.cpp:43:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#undef sprintf // fix libintl bug of defining sprintf
data/mathgl-2.4.4/udav/dat_pnl.cpp:118:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if(imag(f)>0) s.sprintf("%.15g+%.15gi",real(f),imag(f));
data/mathgl-2.4.4/udav/dat_pnl.cpp:119:24: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if(imag(f)<0) s.sprintf("%.15g-%.15gi",real(f),-imag(f));
data/mathgl-2.4.4/udav/dat_pnl.cpp:120:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else s.sprintf("%15g",real(f));
data/mathgl-2.4.4/udav/dat_pnl.cpp:128:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else s.sprintf("%.15g",f);
data/mathgl-2.4.4/udav/dat_pnl.cpp:137:4: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
d.sprintf("%d * %d * %d", nx, ny, nz);
data/mathgl-2.4.4/udav/dat_pnl.cpp:225:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if(imag(g)>0) s.sprintf("%g+%gi",real(g),imag(g));
data/mathgl-2.4.4/udav/dat_pnl.cpp:226:25: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if(imag(g)<0) s.sprintf("%g-%gi",real(g),-imag(g));
data/mathgl-2.4.4/udav/dat_pnl.cpp:227:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else s.sprintf("%g",real(g));
data/mathgl-2.4.4/udav/dat_pnl.cpp:238:11: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else s.sprintf("%g", f);
data/mathgl-2.4.4/udav/dat_pnl.cpp:401:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
mx.sprintf("%d",nx); my.sprintf("%d",ny); mz.sprintf("%d",nz);
data/mathgl-2.4.4/udav/dat_pnl.cpp:401:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
mx.sprintf("%d",nx); my.sprintf("%d",ny); mz.sprintf("%d",nz);
data/mathgl-2.4.4/udav/dat_pnl.cpp:401:47: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
mx.sprintf("%d",nx); my.sprintf("%d",ny); mz.sprintf("%d",nz);
data/mathgl-2.4.4/udav/dat_pnl.cpp:435:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
mx.sprintf("%d",nx); my.sprintf("%d",ny); mz.sprintf("%d",nz);
data/mathgl-2.4.4/udav/dat_pnl.cpp:435:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
mx.sprintf("%d",nx); my.sprintf("%d",ny); mz.sprintf("%d",nz);
data/mathgl-2.4.4/udav/dat_pnl.cpp:435:47: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
mx.sprintf("%d",nx); my.sprintf("%d",ny); mz.sprintf("%d",nz);
data/mathgl-2.4.4/udav/mem_pnl.cpp:29:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#undef sprintf // fix libintl bug of defining sprintf
data/mathgl-2.4.4/udav/mem_pnl.cpp:156:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("%ld * %ld * %ld", v->GetNx(), v->GetNy(), v->GetNz());
data/mathgl-2.4.4/udav/mem_pnl.cpp:172:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if((sv>>60L)>0) s.sprintf("%ld Eb",sv>>60L);
data/mathgl-2.4.4/udav/mem_pnl.cpp:173:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if((sv>>50L)>0) s.sprintf("%ld Pb",sv>>50L);
data/mathgl-2.4.4/udav/mem_pnl.cpp:174:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if((sv>>40L)>0) s.sprintf("%ld Tb",sv>>40L);
data/mathgl-2.4.4/udav/mem_pnl.cpp:176:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if((sv>>30L)>0) s.sprintf("%ld Gb",sv>>30L);
data/mathgl-2.4.4/udav/mem_pnl.cpp:177:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if((sv>>20L)>0) s.sprintf("%ld Mb",sv>>20L);
data/mathgl-2.4.4/udav/mem_pnl.cpp:178:26: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else if((sv>>10L)>0) s.sprintf("%ld Kb",sv>>10L);
data/mathgl-2.4.4/udav/mem_pnl.cpp:179:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else s.sprintf("%ld b",sv);
data/mathgl-2.4.4/udav/plot_pnl.cpp:44:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#undef sprintf
data/mathgl-2.4.4/udav/plot_pnl.cpp:191:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
QString s; s.sprintf(_("%d - %d of %d"),gr.GetNumFrame(),animPos,n);
data/mathgl-2.4.4/udav/setup_dlg.cpp:34:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#undef sprintf // fix libintl bug of defining sprintf
data/mathgl-2.4.4/udav/setup_dlg.cpp:196:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("light %d %g %g %g '%c'\n", i,x1,y1,z1, col[j].toLatin1());
data/mathgl-2.4.4/udav/setup_dlg.cpp:198:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("light %d %g %g %g '%c' %g\n", i,x1,y1,z1, col[j].toLatin1(), blight[i]->text().toDouble());
data/mathgl-2.4.4/udav/setup_dlg.cpp:208:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
{ s.sprintf("axis %g %g %g %g %g %g\n",x1,y1,z1,x2,y2,z2); res += s; }
data/mathgl-2.4.4/udav/setup_dlg.cpp:211:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(u1 && u2) {s.sprintf("xrange %g %g\n",x1,x2); res += s;}
data/mathgl-2.4.4/udav/setup_dlg.cpp:212:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(v1 && v2) {s.sprintf("yrange %g %g\n",y1,y2); res += s;}
data/mathgl-2.4.4/udav/setup_dlg.cpp:213:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(w1 && w2) {s.sprintf("zrange %g %g\n",z1,z2); res += s;}
data/mathgl-2.4.4/udav/setup_dlg.cpp:217:16: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(u1&&u2) {s.sprintf("crange %g %g\n",x1,x2); res += s;}
data/mathgl-2.4.4/udav/setup_dlg.cpp:222:20: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(u1&&v1&&w1) {s.sprintf("origin %g %g %g\n",x1,y1,z1); res += s;}
data/mathgl-2.4.4/udav/setup_dlg.cpp:232:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(xort->text().isEmpty()) s.sprintf("xtick %g %g\n",x1,x2);
data/mathgl-2.4.4/udav/setup_dlg.cpp:233:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else s.sprintf("xtick %g %g %g\n",x1,x2,xort->text().toDouble());
data/mathgl-2.4.4/udav/setup_dlg.cpp:238:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(yort->text().isEmpty()) s.sprintf("ytick %g %g\n",y1,y2);
data/mathgl-2.4.4/udav/setup_dlg.cpp:239:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else s.sprintf("ytick %g %g %g\n",y1,y2,yort->text().toDouble());
data/mathgl-2.4.4/udav/setup_dlg.cpp:244:32: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(zort->text().isEmpty()) s.sprintf("ztick %g %g\n",z1,z2);
data/mathgl-2.4.4/udav/setup_dlg.cpp:245:10: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else s.sprintf("ztick %g %g %g\n",z1,z2,zort->text().toDouble());
data/mathgl-2.4.4/udav/setup_dlg.cpp:248:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(u1 && !u2) {s.sprintf("xtick %g\n",x1); res += s;}
data/mathgl-2.4.4/udav/setup_dlg.cpp:249:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(v1 && !v2) {s.sprintf("ytick %g\n",y1); res += s;}
data/mathgl-2.4.4/udav/setup_dlg.cpp:250:19: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(w1 && !w2) {s.sprintf("ztick %g\n",z1); res += s;}
data/mathgl-2.4.4/udav/setup_dlg.cpp:258:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("' %d\n", xpos->currentIndex()-1);
data/mathgl-2.4.4/udav/setup_dlg.cpp:263:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("' %d\n", ypos->currentIndex()-1);
data/mathgl-2.4.4/udav/setup_dlg.cpp:268:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("' %d\n", zpos->currentIndex()-1);
data/mathgl-2.4.4/udav/setup_dlg.cpp:273:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
{ s.sprintf("alphadef %g\n",aldef->text().toDouble()); res += s; }
data/mathgl-2.4.4/udav/setup_dlg.cpp:275:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
{ s.sprintf("ambient %g\n",amb->text().toDouble()); res += s; }
data/mathgl-2.4.4/udav/setup_dlg.cpp:278:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
{ s.sprintf("baselinewidth %g\n",basew->text().toDouble()); res += s; }
data/mathgl-2.4.4/udav/setup_dlg.cpp:280:6: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
{ s.sprintf("meshnum %d\n",mesh->text().toInt()); res += s; }
data/mathgl-2.4.4/udav/setup_dlg.cpp:283:5: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
s.sprintf("axialdir '%c'\n",char('x'+axial->currentIndex()-1));
data/mathgl-2.4.4/udav/setup_dlg.cpp:290:34: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
if(!fsize->text().isEmpty()) s.sprintf("' %g\n",fsize->text().toDouble());
data/mathgl-2.4.4/udav/setup_dlg.cpp:291:10: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else s.sprintf("'\n");
data/mathgl-2.4.4/udav/subplot_dlg.cpp:30:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#undef sprintf
data/mathgl-2.4.4/utils/make_forth.cpp:83:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
else sprintf(res, " !!! %s;", arg[j]); // NOTE should be never here
data/mathgl-2.4.4/utils/make_pas.cpp:216:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(argname, arg + prefixLen);
data/mathgl-2.4.4/utils/make_pas.cpp:223:3: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf(dest, format, argname);
data/mathgl-2.4.4/utils/make_pas.cpp:324:4: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(ptr, " !!! %s;", arg[j]);
data/mathgl-2.4.4/utils/make_pas.cpp:339:3: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(out, format, parse_name(declaration + prefixLen, needOverload));
data/mathgl-2.4.4/widgets/fltk.cpp:80:17: [4] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer.
MGL_TO_WCS(str,wcscpy(res,str));
data/mathgl-2.4.4/widgets/fltk.cpp:1185:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(lbl,args); strs.push_back(lbl);
data/mathgl-2.4.4/widgets/fltk.cpp:1193:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(lbl,"%s%c",tip,id); strs.push_back(lbl); w->tooltip(lbl);
data/mathgl-2.4.4/widgets/qt.cpp:45:8: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
#undef sprintf // fix libintl bug of defining sprintf
data/mathgl-2.4.4/widgets/qt.cpp:442:17: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
else mousePos.sprintf("x=%g, y=%g, z=%g",p.x,p.y,p.z);
data/mathgl-2.4.4/addons/getopt/getopt.c:114:45: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
d->__posixly_correct = posixly_correct | !!getenv("POSIXLY_CORRECT");
data/mathgl-2.4.4/addons/getopt/getopt.h:109:11: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
#define getopt getopt_w
data/mathgl-2.4.4/addons/getopt/getopt.h:110:11: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
#define getopt_long getopt_long_w
data/mathgl-2.4.4/addons/getopt/getopt.h:115:11: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
#define getopt getopt_a
data/mathgl-2.4.4/addons/getopt/getopt.h:116:11: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
#define getopt_long getopt_long_a
data/mathgl-2.4.4/fonts/make_bin.cpp:30:12: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
int ch = getopt(argc, argv, "p:o:h");
data/mathgl-2.4.4/mgllab/mgllab.cpp:425:13: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
char ch = getopt(argc, argv, "1:2:3:4:5:6:7:8:9:ho:L:");
data/mathgl-2.4.4/src/eval.cpp:150:2: [3] (random) srand:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
srand(seed);
data/mathgl-2.4.4/src/export.cpp:617:31: [3] (tmpfile) tmpnam:
Temporary file race condition (CWE-377).
snprintf(fname,128,"%s.png", tmpnam(NULL));
data/mathgl-2.4.4/utils/mglcgi.cpp:64:23: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
const char *method = getenv("REQUEST_METHOD");
data/mathgl-2.4.4/utils/mglcgi.cpp:69:17: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
long len=atol(getenv("CONTENT_LENGTH"));
data/mathgl-2.4.4/utils/mglcgi.cpp:73:13: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
else buf = getenv("QUERY_STRING");
data/mathgl-2.4.4/utils/mglconv.cpp:44:12: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
int ch = getopt(argc, argv, "1:2:3:4:5:6:7:8:9:hno:L:C:A:s:S:q:v:g:");
data/mathgl-2.4.4/utils/mglview.cpp:64:12: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
int ch = getopt(argc, argv, "1:2:3:4:5:6:7:8:9:hL:s:g:v:");
data/mathgl-2.4.4/examples/fltk_example.cpp:49:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[10] = "i=0"; str[2] = '0'+i;
data/mathgl-2.4.4/examples/fltk_example.cpp:78:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[10] = "i=0"; str[3] = '0'+i;
data/mathgl-2.4.4/examples/fltk_example.cpp:105:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[16]; snprintf(str,15,"i=%ld",i);
data/mathgl-2.4.4/examples/full_test.cpp:100:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen("samples.texi","w");
data/mathgl-2.4.4/examples/full_test.cpp:101:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fq = fopen("samples_list.texi","w");
data/mathgl-2.4.4/examples/full_test.cpp:113:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[512], name[64];
data/mathgl-2.4.4/examples/full_test.cpp:114:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fs = fopen("wnd_samples.cpp","r");
data/mathgl-2.4.4/examples/full_test.cpp:125:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fs = fopen("samples.cpp","r");
data/mathgl-2.4.4/examples/full_test.cpp:241:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/mathgl-2.4.4/examples/full_test.cpp:322:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256]="", *tmp;
data/mathgl-2.4.4/examples/full_test.cpp:331:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'w': width =atoi(optarg); break;
data/mathgl-2.4.4/examples/full_test.cpp:332:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'h': height=atoi(optarg); break;
data/mathgl-2.4.4/examples/full_test.cpp:333:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 'q': quality =atoi(optarg); break;
data/mathgl-2.4.4/examples/full_test.cpp:338:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
case 't': mgl_set_num_thr(atoi(optarg)); break;
data/mathgl-2.4.4/examples/full_test.cpp:382:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(big?"time_big.texi":"time.texi","w");
data/mathgl-2.4.4/examples/full_test.cpp:383:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fi = fopen("/proc/cpuinfo","r");
data/mathgl-2.4.4/examples/full_test.cpp:386:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/mathgl-2.4.4/examples/glut_example.cpp:50:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[10] = "i=0"; str[2] = '0'+i;
data/mathgl-2.4.4/examples/mpi_test.cpp:19:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/mathgl-2.4.4/examples/mpi_test.cpp:20:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"xrange %g %g",2.*rank/numproc-1,2.*(rank+1)/numproc-1);
data/mathgl-2.4.4/examples/mpi_test.cpp:34:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"test%d.png",rank);
data/mathgl-2.4.4/examples/qt_example.cpp:49:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[10] = "i=0"; str[2] = '0'+i;
data/mathgl-2.4.4/examples/qt_example.cpp:119:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[16]; snprintf(str,15,"i=%ld",i);
data/mathgl-2.4.4/examples/samples.cpp:742:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stl[3]="r1", txt[4]="'1'";
data/mathgl-2.4.4/examples/samples.cpp:1772:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64]; sprintf(buf,"line 0 0 %g 1 'b'",i);
data/mathgl-2.4.4/examples/samples.cpp:1772:17: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
char buf[64]; sprintf(buf,"line 0 0 %g 1 'b'",i);
data/mathgl-2.4.4/examples/samples.cpp:2724:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char func[128]; sprintf(func,"%g*(1-((x-%g)/%g)^2)",b[0],b[1],b[2]);
data/mathgl-2.4.4/examples/samples.cpp:2724:18: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
char func[128]; sprintf(func,"%g*(1-((x-%g)/%g)^2)",b[0],b[1],b[2]);
data/mathgl-2.4.4/examples/samples.cpp:2736:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen("test.txt","w");
data/mathgl-2.4.4/examples/samples.cpp:2754:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/mathgl-2.4.4/examples/samples.cpp:2759:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"delta=%g",a[i]);
data/mathgl-2.4.4/examples/samples.cpp:3321:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stl[3]="r1", txt[4]="'1'";
data/mathgl-2.4.4/include/mgl2/Fl_MathGL.h:138:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mouse_pos[128];
data/mathgl-2.4.4/include/mgl2/base.h:66:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dat[i],st.dat[i],((size_t)1<<MGL_PB)*sizeof(T));
data/mathgl-2.4.4/include/mgl2/base.h:112:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(dat[i],st.dat[i],((size_t)1<<MGL_PB)*sizeof(T));
data/mathgl-2.4.4/include/mgl2/base.h:124:88: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
mglMatrix(const mglMatrix &aa) : x(aa.x),y(aa.y),z(aa.z),pf(aa.pf),norot(aa.norot) { memcpy(b,aa.b,9*sizeof(float)); }
data/mathgl-2.4.4/include/mgl2/base.h:129:34: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ x=a.x; y=a.y; z=a.z; pf=a.pf; memcpy(b,a.b,9*sizeof(float)); norot=false; return a; }
data/mathgl-2.4.4/include/mgl2/base.h:195:33: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
mglBlock(const mglBlock &aa) { memcpy(this, &aa, sizeof(mglBlock)); }
data/mathgl-2.4.4/include/mgl2/base.h:242:43: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
mglPnt(const mglPnt &aa) : sub(aa.sub) { memcpy(dat,aa.dat,15*sizeof(float)); }
data/mathgl-2.4.4/include/mgl2/base.h:243:64: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
inline const mglPnt&operator=(const mglPnt &aa) { sub=aa.sub; memcpy(dat,aa.dat,15*sizeof(float)); return aa; }
data/mathgl-2.4.4/include/mgl2/base.h:276:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(a.trig) memcpy(trig, a.trig, 6*nt*sizeof(short));
data/mathgl-2.4.4/include/mgl2/base.h:277:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(a.line) memcpy(line, a.line, 2*nl*sizeof(short));
data/mathgl-2.4.4/include/mgl2/base.h:290:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Sch[260]; ///< Color scheme used
data/mathgl-2.4.4/include/mgl2/base.h:299:45: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ col = new mglColor[MGL_TEXTURE_COLOURS]; memcpy(Sch,aa.Sch,260);
data/mathgl-2.4.4/include/mgl2/base.h:300:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(col,aa.col,MGL_TEXTURE_COLOURS*sizeof(mglColor));
data/mathgl-2.4.4/include/mgl2/base.h:301:30: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
c0 = new mglColor[2*aa.n]; memcpy(c0,aa.c0,2*aa.n*sizeof(mglColor));
data/mathgl-2.4.4/include/mgl2/base.h:302:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
val = new float[aa.n]; memcpy(val,aa.val,aa.n*sizeof(float)); }
data/mathgl-2.4.4/include/mgl2/base.h:305:18: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ col = aa.col; memcpy(Sch,aa.Sch,260); aa.col=aa.c0=0; aa.val=0; }
data/mathgl-2.4.4/include/mgl2/base.h:322:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(col,aa.col,MGL_TEXTURE_COLOURS*sizeof(mglColor));
data/mathgl-2.4.4/include/mgl2/base.h:323:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Sch,aa.Sch,260); return aa; }
data/mathgl-2.4.4/include/mgl2/base.h:699:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char FontDef[32]; ///< Font specification (see mglGraph::Puts). Default is Roman with align at center.
data/mathgl-2.4.4/include/mgl2/base.h:711:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char last_style[64];///< Last pen style TODO: replace by std::string
data/mathgl-2.4.4/include/mgl2/base.h:731:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char mask_ch[8];
data/mathgl-2.4.4/include/mgl2/canvas.h:84:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char m[8];
data/mathgl-2.4.4/include/mgl2/canvas.h:114:38: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
union mglRGBA { uint32_t c; unsigned char r[4]; };
data/mathgl-2.4.4/include/mgl2/canvas.h:350:53: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void pnt_plot(long x,long y,mreal z,const unsigned char c[4], int obj_id);
data/mathgl-2.4.4/include/mgl2/canvas.h:351:53: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void pnt_fast(long x,long y,mreal z,const unsigned char c[4], int obj_id);
data/mathgl-2.4.4/include/mgl2/canvas.h:368:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char BDef[4]; ///< Background color
data/mathgl-2.4.4/include/mgl2/canvas.h:374:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char AxisStl[32]; ///< Axis line style. Default is "k"
data/mathgl-2.4.4/include/mgl2/canvas.h:375:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char TickStl[32]; ///< Tick line style. Default is "k"
data/mathgl-2.4.4/include/mgl2/canvas.h:376:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SubTStl[32]; ///< Subtick line style. Default is "k"
data/mathgl-2.4.4/include/mgl2/data.h:650:21: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
inline double Diff(char dir, mreal var[26])
data/mathgl-2.4.4/include/mgl2/define.h:96:16: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
#define gzopen fopen
data/mathgl-2.4.4/include/mgl2/define.h:361:28: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void MGL_EXPORT mgl_chrrgb(char id, float rgb[3]);
data/mathgl-2.4.4/include/mgl2/fit.h:29:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern char mglFitRes[1024]; ///< Last fitted formula
data/mathgl-2.4.4/include/mgl2/mgl.h:495:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(imglen>=3*w*h) memcpy(imgdata, mgl_get_rgb(gr),3*w*h);
data/mathgl-2.4.4/include/mgl2/mgl.h:506:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(imglen>=4*w*h) memcpy(imgdata, mgl_get_rgba(gr),4*w*h);
data/mathgl-2.4.4/include/mgl2/mgl.h:531:21: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(imglen>=4*w*h) memcpy(imgdata, mgl_get_background(gr),4*w*h);
data/mathgl-2.4.4/include/mgl2/mgl.h:586:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
{ char s[3]={'.',c,0}; mgl_mark(gr, p.x, p.y, p.z, s); }
data/mathgl-2.4.4/include/mgl2/mgl.h:1000:54: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
inline void OHLC(const mglDataA &x, const mglDataA &open, const mglDataA &high, const mglDataA &low, const mglDataA &close, const char *pen="", const char *opt="")
data/mathgl-2.4.4/include/mgl2/mgl.h:1001:24: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
{ mgl_ohlc_x(gr, &x, &open,&high,&low,&close,pen,opt); }
data/mathgl-2.4.4/include/mgl2/mgl.h:1004:35: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
inline void OHLC(const mglDataA &open, const mglDataA &high, const mglDataA &low, const mglDataA &close, const char *pen="", const char *opt="")
data/mathgl-2.4.4/include/mgl2/mgl.h:1005:18: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
{ mgl_ohlc(gr, &open,&high,&low,&close,pen,opt); }
data/mathgl-2.4.4/include/mgl2/plot.h:176:53: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void MGL_EXPORT mgl_ohlc_x(HMGL graph, HCDT x, HCDT open, HCDT high, HCDT low, HCDT close, const char *pen, const char *opt);
data/mathgl-2.4.4/include/mgl2/plot.h:177:72: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void MGL_EXPORT mgl_ohlc_x_(uintptr_t *graph, uintptr_t *x, uintptr_t *open, uintptr_t *high, uintptr_t *low, uintptr_t *close, const char *pen, const char *opt,int,int);
data/mathgl-2.4.4/include/mgl2/plot.h:180:43: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void MGL_EXPORT mgl_ohlc(HMGL graph, HCDT open, HCDT high, HCDT low, HCDT close, const char *pen, const char *opt);
data/mathgl-2.4.4/include/mgl2/plot.h:181:56: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void MGL_EXPORT mgl_ohlc_(uintptr_t *graph, uintptr_t *open, uintptr_t *high, uintptr_t *low, uintptr_t *close, const char *pen, const char *opt,int,int);
data/mathgl-2.4.4/include/mgl2/type.h:191:22: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
s = new char[ls]; memcpy(s,str.s,ls);
data/mathgl-2.4.4/include/mgl2/type.h:192:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
w = new wchar_t[ls]; memcpy(w,str.w,ls*sizeof(wchar_t));
data/mathgl-2.4.4/include/mgl2/type.h:261:22: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
s = new char[ls]; memcpy(s,str.s,ls);
data/mathgl-2.4.4/include/mgl2/type.h:262:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
w = new wchar_t[ls]; memcpy(w,str.w,ls*sizeof(wchar_t));
data/mathgl-2.4.4/json/Backend.cpp:14:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/mathgl-2.4.4/json/Backend.cpp:33:4: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::ReadOnly);
data/mathgl-2.4.4/json/Backend.cpp:68:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/mathgl-2.4.4/json/Backend.cpp:89:4: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f.open(QIODevice::ReadOnly);
data/mathgl-2.4.4/mgllab/dialogs.cpp:263:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16]; snprintf(buf,16,"{%c%d,0.%d}",cols[cv],sv,pv);
data/mathgl-2.4.4/mgllab/dialogs.cpp:272:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[16]; snprintf(buf,16,"{%c%d}",cols[cv],sv);
data/mathgl-2.4.4/mgllab/dialogs.cpp:457:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128]; snprintf(buf,128,"{d%lX}",mask); // TODO: %llX in 32bit!
data/mathgl-2.4.4/mgllab/dialogs.cpp:485:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128]; snprintf(buf,128,"{s%llX}",mask);
data/mathgl-2.4.4/mgllab/dialogs.cpp:487:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128]; snprintf(buf,128,"{s%lX}",mask);
data/mathgl-2.4.4/mgllab/dialogs.cpp:494:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
v = atoi(alpha->value());
data/mathgl-2.4.4/mgllab/dialogs.cpp:601:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bx[256],by[256],bz[256];
data/mathgl-2.4.4/mgllab/dialogs.cpp:602:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(rx) strcpy(bx,"(:");
data/mathgl-2.4.4/mgllab/dialogs.cpp:605:11: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(ry) strcpy(by,",:");
data/mathgl-2.4.4/mgllab/dialogs.cpp:1054:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *id[10]={"0:","1:","2:","3:","4:","5:","6:","7:","8:","9:"};
data/mathgl-2.4.4/mgllab/dialogs.cpp:1118:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *pos[3]={"' -1\n","' 0\n","' 1\n"};
data/mathgl-2.4.4/mgllab/dialogs.cpp:1153:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
{ char buf[32]; snprintf(buf,31,"variant %ld\n",mgl_int(variant->value())); result += buf; }
data/mathgl-2.4.4/mgllab/dialogs.cpp:1154:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *stime[4]={"''\n","'x'\n","'y'\n","'z'\n"};
data/mathgl-2.4.4/mgllab/dialogs.cpp:1156:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *stune[4]={" 0\n"," 1\n"," 2\n"," 3\n"};
data/mathgl-2.4.4/mgllab/dialogs.cpp:1158:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *stern[6]={" 0\n"," 1\n"," 2\n"," 4\n"," 5\n"," 6\n"};
data/mathgl-2.4.4/mgllab/dialogs.cpp:1160:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *stype[3]={" 0\n"," 1\n"," 2\n"};
data/mathgl-2.4.4/mgllab/dialogs.cpp:1336:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128]; result.clear();
data/mathgl-2.4.4/mgllab/editor.cpp:76:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *o[13]={"xrange","yrange","zrange","crange","alpha",
data/mathgl-2.4.4/mgllab/editor.cpp:257:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[FL_PATH_MAX];
data/mathgl-2.4.4/mgllab/editor.cpp:290:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char name[32], res[256];
data/mathgl-2.4.4/mgllab/grid.cpp:44:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char s[64];
data/mathgl-2.4.4/mgllab/grid.cpp:66:34: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
if(mgl_isnan(data->v(C,R,sl))) strcpy(s,"nan");
data/mathgl-2.4.4/mgllab/help.cpp:77:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char s[128];
data/mathgl-2.4.4/mgllab/help.cpp:188:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[128];
data/mathgl-2.4.4/mgllab/help.cpp:357:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/mathgl-2.4.4/mgllab/mathgl.cpp:212:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128]; rv->setonly();
data/mathgl-2.4.4/mgllab/mathgl.cpp:242:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128]; snprintf(buf,128,"%g",a);
data/mathgl-2.4.4/mgllab/mathgl.cpp:300:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[4]="#$0";
data/mathgl-2.4.4/mgllab/mathgl.cpp:425:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if(p) { pos = p-s+7; id = atoi(p+8); }
data/mathgl-2.4.4/mgllab/mathgl.cpp:429:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if(p) { pos = p-s+7; id = atoi(p+8); }
data/mathgl-2.4.4/mgllab/mgllab.cpp:53:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *sch[4]={"base","gtk+","plastic","gleam"};
data/mathgl-2.4.4/mgllab/mgllab.cpp:235:27: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcpy(fname,newfile); strcat(fname,".mgl");
data/mathgl-2.4.4/mgllab/mgllab.h:154:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sl_id[64]; // slice id
data/mathgl-2.4.4/src/addon.cpp:67:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char s[size];
data/mathgl-2.4.4/src/addon.cpp:98:68: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if(strchr("ld",str[i+1])) { long *n = va_arg(lst, long*); *n = atol(t); }
data/mathgl-2.4.4/src/addon.cpp:116:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/mathgl-2.4.4/src/addon.cpp:127:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/mathgl-2.4.4/src/addon.cpp:133:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen("info.txt","at");
data/mathgl-2.4.4/src/addon.cpp:143:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char path[256];
data/mathgl-2.4.4/src/addon.cpp:151:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(fname,"rt");
data/mathgl-2.4.4/src/addon.cpp:176:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(step==1) memcpy(b,a,n*sizeof(dual));
data/mathgl-2.4.4/src/addon.cpp:182:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d,n*sizeof(dual));
data/mathgl-2.4.4/src/addon.cpp:210:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(step==1) memcpy(a,b,n*sizeof(dual));
data/mathgl-2.4.4/src/addon.cpp:221:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(step==1) memcpy(b,a,n*sizeof(dual));
data/mathgl-2.4.4/src/addon.cpp:233:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d,n*sizeof(dual));
data/mathgl-2.4.4/src/addon.cpp:254:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(step==1) memcpy(a,b,n*sizeof(dual));
data/mathgl-2.4.4/src/axis.cpp:31:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(result,res,sizeof(tm)); return result; }
data/mathgl-2.4.4/src/axis.cpp:275:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[64];
data/mathgl-2.4.4/src/axis.cpp:315:43: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static int mgl_tick_ext(mreal a, mreal b, wchar_t s[32], mreal &v)
data/mathgl-2.4.4/src/axis.cpp:397:2: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[64]=L"";
data/mathgl-2.4.4/src/axis.cpp:411:18: [2] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer. Risk is low because the source is a constant string.
else if(d==1) wcscpy(buf,L"10");
data/mathgl-2.4.4/src/axis.cpp:439:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t s[32]=L"";
data/mathgl-2.4.4/src/axis.cpp:659:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[3]={'L','C','R'}; align[i] = val[t+1];
data/mathgl-2.4.4/src/axis.cpp:668:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pos[4]={up[i],':',align[i],0};
data/mathgl-2.4.4/src/axis.cpp:750:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(oo,pp,8*sizeof(mglPoint));
data/mathgl-2.4.4/src/axis.cpp:865:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char font[64],ff[3]=":C"; memset(font,0,64);
data/mathgl-2.4.4/src/axis.cpp:935:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(oo,p,8*sizeof(mglPoint));
data/mathgl-2.4.4/src/axis.cpp:942:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char color[10]="{y9}";
data/mathgl-2.4.4/src/axis.cpp:946:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ memcpy(color,col+i,9); color[9]=0; break; }
data/mathgl-2.4.4/src/axis.cpp:1096:4: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[64];
data/mathgl-2.4.4/src/base.cpp:58:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(r) memcpy(r,s,(strlen(s)+1)*sizeof(char));
data/mathgl-2.4.4/src/base.cpp:161:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(last_style,"__1 {dFFFF}k\0");
data/mathgl-2.4.4/src/base.cpp:226:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/mathgl-2.4.4/src/base.cpp:231:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *mglWarn[mglWarnEnd] = {_("data dimension(s) is incompatible"), //mglWarnDim
data/mathgl-2.4.4/src/base.cpp:298:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(g.trig, fnt->GetTr(s,j), 6*g.nt*sizeof(short));
data/mathgl-2.4.4/src/base.cpp:299:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(g.line, fnt->GetLn(s,j), 2*g.nl*sizeof(short));
data/mathgl-2.4.4/src/base.cpp:988:28: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void MGL_EXPORT mgl_chrrgb(char p, float c[3])
data/mathgl-2.4.4/src/base.cpp:1181:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(last_style+11,"{&%g}",CDef);
data/mathgl-2.4.4/src/base.cpp:1192:2: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(last_style+11,"{&%g}",cc);
data/mathgl-2.4.4/src/base.cpp:1226:2: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(last_style,"__1 {dFFFF}k\0");
data/mathgl-2.4.4/src/base.cpp:1249:25: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
{ PDef = val[s-stl]; sprintf(last_style+6,"%04x",PDef); last_style[10]='}'; }
data/mathgl-2.4.4/src/base.cpp:1287:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(last_style+11,"{&%g}",CDef);
data/mathgl-2.4.4/src/base_cf.cpp:54:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/base_cf.cpp:59:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,id,l); s[l]=0;
data/mathgl-2.4.4/src/base_cf.cpp:89:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,txt,l); s[l]=0; mgl_set_global_warn(s); delete []s; }
data/mathgl-2.4.4/src/base_cf.cpp:158:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,txt,l); s[l]=0;
data/mathgl-2.4.4/src/base_cf.cpp:161:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,colors,l); s[l]=0;
data/mathgl-2.4.4/src/base_cf.cpp:173:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,EqC,l); s[l]=0;
data/mathgl-2.4.4/src/base_cf.cpp:189:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *sx=new char[lx+1]; memcpy(sx,EqX,lx); sx[lx]=0;
data/mathgl-2.4.4/src/base_cf.cpp:190:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *sy=new char[ly+1]; memcpy(sy,EqY,ly); sy[ly]=0;
data/mathgl-2.4.4/src/base_cf.cpp:191:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *sz=new char[lz+1]; memcpy(sz,EqZ,lz); sz[lz]=0;
data/mathgl-2.4.4/src/base_cf.cpp:192:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *sa=new char[la+1]; memcpy(sa,EqA,la); sa[la]=0;
data/mathgl-2.4.4/src/base_cf.cpp:223:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,name,l); s[l]=0;
data/mathgl-2.4.4/src/base_cf.cpp:226:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,name,l); s[l]=0;
data/mathgl-2.4.4/src/base_cf.cpp:227:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,path,n); d[n]=0;
data/mathgl-2.4.4/src/base_cf.cpp:239:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,name,l); s[l]=0;
data/mathgl-2.4.4/src/base_cf.cpp:240:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,path,n); d[n]=0;
data/mathgl-2.4.4/src/base_cf.cpp:247:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,ver,l); s[l]=0;
data/mathgl-2.4.4/src/base_cf.cpp:253:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,name,l); s[l]=0;
data/mathgl-2.4.4/src/base_cf.cpp:263:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/mathgl-2.4.4/src/base_cf.cpp:301:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,mask,l); s[l]=0; mgl_set_mask(*id,s); delete []s; }
data/mathgl-2.4.4/src/canvas.cpp:227:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(mgl_mask_val, mgl_mask_def, 16*sizeof(uint64_t)); // should be > 16*8
data/mathgl-2.4.4/src/canvas.cpp:266:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pp, nn, 8*sizeof(mglPoint));
data/mathgl-2.4.4/src/canvas.cpp:725:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(O,b,9*sizeof(float));
data/mathgl-2.4.4/src/canvas.cpp:756:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(R,b,9*sizeof(float));
data/mathgl-2.4.4/src/canvas.cpp:877:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char se[70], sf[70], ff[8]="%.3f", ee[8]="%.3e";
data/mathgl-2.4.4/src/canvas.cpp:894:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(!strcmp(sf,"-nan")) memcpy(sf,"nan",4);
data/mathgl-2.4.4/src/canvas.cpp:965:25: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcpy(ff,fmt?fmt:""); strcat(ff,":L"); Push();
data/mathgl-2.4.4/src/canvas.cpp:1060:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[8]="3",ss[2]=" ";
data/mathgl-2.4.4/src/canvas_cf.cpp:224:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,col,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:227:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fn,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:231:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,st,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:234:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,st,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:237:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,st,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:240:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,st,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:256:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *t=new char[l+1]; memcpy(t,title,l); t[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:257:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[m+1]; memcpy(s,stl,m); s[m]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:399:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fact,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:404:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *a=new char[l+1]; memcpy(a,stl,l); a[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:405:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *t=new char[m+1]; memcpy(t,tck,m); t[m]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:406:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[n+1]; memcpy(s,sub,n); s[n]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:409:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:412:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:413:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[m+1]; memcpy(f,stl,m); f[m]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:418:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,lbl,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:421:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,lbl,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:424:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,lbl,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:429:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,templ,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:432:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,t,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:437:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,col,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:440:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:441:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *p=new char[n+1]; memcpy(p,stl,l); p[n]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:442:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[m+1]; memcpy(o,opt,m); o[m]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:445:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:446:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *p=new char[n+1]; memcpy(p,pen,n); p[n]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:447:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[m+1]; memcpy(o,opt,m); o[m]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:450:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,text,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:451:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[m+1]; memcpy(o,opt,m); o[m]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:455:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:458:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:461:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:464:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:468:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,text,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:469:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,style,n); f[n]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:473:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,font,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:474:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[m+1]; memcpy(o,opt,m); o[m]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:477:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,font,l); s[l]=0;
data/mathgl-2.4.4/src/canvas_cf.cpp:478:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[m+1]; memcpy(o,opt,m); o[m]=0;
data/mathgl-2.4.4/src/complex.cpp:219:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nx*ny*nz*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:225:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nx*ny*nz*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:231:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nx*ny*nz*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:236:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/complex.cpp:293:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d->a,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:297:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:302:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:307:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:312:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/complex.cpp:369:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d->a,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:373:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:378:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:383:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:388:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/complex.cpp:453:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:458:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:463:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:468:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/complex.cpp:528:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:533:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:538:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:543:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/complex.cpp:554:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/complex.cpp:566:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,a+nx*ny*d,nx*ny*(nz-d)*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:567:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+nx*ny*(nz-d),a,nx*ny*d*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:568:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a,b,nx*ny*nz*sizeof(dual)); delete []b;
data/mathgl-2.4.4/src/complex.cpp:575:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,a+nx*d,(nx*ny*nz-nx*d)*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:578:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+nx*(ny-d)+nx*ny*i,a+nx*ny*i,nx*d*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:579:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a,b,nx*ny*nz*sizeof(dual)); delete []b;
data/mathgl-2.4.4/src/complex.cpp:586:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,a+d,(nx*ny*nz-d)*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:589:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+nx-d+nx*i,a+nx*i,d*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:590:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a,b,nx*ny*nz*sizeof(dual)); delete []b;
data/mathgl-2.4.4/src/complex.cpp:630:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/complex.cpp:736:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,how,l); s[l]=0;
data/mathgl-2.4.4/src/complex.cpp:753:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+nn*i,d->a+nx*i+n1,nn*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:764:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+nx*(i+nn*j),d->a+nx*(n1+i+ny*j),nx*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:773:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d->a+nx*ny*n1,nn*nx*ny*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:795:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a+nn*k, d->a+nx*k,at*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:796:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at<nx) memcpy(b.a+at+num+nn*k, d->a+at+nx*k,(nx-at)*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:808:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a+nx*nn*k, d->a+nx*ny*k,at*nx*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:809:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at<ny) memcpy(b.a+nx*(at+num+nn*k), d->a+nx*(at+ny*k),(ny-at)*nx*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:810:28: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<num;i++) memcpy(b.a+nx*(nn*k+at+i),d->a+nx*(ny*k+at),nx*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:818:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a, d->a,at*nx*ny*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:819:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at<nz) memcpy(b.a+nx*ny*(at+num), d->a+nx*ny*at,(nz-at)*nx*ny*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:821:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<num;i++) memcpy(b.a+nx*ny*(at+i),d->a+nx*ny*at,nx*ny*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:838:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a+nn*k, d->a+nx*k,at*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:839:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b.a+at+nn*k, d->a+at+num+nx*k,(nx-at-num)*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:850:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a+nx*nn*k, d->a+nx*ny*k,at*nx*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:851:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b.a+nx*(at+nn*k), d->a+nx*(at+num+ny*k),(ny-at-num)*nx*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:859:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a, d->a,at*nx*ny*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:860:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b.a+nx*ny*at, d->a+nx*ny*(at+num),(nz-at-num)*nx*ny*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:912:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d->a,k*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:913:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(mv) memcpy(b+k,mv->a,m*sizeof(dual));
data/mathgl-2.4.4/src/complex.cpp:1135:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,how,l); s[l]=0;
data/mathgl-2.4.4/src/complex.cpp:1533:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(dual)); delete []b;
data/mathgl-2.4.4/src/complex_ex.cpp:328:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(d) memcpy(c,d->a,nx*ny*nz*sizeof(dual));
data/mathgl-2.4.4/src/complex_ex.cpp:336:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,nx*ny*sizeof(dual)); p[2] = 1;
data/mathgl-2.4.4/src/complex_ex.cpp:341:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,nx*p[2]*sizeof(dual)); p[1] = p[2]; p[2] = 1;
data/mathgl-2.4.4/src/complex_ex.cpp:347:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,p[0]*p[1]*sizeof(dual));
data/mathgl-2.4.4/src/complex_ex.cpp:350:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r->a,c,p[0]*p[1]*p[2]*sizeof(dual));
data/mathgl-2.4.4/src/complex_ex.cpp:354:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/complex_ex.cpp:418:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,how,l); s[l]=0;
data/mathgl-2.4.4/src/complex_ex.cpp:475:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/complex_ex.cpp:721:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,func,l); s[l]=0;
data/mathgl-2.4.4/src/complex_ex.cpp:722:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *v=new char[m+1]; memcpy(v,vars,m); v[m]=0;
data/mathgl-2.4.4/src/complex_io.cpp:49:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:135:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a+i,&(vals[0]),c*sizeof(dual));
data/mathgl-2.4.4/src/complex_io.cpp:147:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a, dd->a, d->nx*d->ny*d->nz*sizeof(dual));
data/mathgl-2.4.4/src/complex_io.cpp:161:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,v,n);
data/mathgl-2.4.4/src/complex_io.cpp:166:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,val,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:208:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,reinterpret_cast<const dual*>(A),NX*NY*NZ*sizeof(float));
data/mathgl-2.4.4/src/complex_io.cpp:269:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(fname,"w");
data/mathgl-2.4.4/src/complex_io.cpp:273:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:332:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:367:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:424:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:509:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<n1;i++) memcpy(b+i*nx*ny, d->a, nx*ny*sizeof(dual));
data/mathgl-2.4.4/src/complex_io.cpp:512:30: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<n1*n2;i++) memcpy(b+i*nx, d->a, nx*sizeof(dual));
data/mathgl-2.4.4/src/complex_io.cpp:529:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<n2;i++) memcpy(b+i*mx*my, d->a, mx*my*sizeof(dual));
data/mathgl-2.4.4/src/complex_io.cpp:542:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(!strcmp(dim,"xyz")) memcpy(b,a,nx*ny*nz*sizeof(dual));
data/mathgl-2.4.4/src/complex_io.cpp:578:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a,b,nx*ny*nz*sizeof(dual)); delete []b;
data/mathgl-2.4.4/src/complex_io.cpp:583:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dim,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:622:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:643:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:653:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+kx*ky,d->a,kx*sizeof(dual)); ky++;
data/mathgl-2.4.4/src/complex_io.cpp:658:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+kx*ky*kz,d->a,kx*ky*sizeof(dual)); kz++;
data/mathgl-2.4.4/src/complex_io.cpp:667:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+kx,d->a,d->nx*sizeof(dual)); kx+=d->nx;
data/mathgl-2.4.4/src/complex_io.cpp:672:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+kx*ky,d->a,kx*d->ny*sizeof(dual)); ky+=d->ny;
data/mathgl-2.4.4/src/complex_io.cpp:677:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+kx*ky*kz,d->a,kx*ky*d->nz*sizeof(dual)); kz+=d->nz;
data/mathgl-2.4.4/src/complex_io.cpp:698:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d.a,kx*ky*kz*sizeof(dual));
data/mathgl-2.4.4/src/complex_io.cpp:713:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:733:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d.a,kx*ky*kz*sizeof(dual));
data/mathgl-2.4.4/src/complex_io.cpp:750:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:930:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:931:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *t=new char[n+1]; memcpy(t,data,n); t[n]=0;
data/mathgl-2.4.4/src/complex_io.cpp:934:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/complex_io.cpp:935:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *t=new char[n+1]; memcpy(t,data,n); t[n]=0;
data/mathgl-2.4.4/src/cont.cpp:48:2: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t L[2]=L"a";
data/mathgl-2.4.4/src/cont.cpp:88:23: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
if(mglchr(font,'T')) strcat(fnt,":T");
data/mathgl-2.4.4/src/cont.cpp:178:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,text,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:179:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,font,n); f[n]=0;
data/mathgl-2.4.4/src/cont.cpp:180:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:185:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,text,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:186:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,font,n); f[n]=0;
data/mathgl-2.4.4/src/cont.cpp:187:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:192:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,text,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:193:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,font,n); f[n]=0;
data/mathgl-2.4.4/src/cont.cpp:194:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:352:3: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t wcs[64];
data/mathgl-2.4.4/src/cont.cpp:460:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long j=1;j<m;j++) memcpy(xx.a+n*j,xx.a,n*sizeof(mreal));
data/mathgl-2.4.4/src/cont.cpp:579:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:580:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:585:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:586:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:590:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:591:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:595:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:596:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:812:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long j=1;j<m;j++) memcpy(xx.a+n*j,xx.a,n*sizeof(mreal));
data/mathgl-2.4.4/src/cont.cpp:861:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:862:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:867:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:868:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:872:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:873:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:878:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:879:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:906:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long j=1;j<m;j++) memcpy(xx.a+n*j,xx.a,n*sizeof(mreal));
data/mathgl-2.4.4/src/cont.cpp:935:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:936:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:941:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:942:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:976:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long j=1;j<m;j++) memcpy(xx.a+n*j,xx.a,n*sizeof(mreal));
data/mathgl-2.4.4/src/cont.cpp:1024:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1025:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1030:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1031:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1035:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1036:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1040:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1041:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1086:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long j=1;j<m;j++) memcpy(xx.a+n*j,xx.a,n*sizeof(mreal));
data/mathgl-2.4.4/src/cont.cpp:1140:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1141:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1146:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1147:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1151:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1152:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1156:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1157:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1311:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1312:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1317:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1318:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1322:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1323:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1328:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1329:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1366:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1367:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1372:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1373:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1408:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1409:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1414:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1415:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1474:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1475:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1480:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1481:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1486:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1487:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1492:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1493:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1659:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long j=1;j<m;j++) memcpy(xx.a+n*j,xx.a,n*sizeof(mreal));
data/mathgl-2.4.4/src/cont.cpp:1710:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1711:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1716:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1717:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1721:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1722:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1726:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1727:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/cont.cpp:1773:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/cont.cpp:1774:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:128:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:129:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:134:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:135:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:140:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:141:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:255:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:256:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:261:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:262:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:267:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:268:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:346:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:347:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:352:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:353:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:358:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:359:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:364:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:365:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:425:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:426:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:431:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:432:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:437:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:438:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:443:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:444:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:488:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:489:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:493:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:494:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:498:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:499:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:696:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/crust.cpp:713:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/crust.cpp:714:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/data.cpp:150:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,time,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:151:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[m+1]; memcpy(f,fmt,m); f[m]=0;
data/mathgl-2.4.4/src/data.cpp:369:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nx*ny*nz*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:375:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nx*ny*nz*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:381:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nx*ny*nz*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:386:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:443:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d->a,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:447:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:452:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:457:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:462:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:519:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d->a,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:523:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:528:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:533:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:538:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:603:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:608:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:613:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:618:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:678:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:683:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:688:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:693:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:704:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:716:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,a+nx*ny*d,nx*ny*(nz-d)*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:717:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+nx*ny*(nz-d),a,nx*ny*d*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:718:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a,b,nx*ny*nz*sizeof(mreal)); delete []b;
data/mathgl-2.4.4/src/data.cpp:725:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,a+nx*d,(nx*ny*nz-nx*d)*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:728:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+nx*(ny-d)+nx*ny*i,a+nx*ny*i,nx*d*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:729:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a,b,nx*ny*nz*sizeof(mreal)); delete []b;
data/mathgl-2.4.4/src/data.cpp:736:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,a+d,(nx*ny*nz-d)*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:739:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+nx-d+nx*i,a+nx*i,d*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:740:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a,b,nx*ny*nz*sizeof(mreal)); delete []b;
data/mathgl-2.4.4/src/data.cpp:788:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:810:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a,b,n*j*sizeof(mreal)); d->ny = j;
data/mathgl-2.4.4/src/data.cpp:1208:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,how,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:1225:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+nn*i,d->a+nx*i+n1,nn*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1236:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+nx*(i+nn*j),d->a+nx*(n1+i+ny*j),nx*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1245:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d->a+nx*ny*n1,nn*nx*ny*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1273:50: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ long ii=*i,jj=*j,kk=*k; char *s=new char[l+1]; memcpy(s,cond,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:1296:50: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ long ii=*i,jj=*j,kk=*k; char *s=new char[l+1]; memcpy(s,cond,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:1316:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,cond,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:1334:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,cond,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:1465:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a, b.a, nx*ny*nz*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1472:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[512];
data/mathgl-2.4.4/src/data.cpp:1473:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[128]; buf[0]=0;
data/mathgl-2.4.4/src/data.cpp:1514:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a+nn*k, d->a+nx*k,at*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1515:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at<nx) memcpy(b.a+at+num+nn*k, d->a+at+nx*k,(nx-at)*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1528:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a+nx*nn*k, d->a+nxy*k,at*nx*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1529:14: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at<ny) memcpy(b.a+nx*(at+num+nn*k), d->a+nx*(at+ny*k),(ny-at)*nx*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1531:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b.a+nx*(nn*k+at+i),d->a+nx*(ny*k+at),nx*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1533:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b.a+nx*(nn*k+at+i),d->a+nx*(ny*k+ny-1),nx*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1541:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a, d->a,at*nxy*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1542:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at<nz) memcpy(b.a+nxy*(at+num), d->a+nxy*at,(nz-at)*nxy*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1545:28: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<num;i++) memcpy(b.a+nxy*(at+i),d->a+nxy*at,nxy*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1548:28: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<num;i++) memcpy(b.a+nxy*(at+i),d->a+nxy*(nz-1),nxy*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1565:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a+nn*k, d->a+nx*k,at*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1566:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b.a+at+nn*k, d->a+at+num+nx*k,(nx-at-num)*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1577:13: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a+nx*nn*k, d->a+nx*ny*k,at*nx*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1578:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b.a+nx*(at+nn*k), d->a+nx*(at+num+ny*k),(ny-at-num)*nx*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1586:12: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(at>0) memcpy(b.a, d->a,at*nx*ny*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1587:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b.a+nx*ny*at, d->a+nx*ny*(at+num),(nz-at-num)*nx*ny*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:1659:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dirs,l); s[l]=0;
data/mathgl-2.4.4/src/data.cpp:1991:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,b,nn*sizeof(mreal)); delete []b;
data/mathgl-2.4.4/src/data.cpp:2037:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d->a,k*sizeof(mreal));
data/mathgl-2.4.4/src/data.cpp:2038:9: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(mv) memcpy(b+k,mv->a,m*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:276:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(d) memcpy(c,d->a,nx*ny*nz*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:284:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,nx*ny*sizeof(mreal)); p[2] = 1;
data/mathgl-2.4.4/src/data_ex.cpp:289:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,nx*p[2]*sizeof(mreal)); p[1] = p[2]; p[2] = 1;
data/mathgl-2.4.4/src/data_ex.cpp:295:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,p[0]*p[1]*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:298:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r->a,c,p[0]*p[1]*p[2]*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:302:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/data_ex.cpp:362:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(d) memcpy(c,d->a,nx*ny*nz*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:370:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,nx*ny*sizeof(mreal)); p[2] = 1;
data/mathgl-2.4.4/src/data_ex.cpp:375:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,nx*p[2]*sizeof(mreal)); p[1] = p[2]; p[2] = 1;
data/mathgl-2.4.4/src/data_ex.cpp:381:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,p[0]*p[1]*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:384:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r->a,c,p[0]*p[1]*p[2]*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:388:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/data_ex.cpp:448:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(d) memcpy(c,d->a,nx*ny*nz*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:456:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,nx*ny*sizeof(mreal)); p[2] = 1;
data/mathgl-2.4.4/src/data_ex.cpp:461:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,nx*p[2]*sizeof(mreal)); p[1] = p[2]; p[2] = 1;
data/mathgl-2.4.4/src/data_ex.cpp:467:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c,b,p[0]*p[1]*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:470:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r->a,c,p[0]*p[1]*p[2]*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:474:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/data_ex.cpp:614:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,how,l); s[l]=0;
data/mathgl-2.4.4/src/data_ex.cpp:930:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,func,l); s[l]=0;
data/mathgl-2.4.4/src/data_ex.cpp:931:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *v=new char[m+1]; memcpy(v,vars,m); v[m]=0;
data/mathgl-2.4.4/src/data_ex.cpp:985:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,func,l); s[l]=0;
data/mathgl-2.4.4/src/data_ex.cpp:989:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,func,l); s[l]=0;
data/mathgl-2.4.4/src/data_ex.cpp:1122:8: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(d) memcpy(c,d->a,nx*ny*nz*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:1146:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r->a,b,p[0]*p[1]*p[2]*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:1292:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,a->a+i0,nx*sizeof(mreal));
data/mathgl-2.4.4/src/data_ex.cpp:1293:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+nx,b->a+i0,nx*sizeof(mreal));
data/mathgl-2.4.4/src/data_gr.cpp:69:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,opt,l); s[l]=0;
data/mathgl-2.4.4/src/data_gr.cpp:79:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,opt,l); s[l]=0;
data/mathgl-2.4.4/src/data_gr.cpp:103:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/data_gr.cpp:104:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/data_gr.cpp:128:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/data_gr.cpp:129:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/data_io.cpp:55:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:102:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a+i,&(vals[0]),c*sizeof(mreal));
data/mathgl-2.4.4/src/data_io.cpp:116:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a, dd->a, d->nx*d->ny*d->nz*sizeof(mreal));
data/mathgl-2.4.4/src/data_io.cpp:129:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,v,n);
data/mathgl-2.4.4/src/data_io.cpp:134:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,val,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:166:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,A,NX*NY*NZ*sizeof(float));
data/mathgl-2.4.4/src/data_io.cpp:175:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a,A,NX*NY*NZ*sizeof(double));
data/mathgl-2.4.4/src/data_io.cpp:191:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<N1;i++) memcpy(d->a+i*N2,A[i],N2*sizeof(float));
data/mathgl-2.4.4/src/data_io.cpp:201:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<N1;i++) memcpy(d->a+i*N2,A[i],N2*sizeof(double));
data/mathgl-2.4.4/src/data_io.cpp:219:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a+N3*(j+i*N2),A[i][j],N3*sizeof(float));
data/mathgl-2.4.4/src/data_io.cpp:230:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d->a+N3*(j+i*N2),A[i][j],N3*sizeof(double));
data/mathgl-2.4.4/src/data_io.cpp:270:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:280:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,name,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:314:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
{ char buf[32]; snprintf(buf,32,"%g",val); return std::string(buf); }
data/mathgl-2.4.4/src/data_io.cpp:317:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/mathgl-2.4.4/src/data_io.cpp:357:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(fname,"w");
data/mathgl-2.4.4/src/data_io.cpp:361:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:428:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:486:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:487:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *t=new char[m+1]; memcpy(t,templ,m); t[m]=0;
data/mathgl-2.4.4/src/data_io.cpp:522:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:584:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:914:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<n1;i++) memcpy(b+i*nx*ny, d->a, nx*ny*sizeof(mreal));
data/mathgl-2.4.4/src/data_io.cpp:917:30: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<n1*n2;i++) memcpy(b+i*nx, d->a, nx*sizeof(mreal));
data/mathgl-2.4.4/src/data_io.cpp:935:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+i*mx*my, d->a, mx*my*sizeof(mreal));
data/mathgl-2.4.4/src/data_io.cpp:983:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
else memcpy(b,a,nx*ny*nz*sizeof(mreal));
data/mathgl-2.4.4/src/data_io.cpp:984:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(a,b,nx*ny*nz*sizeof(mreal)); delete []b;
data/mathgl-2.4.4/src/data_io.cpp:989:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dim,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1028:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1049:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1057:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[64];
data/mathgl-2.4.4/src/data_io.cpp:1159:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/mathgl-2.4.4/src/data_io.cpp:1201:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1202:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *t=new char[n+1]; memcpy(t,data,n); t[n]=0;
data/mathgl-2.4.4/src/data_io.cpp:1205:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1206:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *t=new char[n+1]; memcpy(t,data,n); t[n]=0;
data/mathgl-2.4.4/src/data_io.cpp:1209:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1219:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+kx*ky,d->a,kx*sizeof(mreal)); ky++;
data/mathgl-2.4.4/src/data_io.cpp:1224:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+kx*ky*kz,d->a,kx*ky*sizeof(mreal)); kz++;
data/mathgl-2.4.4/src/data_io.cpp:1233:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+kx,d->a,d->nx*sizeof(mreal)); kx+=d->nx;
data/mathgl-2.4.4/src/data_io.cpp:1238:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+kx*ky,d->a,kx*d->ny*sizeof(mreal)); ky+=d->ny;
data/mathgl-2.4.4/src/data_io.cpp:1243:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b+kx*ky*kz,d->a,kx*ky*d->nz*sizeof(mreal)); kz+=d->nz;
data/mathgl-2.4.4/src/data_io.cpp:1263:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d.a,kx*ky*kz*sizeof(mreal));
data/mathgl-2.4.4/src/data_io.cpp:1278:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1299:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(b,d.a,kx*ky*kz*sizeof(mreal));
data/mathgl-2.4.4/src/data_io.cpp:1316:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1338:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1384:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8], ch;
data/mathgl-2.4.4/src/data_io.cpp:1387:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,ptr+i*size,size);
data/mathgl-2.4.4/src/data_io.cpp:1393:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,ptr+i*size,size);
data/mathgl-2.4.4/src/data_io.cpp:1398:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,ptr+i*size,size);
data/mathgl-2.4.4/src/data_io.cpp:1422:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1432:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_io.cpp:1433:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *t=new char[n+1]; memcpy(t,data,n); t[n]=0;
data/mathgl-2.4.4/src/data_png.cpp:62:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(c+3*nc-3,cc+3*np-3,3); delete []cc;
data/mathgl-2.4.4/src/data_png.cpp:73:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(fname, "rb");
data/mathgl-2.4.4/src/data_png.cpp:99:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
for(long i=0;i<hi;i++) memcpy(*g+4*w*i,rows[i],4*wi);
data/mathgl-2.4.4/src/data_png.cpp:103:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*g+4*(w*i+j),rows[i]+3*j,3);
data/mathgl-2.4.4/src/data_png.cpp:124:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(fname, "rb");
data/mathgl-2.4.4/src/data_png.cpp:150:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*g+4*i*w,buf,4*wi);
data/mathgl-2.4.4/src/data_png.cpp:154:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(*g+4*i*w+4*j,buf+3*j,3);
data/mathgl-2.4.4/src/data_png.cpp:274:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(d+3*(j+i*nx),c+3*k,3);
data/mathgl-2.4.4/src/data_png.cpp:287:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_png.cpp:288:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,scheme,n); f[n]=0;
data/mathgl-2.4.4/src/data_png.cpp:291:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/data_png.cpp:292:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,scheme,n); f[n]=0;
data/mathgl-2.4.4/src/eval.cpp:298:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[128];
data/mathgl-2.4.4/src/eval.cpp:787:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,expr,l); s[l]=0;
data/mathgl-2.4.4/src/evalc.cpp:173:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[128];
data/mathgl-2.4.4/src/evalc.cpp:347:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,expr,l); s[l]=0;
data/mathgl-2.4.4/src/exec_dat.cpp:1322:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(a[1].s.s,"a");
data/mathgl-2.4.4/src/exec_dat.cpp:1331:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(a[1].s.s,a[2].s.s);
data/mathgl-2.4.4/src/exec_prm.cpp:272:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(a[2].s.s,"rt");
data/mathgl-2.4.4/src/exec_prm.cpp:291:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen(a[3].s.s,"rt");
data/mathgl-2.4.4/src/exec_set.cpp:618:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32]; sprintf(buf,"MathGL version is 2.%g",MGL_VER2);
data/mathgl-2.4.4/src/exec_set.cpp:618:16: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
char buf[32]; sprintf(buf,"MathGL version is 2.%g",MGL_VER2);
data/mathgl-2.4.4/src/export.cpp:50:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fl ? fopen(fname, "wb") : stdout;
data/mathgl-2.4.4/src/export.cpp:84:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fl ? fopen(fname, "wb") : stdout;
data/mathgl-2.4.4/src/export.cpp:117:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fl ? fopen(fname, "wb") : stdout;
data/mathgl-2.4.4/src/export.cpp:120:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char z[4] = {0,0,0,0};
data/mathgl-2.4.4/src/export.cpp:147:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fl ? fopen(fname, "wb") : stdout;
data/mathgl-2.4.4/src/export.cpp:150:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char head[14]={0,0,2, 0,0,0,0,0, 0,0,0,0, 32,0};
data/mathgl-2.4.4/src/export.cpp:174:18: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fl ? fopen(fname, "wb") : stdout;
data/mathgl-2.4.4/src/export.cpp:199:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[1024];
data/mathgl-2.4.4/src/export.cpp:228:48: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = gz ? (void*)gzopen(fname,"wt") : (void*)fopen(fname,"wt");
data/mathgl-2.4.4/src/export.cpp:233:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,fname,len);
data/mathgl-2.4.4/src/export.cpp:238:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fb = fopen(buf,"w");
data/mathgl-2.4.4/src/export.cpp:360:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char ext1[11] = {0x4E, 0x45, 0x54, 0x53, 0x43, 0x41, 0x50, 0x45, 0x32, 0x2E, 0x30};
data/mathgl-2.4.4/src/export.cpp:361:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char ext2[9] = {0x08, (unsigned char)(ms%256), (unsigned char)(ms/256), 0xff};
data/mathgl-2.4.4/src/export.cpp:362:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char ext3[3] = {0x01, 0xff, 0xff};
data/mathgl-2.4.4/src/export.cpp:455:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export.cpp:456:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export.cpp:472:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export.cpp:473:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export.cpp:489:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export.cpp:490:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export.cpp:506:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export.cpp:507:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export.cpp:523:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export.cpp:524:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export.cpp:540:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export.cpp:541:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export.cpp:557:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export.cpp:558:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export.cpp:564:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export.cpp:572:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/mathgl-2.4.4/src/export.cpp:604:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export.cpp:605:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export.cpp:649:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,viewer,l); s[l]=0;
data/mathgl-2.4.4/src/export_2d.cpp:208:53: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
else fp = gz ? (void*)gzopen(fname,"wt") : (void*)fopen(fname,"wt");
data/mathgl-2.4.4/src/export_2d.cpp:219:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,fname,len);
data/mathgl-2.4.4/src/export_2d.cpp:224:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fb = fopen(buf,"w");
data/mathgl-2.4.4/src/export_2d.cpp:302:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char white[3]={255,255,255};
data/mathgl-2.4.4/src/export_2d.cpp:326:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256]="", msk[256]="";
data/mathgl-2.4.4/src/export_2d.cpp:442:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_2d.cpp:443:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,descr,n); d[n]=0;
data/mathgl-2.4.4/src/export_2d.cpp:457:69: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(strcmp(fname,"-")) fp = gz ? (void*)gzopen(fname,"wt") : (void*)fopen(fname,"wt");
data/mathgl-2.4.4/src/export_2d.cpp:487:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char white[3]={255,255,255};
data/mathgl-2.4.4/src/export_2d.cpp:646:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_2d.cpp:647:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,descr,n); d[n]=0;
data/mathgl-2.4.4/src/export_2d.cpp:655:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(fname,"w");
data/mathgl-2.4.4/src/export_2d.cpp:686:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cname[128];
data/mathgl-2.4.4/src/export_2d.cpp:789:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen("mglmain.tex","wt");
data/mathgl-2.4.4/src/export_2d.cpp:800:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_2d.cpp:801:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,descr,n); d[n]=0;
data/mathgl-2.4.4/src/export_3d.cpp:302:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(fname,"wt");
data/mathgl-2.4.4/src/export_3d.cpp:333:5: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp=fopen(tname,"wt");
data/mathgl-2.4.4/src/export_3d.cpp:339:14: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
if(use_png) strcat(tname,"_texture.png");
data/mathgl-2.4.4/src/export_3d.cpp:341:8: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else strcat(tname,"_texture.tga");
data/mathgl-2.4.4/src/export_3d.cpp:357:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_3d.cpp:358:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,descr,n); d[n]=0;
data/mathgl-2.4.4/src/export_3d.cpp:364:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(fname,"wt");
data/mathgl-2.4.4/src/export_3d.cpp:409:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_3d.cpp:410:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,descr,n); d[n]=0;
data/mathgl-2.4.4/src/export_3d.cpp:417:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(fname,"wt"), *ff; // vertices definition
data/mathgl-2.4.4/src/export_3d.cpp:432:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
tname[len]='l'; fp = fopen(tname,"wt");
data/mathgl-2.4.4/src/export_3d.cpp:433:23: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
tname[len]='f'; ff = fopen(tname,"wt");
data/mathgl-2.4.4/src/export_3d.cpp:449:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_3d.cpp:450:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,descr,n); d[n]=0;
data/mathgl-2.4.4/src/export_3d.cpp:463:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(fname,"wt");
data/mathgl-2.4.4/src/export_3d.cpp:513:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_3d.cpp:514:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,descr,n); d[n]=0;
data/mathgl-2.4.4/src/export_3d.cpp:521:59: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void *fp = fl ? (gz ? (void*)gzopen(fname,"wt") : (void*)fopen(fname,"wt")) : stdout;
data/mathgl-2.4.4/src/export_3d.cpp:621:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_3d.cpp:622:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export_3d.cpp:628:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_3d.cpp:629:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export_3d.cpp:635:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(fname,"wt");
data/mathgl-2.4.4/src/export_3d.cpp:683:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_3d.cpp:684:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/export_3d.cpp:689:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(fname,"rt");
data/mathgl-2.4.4/src/export_3d.cpp:778:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_3d.cpp:1167:53: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void *fp = gz ? (void*)gzopen(fname,"wt") : (void*)fopen(fname,"wt");
data/mathgl-2.4.4/src/export_3d.cpp:1324:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/export_3d.cpp:1325:24: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,descr,n); d[n]=0;
data/mathgl-2.4.4/src/fft.cpp:835:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[4] = " ";
data/mathgl-2.4.4/src/fft.cpp:843:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[5] = " i";
data/mathgl-2.4.4/src/fft.cpp:874:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,tr,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:878:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,tr,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1004:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1118:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1148:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,how,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1152:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1155:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1160:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1163:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1166:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1169:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1205:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1220:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1299:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fft.cpp:1314:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dir,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:34:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mglFitRes[1024]; ///< Last fitted formula
data/mathgl-2.4.4/src/fit.cpp:55:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,prefix,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:56:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,font,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:221:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32]="";
data/mathgl-2.4.4/src/fit.cpp:310:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fit.a+k*nn,res->a,nn*sizeof(mreal));
data/mathgl-2.4.4/src/fit.cpp:349:28: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(ini && ini->nx>=fd.m) memcpy(ini->a,in.a,fd.m*sizeof(mreal));
data/mathgl-2.4.4/src/fit.cpp:396:28: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(ini && ini->nx>=fd.m) memcpy(ini->a,in.a,fd.m*sizeof(mreal));
data/mathgl-2.4.4/src/fit.cpp:439:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(ini && ini->nx>=fd.m) memcpy(ini->a,in.a,fd.m*sizeof(mreal));
data/mathgl-2.4.4/src/fit.cpp:503:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:507:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:511:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:525:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:526:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,var,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:527:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:533:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:534:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,var,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:535:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:541:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:542:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,var,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:543:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:549:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:550:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,var,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:551:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:557:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:558:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,var,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:559:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:565:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:566:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,var,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:567:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:573:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:574:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,var,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:575:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:581:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:582:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,var,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:583:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:589:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:590:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,var,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:591:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/fit.cpp:597:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,eq,l); s[l]=0;
data/mathgl-2.4.4/src/fit.cpp:598:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,var,n); d[n]=0;
data/mathgl-2.4.4/src/fit.cpp:599:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/font.cpp:138:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(wcs,str,size*sizeof(wchar_t));
data/mathgl-2.4.4/src/font.cpp:197:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(wcs,str,size*sizeof(wchar_t));
data/mathgl-2.4.4/src/font.cpp:308:2: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t s[128]=L""; // TeX command and current char
data/mathgl-2.4.4/src/font.cpp:402:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(str,text,(i+1)*sizeof(unsigned));
data/mathgl-2.4.4/src/font.cpp:644:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Buf, mgl_buf_fnt, mgl_cur*sizeof(short));
data/mathgl-2.4.4/src/font.cpp:652:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256];
data/mathgl-2.4.4/src/font.cpp:690:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
buf.push_back(atoi(str));
data/mathgl-2.4.4/src/font.cpp:701:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256];
data/mathgl-2.4.4/src/font.cpp:726:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
buf.push_back(atoi(str));
data/mathgl-2.4.4/src/font.cpp:756:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(fname,"wb");
data/mathgl-2.4.4/src/font.cpp:772:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256], sep='/';
data/mathgl-2.4.4/src/font.cpp:778:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(str,"rb"); if(!fp) return false;
data/mathgl-2.4.4/src/font.cpp:809:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[256];
data/mathgl-2.4.4/src/font.cpp:850:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
{ char str[256]; snprintf(str,256,"%s%c%s_b.vfm",path,sep,base); // this file may absent
data/mathgl-2.4.4/src/font.cpp:855:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
{ char str[256]; snprintf(str,256,"%s%c%s_i.vfm",path,sep,base);
data/mathgl-2.4.4/src/font.cpp:860:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
{ char str[256]; snprintf(str,256,"%s%c%s_bi.vfm",path,sep,base);
data/mathgl-2.4.4/src/font.cpp:867:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Buf,&norm[0],norm.size()*sizeof(short));
data/mathgl-2.4.4/src/font.cpp:870:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Buf+cur,&bold[0],bold.size()*sizeof(short));
data/mathgl-2.4.4/src/font.cpp:883:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Buf+cur,&ital[0],ital.size()*sizeof(short));
data/mathgl-2.4.4/src/font.cpp:896:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Buf+cur,&both[0],both.size()*sizeof(short));
data/mathgl-2.4.4/src/font.cpp:1004:41: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
numb = f->numb; Buf = new short[numb]; memcpy(Buf, f->Buf, numb*sizeof(short));
data/mathgl-2.4.4/src/font.cpp:1007:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&glyphs[0],&(f->glyphs)[0],glyphs.size()*sizeof(mglGlyphDescr));
data/mathgl-2.4.4/src/font.cpp:1031:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(f.c_str(),"r");
data/mathgl-2.4.4/src/font.cpp:1072:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,locale,l); s[l]=0;
data/mathgl-2.4.4/src/fractal.cpp:134:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/fractal.cpp:135:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *t=new char[m+1]; memcpy(t,name,m); t[m]=0;
data/mathgl-2.4.4/src/obj.cpp:421:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(fname,"wt");
data/mathgl-2.4.4/src/obj.cpp:448:14: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fpmat=fopen(tname,"wt");
data/mathgl-2.4.4/src/obj.cpp:460:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tname,"_txt.png");
data/mathgl-2.4.4/src/obj.cpp:462:3: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
strcat(tname,"_txt.tga");
data/mathgl-2.4.4/src/obj.cpp:957:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]='\0';
data/mathgl-2.4.4/src/obj.cpp:958:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *d=new char[n+1]; memcpy(d,descr,n); d[n]='\0';
data/mathgl-2.4.4/src/other.cpp:138:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:139:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:144:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:145:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:150:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:151:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:265:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:266:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:270:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:271:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:275:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:276:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:280:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:281:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:285:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:286:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:290:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:291:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:387:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:388:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:392:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:393:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:397:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:398:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:402:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:403:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:407:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:408:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/other.cpp:412:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/other.cpp:413:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/parser.cpp:43:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(BaseCmd, mgls_prg_cmd, na*sizeof(mglCommand)); nsum+=na;
data/mathgl-2.4.4/src/parser.cpp:44:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(BaseCmd+nsum,mgls_dat_cmd, nd*sizeof(mglCommand)); nsum+=nd;
data/mathgl-2.4.4/src/parser.cpp:45:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(BaseCmd+nsum,mgls_grf_cmd, ng*sizeof(mglCommand)); nsum+=ng;
data/mathgl-2.4.4/src/parser.cpp:46:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(BaseCmd+nsum,mgls_prm_cmd, np*sizeof(mglCommand)); nsum+=np;
data/mathgl-2.4.4/src/parser.cpp:47:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(BaseCmd+nsum,mgls_set_cmd, (ns+1)*sizeof(mglCommand)); nsum+=ns;
data/mathgl-2.4.4/src/parser.cpp:51:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *name[17] = { _("0 - special plot"), _("1 - other plot"), _("2 - setup"), _("3 - data handle"), _("4 - data create"), _("5 - subplot"), _("6 - program flow"), _("7 - 1d plot"), _("8 - 2d plot"), _("9 - 3d plot"), _("10 - dd plot"), _("11 - vector plot"), _("12 - axis"), _("13 - primitives"), _("14 - axis setup"), _("15 - text/legend"), _("16 - data transform") };
data/mathgl-2.4.4/src/parser.cpp:137:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[33]="";
data/mathgl-2.4.4/src/parser.cpp:176:5: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[64];
data/mathgl-2.4.4/src/parser.cpp:431:4: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[32];
data/mathgl-2.4.4/src/parser.cpp:649:5: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[2]={0,0}; buf[0] = wchar_t(d); AddParam(nn, buf);
data/mathgl-2.4.4/src/parser.cpp:665:12: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static wchar_t res[1024];
data/mathgl-2.4.4/src/parser.cpp:768:6: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/mathgl-2.4.4/src/parser.cpp:781:17: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(a[0].s.s,"rt");
data/mathgl-2.4.4/src/parser.cpp:849:6: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[32]; mglprintf(buf,32,L"%g",st.v.a[0]);
data/mathgl-2.4.4/src/parser.cpp:937:7: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[32]; mglprintf(buf,32,L"%g",st.v.a[st.ind]);
data/mathgl-2.4.4/src/parser.cpp:999:6: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[32]; mglprintf(buf,32,L"%g",st.v.a[st.ind]);
data/mathgl-2.4.4/src/parser.cpp:1020:6: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[32]; mglprintf(buf,32,L"%g",st.v.a[st.ind]);
data/mathgl-2.4.4/src/parser.cpp:1053:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/mathgl-2.4.4/src/parser.cpp:1084:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(wcs, text, s*sizeof(wchar_t));
data/mathgl-2.4.4/src/parser.cpp:1130:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, cmd, mc*sizeof(mglCommand));
data/mathgl-2.4.4/src/parser.cpp:1131:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf+mc, Cmd, (mp+1)*sizeof(mglCommand));
data/mathgl-2.4.4/src/parser.cpp:1167:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,str,l); s[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1171:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,name,l); s[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1175:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,name,l); s[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1178:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,name,l); s[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1181:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,str,l); s[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1184:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,str,l); s[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1220:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,str,l); s[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1244:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,str,l); s[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1252:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,str,l); s[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1274:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,dll_name,l); s[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1448:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *e=new char[l+1]; memcpy(e,eqs,l); e[l]=0;
data/mathgl-2.4.4/src/parser.cpp:1449:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[m+1]; memcpy(s,vars,m); s[m]=0;
data/mathgl-2.4.4/src/parser.cpp:1469:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/pde.cpp:214:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(u.a,a+nx/2,nx*sizeof(dual));
data/mathgl-2.4.4/src/pde.cpp:215:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(res->a+k*nx,a+nx/2,nx*sizeof(dual));
data/mathgl-2.4.4/src/pde.cpp:238:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,ham,l); s[l]=0;
data/mathgl-2.4.4/src/pde.cpp:239:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/pde.cpp:244:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,ham,l); s[l]=0;
data/mathgl-2.4.4/src/pde.cpp:245:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/pde.cpp:434:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,ham,l); s[l]=0;
data/mathgl-2.4.4/src/pde.cpp:435:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/pde.cpp:440:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,ham,l); s[l]=0;
data/mathgl-2.4.4/src/pde.cpp:441:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/pde.cpp:566:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,ham,l); s[l]=0;
data/mathgl-2.4.4/src/pde.cpp:623:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ra,ra+1,sizeof(mgl_ap)); // setup zero point
data/mathgl-2.4.4/src/pde.cpp:779:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,ham,l); s[l]=0;
data/mathgl-2.4.4/src/pde.cpp:1002:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,ham,l); s[l]=0;
data/mathgl-2.4.4/src/pde.cpp:1273:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r->a+k*np, T.a+np, np*sizeof(mreal));
data/mathgl-2.4.4/src/pde.cpp:1281:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,how,l); s[l]=0;
data/mathgl-2.4.4/src/pde.cpp:1431:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(r->a+k*np, T.a+np, np*sizeof(dual));
data/mathgl-2.4.4/src/pde.cpp:1439:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,how,l); s[l]=0;
data/mathgl-2.4.4/src/pixel.cpp:182:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[4]={0,0,0,255};
data/mathgl-2.4.4/src/pixel.cpp:227:63: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void mglCanvas::pnt_plot(long x,long y,mreal z,const unsigned char ci[4], int obj_id)
data/mathgl-2.4.4/src/pixel.cpp:245:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cb[4] = {BDef[0], BDef[1], BDef[2], (unsigned char)d};
data/mathgl-2.4.4/src/pixel.cpp:399:51: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
int inline visible(long i, long j, const unsigned char m[8], mreal pw, int a) // Check if pixel visible
data/mathgl-2.4.4/src/pixel.cpp:452:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[4];
data/mathgl-2.4.4/src/pixel.cpp:522:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[4];
data/mathgl-2.4.4/src/pixel.cpp:590:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[4];
data/mathgl-2.4.4/src/pixel.cpp:653:63: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
void mglCanvas::pnt_fast(long x,long y,mreal z,const unsigned char ci[4], int obj_id)
data/mathgl-2.4.4/src/pixel.cpp:667:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[4]; col2int(p1,r,oi);
data/mathgl-2.4.4/src/pixel.cpp:698:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cs[4], cc;
data/mathgl-2.4.4/src/pixel.cpp:722:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cs[4]; col2int(q,cs,oi);
data/mathgl-2.4.4/src/pixel.cpp:1232:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[4]; col2int(pp,r,oi);
data/mathgl-2.4.4/src/pixel_gen.cpp:163:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(OI+i,gr->OI+i,dd*sizeof(int));
data/mathgl-2.4.4/src/pixel_gen.cpp:164:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Z+3*i,gr->Z+3*i,3*dd*sizeof(float));
data/mathgl-2.4.4/src/pixel_gen.cpp:165:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(C+12*i,gr->C+12*i,12*dd);
data/mathgl-2.4.4/src/pixel_gen.cpp:391:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cb[4] = {BDef[0], BDef[1], BDef[2], d};
data/mathgl-2.4.4/src/pixel_gen.cpp:478:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char ff[8]={255,255,255,255, 0,0,0,255}, *g1 = G4+BBoxX1*4-4;
data/mathgl-2.4.4/src/pixel_gen.cpp:541:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(GB,G4,4*Width*Height);
data/mathgl-2.4.4/src/pixel_pix.cpp:96:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[4]; col2int(p,r,d->ObjId);
data/mathgl-2.4.4/src/pixel_pix.cpp:114:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[4];
data/mathgl-2.4.4/src/pixel_pix.cpp:132:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char r[4];
data/mathgl-2.4.4/src/pixel_pix.cpp:143:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cs[4];
data/mathgl-2.4.4/src/pixel_pix.cpp:153:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char cs[4]; col2int(q,cs,d->ObjId); cs[3] = size>0 ? 255 : 255*q.t;
data/mathgl-2.4.4/src/plot.cpp:135:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[ly+1]; memcpy(s,fy,ly); s[ly]=0;
data/mathgl-2.4.4/src/plot.cpp:136:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *p=new char[ls+1]; memcpy(p,stl,ls); p[ls]=0;
data/mathgl-2.4.4/src/plot.cpp:137:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:142:28: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *sx=new char[lx+1]; memcpy(sx,fx,lx); sx[lx]=0;
data/mathgl-2.4.4/src/plot.cpp:143:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *sy=new char[ly+1]; memcpy(sy,fy,ly); sy[ly]=0;
data/mathgl-2.4.4/src/plot.cpp:144:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *sz=new char[lz+1]; memcpy(sz,fz,lz); sz[lz]=0;
data/mathgl-2.4.4/src/plot.cpp:145:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:146:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *p=new char[ls+1]; memcpy(p,stl,ls); p[ls]=0;
data/mathgl-2.4.4/src/plot.cpp:195:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:196:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:277:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:278:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:282:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:283:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:287:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:288:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:404:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:405:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:409:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:410:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:414:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:415:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:479:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:480:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:484:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:485:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:489:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:490:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:605:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:606:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:610:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:611:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:615:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:616:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:833:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:834:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:838:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:839:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:843:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:844:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:954:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:955:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:959:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:960:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:964:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:965:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1048:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1049:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1053:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1054:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1058:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1059:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1239:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1240:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1244:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1245:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1249:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1250:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1345:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1346:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1350:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1351:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1358:50: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void MGL_EXPORT mgl_ohlc_x(HMGL gr, HCDT x, HCDT open, HCDT high, HCDT low, HCDT close, const char *pen, const char *opt)
data/mathgl-2.4.4/src/plot.cpp:1411:40: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void MGL_EXPORT mgl_ohlc(HMGL gr, HCDT open, HCDT high, HCDT low, HCDT close, const char *pen, const char *opt)
data/mathgl-2.4.4/src/plot.cpp:1415:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
mgl_ohlc_x(gr,&x,open,high,low,close,pen,0);
data/mathgl-2.4.4/src/plot.cpp:1418:69: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void MGL_EXPORT mgl_ohlc_x_(uintptr_t *gr, uintptr_t *x, uintptr_t *open, uintptr_t *high, uintptr_t *low, uintptr_t *close, const char *pen, const char *opt,int l,int lo)
data/mathgl-2.4.4/src/plot.cpp:1419:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1420:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1421:31: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
mgl_ohlc_x(_GR_,_DA_(x),_DA_(open),_DA_(high),_DA_(low),_DA_(close),s,o); delete []o; delete []s; }
data/mathgl-2.4.4/src/plot.cpp:1423:53: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
void MGL_EXPORT mgl_ohlc_(uintptr_t *gr, uintptr_t *open, uintptr_t *high, uintptr_t *low, uintptr_t *close, const char *pen, const char *opt,int l,int lo)
data/mathgl-2.4.4/src/plot.cpp:1424:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1425:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1426:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
mgl_ohlc(_GR_,_DA_(open),_DA_(high),_DA_(low),_DA_(close),s,o); delete []o; delete []s; }
data/mathgl-2.4.4/src/plot.cpp:1516:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1517:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1521:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1522:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1749:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1750:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1754:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1755:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1759:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1760:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1850:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,col,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1851:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1907:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1908:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1913:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1914:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:1918:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:1919:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2023:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2024:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2029:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2030:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2034:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2035:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2039:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2040:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2044:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2045:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2049:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2050:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2150:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2151:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2155:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2156:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2160:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2161:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2218:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2219:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2224:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2225:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/plot.cpp:2229:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/plot.cpp:2230:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prc.cpp:237:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(p->data + p->size, data, length);
data/mathgl-2.4.4/src/prc.cpp:979:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(tname,"wt");
data/mathgl-2.4.4/src/prc.cpp:989:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/prc.cpp:990:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,descr,n); f[n]=0;
data/mathgl-2.4.4/src/prc/oPRCFile.cc:1075:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, p, size);
data/mathgl-2.4.4/src/prc/oPRCFile.cc:1138:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, compressedData, compressedDataSize);
data/mathgl-2.4.4/src/prim.cpp:43:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:78:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:105:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:131:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:186:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:190:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:194:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:198:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:282:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:317:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64];
data/mathgl-2.4.4/src/prim.cpp:321:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"{&%g}",gr->NextColor(pal));
data/mathgl-2.4.4/src/prim.cpp:324:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
{ sprintf(buf,"{&%g}",gr->NextColor(pal)); c2 = cb+buf; }
data/mathgl-2.4.4/src/prim.cpp:363:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:364:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:368:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:369:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:373:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,pen,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:374:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:448:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:452:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:456:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:551:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:555:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:566:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:609:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:668:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:669:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:673:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:674:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:711:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *f=new char[n+1]; memcpy(f,how,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:714:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *f=new char[n+1]; memcpy(f,how,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:757:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,font,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:763:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,font,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:838:32: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ wchar_t *s=new wchar_t[l+1]; memcpy(s,text,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:839:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,fnt,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:840:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:846:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,fnt,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:847:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:853:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,fnt,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:854:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:859:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,fnt,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:860:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:878:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fmt[8]="2",ss[2]=" ";
data/mathgl-2.4.4/src/prim.cpp:897:31: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
else if(text[k+1]=='n') { wchar_t tmp[32]; mglprintf(tmp,32,L"%ld",i); buf += tmp; }
data/mathgl-2.4.4/src/prim.cpp:938:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,fnt,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:939:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:945:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,fnt,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:946:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:952:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,fnt,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:953:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:973:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,fnt,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:974:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/prim.cpp:1035:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,fname,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:1036:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[n+1]; memcpy(f,opt,n); f[n]=0;
data/mathgl-2.4.4/src/prim.cpp:1075:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64]=""; if(r>2) sprintf(buf,"value %g",r);
data/mathgl-2.4.4/src/prim.cpp:1075:27: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
char buf[64]=""; if(r>2) sprintf(buf,"value %g",r);
data/mathgl-2.4.4/src/prim.cpp:1090:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:1091:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[n+1]; memcpy(o,opt,n); o[n]=0;
data/mathgl-2.4.4/src/prim.cpp:1095:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:1096:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[n+1]; memcpy(o,opt,n); o[n]=0;
data/mathgl-2.4.4/src/prim.cpp:1097:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[m+1]; memcpy(f,func,m); f[m]=0;
data/mathgl-2.4.4/src/prim.cpp:1125:10: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
m2=m1; memcpy(v2,v1,n*sizeof(double)); r=r0;
data/mathgl-2.4.4/src/prim.cpp:1153:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[64]=""; if(r>2) sprintf(buf,"value %g",r);
data/mathgl-2.4.4/src/prim.cpp:1153:27: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
char buf[64]=""; if(r>2) sprintf(buf,"value %g",r);
data/mathgl-2.4.4/src/prim.cpp:1170:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:1171:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[n+1]; memcpy(o,opt,n); o[n]=0;
data/mathgl-2.4.4/src/prim.cpp:1175:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,stl,l); s[l]=0;
data/mathgl-2.4.4/src/prim.cpp:1176:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[n+1]; memcpy(o,opt,n); o[n]=0;
data/mathgl-2.4.4/src/prim.cpp:1177:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *f=new char[m+1]; memcpy(f,func,m); f[m]=0;
data/mathgl-2.4.4/src/prim.cpp:1281:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *i=new char[l+1]; memcpy(i,ids,l); i[l]=0;
data/mathgl-2.4.4/src/prim.cpp:1282:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[m+1]; memcpy(s,stl,m); s[m]=0;
data/mathgl-2.4.4/src/prim.cpp:1283:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[n+1]; memcpy(o,opt,n); o[n]=0;
data/mathgl-2.4.4/src/prim.cpp:1287:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *i=new char[l+1]; memcpy(i,ids,l); i[l]=0;
data/mathgl-2.4.4/src/prim.cpp:1288:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s=new char[m+1]; memcpy(s,stl,m); s[m]=0;
data/mathgl-2.4.4/src/prim.cpp:1289:25: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[n+1]; memcpy(o,opt,n); o[n]=0;
data/mathgl-2.4.4/src/s_hull/s_hull_pro.cpp:79:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s0[513];
data/mathgl-2.4.4/src/s_hull/s_hull_pro.cpp:89:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
myfile.open(fname);
data/mathgl-2.4.4/src/surf.cpp:104:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[ly+1]; memcpy(s,fy,ly); s[ly]=0;
data/mathgl-2.4.4/src/surf.cpp:105:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *p=new char[ls+1]; memcpy(p,stl,ls); p[ls]=0;
data/mathgl-2.4.4/src/surf.cpp:106:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:111:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *sx=new char[lx+1]; memcpy(sx,fx,lx); sx[lx]=0;
data/mathgl-2.4.4/src/surf.cpp:112:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *sy=new char[ly+1]; memcpy(sy,fy,ly); sy[ly]=0;
data/mathgl-2.4.4/src/surf.cpp:113:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *sz=new char[lz+1]; memcpy(sz,fz,lz); sz[lz]=0;
data/mathgl-2.4.4/src/surf.cpp:114:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *p=new char[ls+1]; memcpy(p,stl,ls); p[ls]=0;
data/mathgl-2.4.4/src/surf.cpp:115:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:160:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:161:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:165:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:166:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:209:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:210:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:214:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:215:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:256:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:257:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:261:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:262:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:336:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:337:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:341:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:342:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:368:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:369:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:373:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:374:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:399:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:400:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:404:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:405:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:430:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:431:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:435:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:436:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:511:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:512:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:516:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:517:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:521:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:522:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:526:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:527:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:557:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:558:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:562:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:563:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:577:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:578:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:582:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:583:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:698:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:699:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:703:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:704:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:805:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:806:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:810:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:811:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:815:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:816:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:919:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:920:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:924:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:925:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:929:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:930:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:996:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:997:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/surf.cpp:1001:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/surf.cpp:1002:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:90:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:91:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:95:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:96:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:192:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:193:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:198:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:199:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:295:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:296:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:301:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:302:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:505:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:506:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:511:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:512:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:731:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:732:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:735:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:736:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:808:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:809:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:813:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:814:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1040:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1041:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1044:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1045:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1096:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1097:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1100:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1101:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1182:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1183:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1187:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1188:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1239:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1240:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1244:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1245:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1249:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1250:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1445:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1446:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1449:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1450:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1665:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1666:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/vect.cpp:1670:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/vect.cpp:1671:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:94:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:95:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:99:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:100:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:266:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(kx1,kx2,n*m*sizeof(long)); memset(kx2,-1,n*m*sizeof(long));
data/mathgl-2.4.4/src/volume.cpp:267:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(ky1,ky2,n*m*sizeof(long)); memset(ky2,-1,n*m*sizeof(long));
data/mathgl-2.4.4/src/volume.cpp:398:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:399:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:403:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:404:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:408:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:409:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:413:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:414:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:474:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:475:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:480:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:481:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:485:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:486:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:491:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:492:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:540:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:541:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:546:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:547:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:551:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:552:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:557:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:558:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:606:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:607:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:612:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:613:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:617:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:618:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:623:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:624:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *o=new char[lo+1]; memcpy(o,opt,lo); o[lo]=0;
data/mathgl-2.4.4/src/volume.cpp:692:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/volume.cpp:696:26: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
{ char *s=new char[l+1]; memcpy(s,sch,l); s[l]=0;
data/mathgl-2.4.4/src/window.cpp:68:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(GG + CurFig*Width*Height*3,G,3*Width*Height);
data/mathgl-2.4.4/src/window.cpp:75:23: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
if(i>=0 && i<NumFig) memcpy(GG + i*Width*Height*3,G,3*Width*Height);
data/mathgl-2.4.4/src/window.cpp:288:5: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t buf[128]; swprintf(buf,128,L"%g",a);
data/mathgl-2.4.4/src/window.cpp:341:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128]; snprintf(buf,128,"%g",a);
data/mathgl-2.4.4/udav/open_dlg.cpp:57:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32]; snprintf(buf,32,"mgl_%d",numDataOpened); buf[31]=0;
data/mathgl-2.4.4/udav/open_dlg.cpp:117:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32]; snprintf(buf,32,"mgl_%d",numDataOpened);
data/mathgl-2.4.4/udav/open_dlg.cpp:156:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(fp.open(QFile::ReadOnly | QIODevice::Text))
data/mathgl-2.4.4/udav/qmglsyntax.cpp:84:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *o[13]={"xrange","yrange","zrange","cut","meshnum","alpha","light","ambient","diffuse","size","legend","number","value"};
data/mathgl-2.4.4/udav/qmglsyntax.cpp:104:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *o[6]={"nan","inf","pi","on","off","all"};
data/mathgl-2.4.4/udav/setup_dlg.cpp:123:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char s[3] = "0:";
data/mathgl-2.4.4/udav/setup_dlg.cpp:158:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(!f.open(QIODevice::WriteOnly))
data/mathgl-2.4.4/udav/text_pnl.cpp:300:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/mathgl-2.4.4/udav/text_pnl.cpp:375:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, txt.toLocal8Bit().constData(), dims[0]);
data/mathgl-2.4.4/udav/text_pnl.cpp:384:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[256];
data/mathgl-2.4.4/udav/text_pnl.cpp:429:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(!f.open(QIODevice::ReadOnly))
data/mathgl-2.4.4/udav/text_pnl.cpp:480:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if(!f.open(QIODevice::WriteOnly))
data/mathgl-2.4.4/udav/textedit.cpp:313:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
err.push_back(atoi(s+8));
data/mathgl-2.4.4/utils/make_forth.cpp:32:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char res[1024]; memset(res,0,1024);
data/mathgl-2.4.4/utils/make_forth.cpp:33:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr,*arg[20],nul=0; // TODO check if 20 arguments is enough
data/mathgl-2.4.4/utils/make_forth.cpp:36:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(fnc,res,i); fnc[i]=0; // copy name for later
data/mathgl-2.4.4/utils/make_forth.cpp:60:34: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
if(!strncmp(arg[j],"HMGL ",5)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:61:39: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"HADT ",5)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:62:39: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"HCDT ",5)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:63:39: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"HMDT ",5)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:64:39: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"HMPR ",5)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:65:39: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"HMEX ",5)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:66:48: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"const float *",13)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:67:49: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"const double *",14)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:68:41: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"mreal *",7)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:69:42: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"double *",8)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:70:40: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"char *",6)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:71:40: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"int *",5)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:72:40: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"long *",6)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:73:47: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"const char *",12)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:74:50: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"const wchar_t *",15)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:75:40: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"char ",5)) strcat(res, "char ");
data/mathgl-2.4.4/utils/make_forth.cpp:76:40: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"long ",5)) strcat(res, "int ");
data/mathgl-2.4.4/utils/make_forth.cpp:77:43: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"uint32_t ",9)) strcat(res, "int ");
data/mathgl-2.4.4/utils/make_forth.cpp:78:39: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"int ",4)) strcat(res, "int ");
data/mathgl-2.4.4/utils/make_forth.cpp:79:40: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"mreal ",6)) strcat(res, "sf ");
data/mathgl-2.4.4/utils/make_forth.cpp:80:41: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"double ",7)) strcat(res, "double ");
data/mathgl-2.4.4/utils/make_forth.cpp:81:47: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"gsl_vector *",12)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:82:47: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
else if(!strncmp(arg[j],"gsl_matrix *",12)) strcat(res, "ptr ");
data/mathgl-2.4.4/utils/make_forth.cpp:91:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp=fopen(fname,"rt");
data/mathgl-2.4.4/utils/make_forth.cpp:94:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024], *ptr, fnc[128]="";
data/mathgl-2.4.4/utils/make_forth.cpp:163:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fout = fopen("../include/mgl2/mgl.fs","wt");
data/mathgl-2.4.4/utils/make_pas.cpp:215:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char argname[32];
data/mathgl-2.4.4/utils/make_pas.cpp:232:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char res[1024];
data/mathgl-2.4.4/utils/make_pas.cpp:233:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr, *arg[MAX_ARG], nul = 0;
data/mathgl-2.4.4/utils/make_pas.cpp:355:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(fname, "rt");
data/mathgl-2.4.4/utils/make_pas.cpp:363:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024], *ptr;
data/mathgl-2.4.4/utils/make_pas.cpp:505:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fout = fopen("../../include/mgl2/mgl_pas.pas", "wt");
data/mathgl-2.4.4/utils/mglcgi.cpp:69:12: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
long len=atol(getenv("CONTENT_LENGTH"));
data/mathgl-2.4.4/utils/mglconv.cpp:37:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[2048], iname[256]="", oname[256]="";
data/mathgl-2.4.4/utils/mglconv.cpp:48:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(optarg,"r");
data/mathgl-2.4.4/utils/mglconv.cpp:60:34: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if(ch=='q') gr.SetQuality(atoi(optarg));
data/mathgl-2.4.4/utils/mglconv.cpp:61:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if(ch=='v') p.SetVariant(atoi(optarg));
data/mathgl-2.4.4/utils/mglconv.cpp:62:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if(ch=='g') gr.Gray(atoi(optarg));
data/mathgl-2.4.4/utils/mglconv.cpp:74:4: [2] (buffer) wchar_t:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
wchar_t num[64];
data/mathgl-2.4.4/utils/mglconv.cpp:108:61: [2] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant string.
if(*oname==0) { mgl_strncpy(oname,*iname?iname:"out",250); strcat(oname,".png"); }
data/mathgl-2.4.4/utils/mglconv.cpp:113:20: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = *iname?fopen(iname,"r"):stdin;
data/mathgl-2.4.4/utils/mgltask.cpp:99:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[1024],*buf;
data/mathgl-2.4.4/utils/mgltask.cpp:121:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fm = fopen(argv[1],"r");
data/mathgl-2.4.4/utils/mgltask.cpp:122:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fo = fopen(argv[2],"w");
data/mathgl-2.4.4/utils/mglview.cpp:59:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iname[256]="";
data/mathgl-2.4.4/utils/mglview.cpp:68:15: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = fopen(optarg,"r");
data/mathgl-2.4.4/utils/mglview.cpp:76:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if(ch=='v') p.SetVariant(atoi(optarg));
data/mathgl-2.4.4/utils/mglview.cpp:77:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
else if(ch=='g') gray= atoi(optarg);
data/mathgl-2.4.4/utils/mglview.cpp:106:21: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
FILE *fp = *iname?fopen(iname,"r"):stdin;
data/mathgl-2.4.4/widgets/fltk.cpp:72:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[1024]; *res=0; // TODO
data/mathgl-2.4.4/widgets/fltk.cpp:147:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[5]="0.0";
data/mathgl-2.4.4/widgets/fltk.cpp:793:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/mathgl-2.4.4/widgets/fltk.cpp:1009:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static const char *sch[4]={"base","gtk+","plastic","gleam"};
data/mathgl-2.4.4/widgets/fltk.cpp:1040:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char ctmp[1]; ctmp[0]=0;
data/mathgl-2.4.4/widgets/fltk.cpp:1041:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char *tmp[1]; tmp[0]=ctmp;
data/mathgl-2.4.4/widgets/fltk.cpp:1061:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s = new char[l+1]; memcpy(s,title,l); s[l]=0;
data/mathgl-2.4.4/widgets/fltk.cpp:1128:27: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
double v = o->value(); char buf[32];
data/mathgl-2.4.4/widgets/fltk.cpp:1129:4: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(buf,"%g",v); s = buf; break; }
data/mathgl-2.4.4/widgets/fltk.cpp:1180:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int v = atoi(args); o->value(v!=0 || !strcmp(args,"on"));
data/mathgl-2.4.4/widgets/glut.cpp:145:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[128];
data/mathgl-2.4.4/widgets/glut.cpp:151:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[128];
data/mathgl-2.4.4/widgets/glut.cpp:157:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[128];
data/mathgl-2.4.4/widgets/glut.cpp:163:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[128];
data/mathgl-2.4.4/widgets/glut.cpp:216:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *tmp[1]; tmp[0]=new char[1]; tmp[0][0]=0;
data/mathgl-2.4.4/widgets/qt.cpp:1314:27: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
char *s = new char[l+1]; memcpy(s,title,l); s[l]=0;
data/mathgl-2.4.4/widgets/wx.cpp:221:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp,bb,3*w*h);
data/mathgl-2.4.4/addons/getopt/getopt.c:208:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (namelen == (unsigned int)strlen(p->name))
data/mathgl-2.4.4/addons/getopt/getopt.c:245:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:271:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:286:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:291:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:369:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((unsigned int) (nameend - d->__nextchar) == strlen(p->name))
data/mathgl-2.4.4/addons/getopt/getopt.c:390:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:407:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:421:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:427:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += strlen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:666:34: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (namelen == (unsigned int)wcslen(p->name))
data/mathgl-2.4.4/addons/getopt/getopt.c:703:22: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += wcslen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:729:24: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += wcslen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:744:24: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += wcslen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:749:22: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += wcslen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:827:54: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((unsigned int) (nameend - d->__nextchar) == wcslen(p->name))
data/mathgl-2.4.4/addons/getopt/getopt.c:848:23: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += wcslen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:865:25: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += wcslen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:879:25: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += wcslen(d->__nextchar);
data/mathgl-2.4.4/addons/getopt/getopt.c:885:23: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
d->__nextchar += wcslen(d->__nextchar);
data/mathgl-2.4.4/examples/full_test.cpp:379:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t ll=strlen(mmgl_dat_prepare)+1;
data/mathgl-2.4.4/examples/full_test.cpp:399:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *buf = new char[strlen(s->mgl)+ll];
data/mathgl-2.4.4/examples/full_test.cpp:447:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *buf = new char[strlen(s->mgl)+strlen(mmgl_dat_prepare)+1];
data/mathgl-2.4.4/examples/full_test.cpp:447:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *buf = new char[strlen(s->mgl)+strlen(mmgl_dat_prepare)+1];
data/mathgl-2.4.4/examples/full_test.cpp:474:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *buf = new char[strlen(s->mgl)+strlen(mmgl_dat_prepare)+1];
data/mathgl-2.4.4/examples/full_test.cpp:474:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *buf = new char[strlen(s->mgl)+strlen(mmgl_dat_prepare)+1];
data/mathgl-2.4.4/include/mgl2/define.h:100:16: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
#define gzgetc fgetc
data/mathgl-2.4.4/include/mgl2/define.h:313:61: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
inline void mgl_strncpy(char *a, const char *b, size_t s) { strncpy(a,b,s); a[s-1]=0; }
data/mathgl-2.4.4/include/mgl2/type.h:190:15: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t ls = wcslen(str.w)+1;
data/mathgl-2.4.4/include/mgl2/type.h:211:15: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len=wcslen(str);
data/mathgl-2.4.4/include/mgl2/type.h:232:11: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
{ return wcslen(w); }
data/mathgl-2.4.4/include/mgl2/type.h:260:15: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t ls = wcslen(str.w)+1;
data/mathgl-2.4.4/include/mgl2/type.h:305:15: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len=wcslen(str);
data/mathgl-2.4.4/include/mgl2/type.h:318:14: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l1=wcslen(w), l2=wcslen(str);
data/mathgl-2.4.4/include/mgl2/type.h:318:28: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l1=wcslen(w), l2=wcslen(str);
data/mathgl-2.4.4/mgllab/dialogs.cpp:257:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(cv>0 && cv<long(strlen(cols)))
data/mathgl-2.4.4/mgllab/editor.cpp:62:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t i,n=strlen(s);
data/mathgl-2.4.4/mgllab/editor.cpp:86:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n=strlen(s);
data/mathgl-2.4.4/mgllab/editor.cpp:112:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long i,n=strlen(s)+1;
data/mathgl-2.4.4/mgllab/editor.cpp:125:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n=strlen(text);
data/mathgl-2.4.4/mgllab/editor.cpp:250:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(long i=strlen(buf)-1;i>=0;i--) if(buf[i]==sep)
data/mathgl-2.4.4/mgllab/editor.cpp:322:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long len = strlen(newfile);
data/mathgl-2.4.4/mgllab/editor.cpp:341:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t i,l=strlen(t);
data/mathgl-2.4.4/mgllab/editor.cpp:450:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t ll = strlen(s);
data/mathgl-2.4.4/mgllab/editor.cpp:580:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(s);
data/mathgl-2.4.4/mgllab/editor.cpp:599:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(r);
data/mathgl-2.4.4/mgllab/editor.cpp:600:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
textbuf->select(pos, pos+strlen(s));
data/mathgl-2.4.4/mgllab/editor.cpp:622:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(r);
data/mathgl-2.4.4/mgllab/editor.cpp:623:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
textbuf->select(pos, pos+strlen(s));
data/mathgl-2.4.4/mgllab/mathgl.cpp:120:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long n=strlen(fname);
data/mathgl-2.4.4/mgllab/mathgl.cpp:123:9: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
else { strcat(fname,"."); strcat(fname,ext); }
data/mathgl-2.4.4/mgllab/mathgl.cpp:255:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = j?(j-s):strlen(s);
data/mathgl-2.4.4/mgllab/mathgl.cpp:329:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n=strlen(text);
data/mathgl-2.4.4/mgllab/mathgl.cpp:335:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = l2?l2-l1:strlen(l1), st=l1-text;
data/mathgl-2.4.4/mgllab/mathgl.cpp:413:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
Fl::copy(s,strlen(s),1); free(s);
data/mathgl-2.4.4/mgllab/mgllab.cpp:161:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *str = new char[strlen(file)+4];
data/mathgl-2.4.4/mgllab/mgllab.cpp:162:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snprintf(str,strlen(file)+4," '%s'",file);
data/mathgl-2.4.4/mgllab/mgllab.cpp:234:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fname = new char[strlen(newfile)+5];
data/mathgl-2.4.4/src/addon.cpp:32:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(str),i,n;
data/mathgl-2.4.4/src/addon.cpp:40:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(tmp);
data/mathgl-2.4.4/src/addon.cpp:87:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len=strlen(str);
data/mathgl-2.4.4/src/axis.cpp:139:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long i=0,len=strlen(lbl);
data/mathgl-2.4.4/src/axis.cpp:410:13: [1] (buffer) wcscpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using a function version that stops copying at the end
of the buffer. Risk is low because the source is a constant character.
if(d==0) wcscpy(buf,L"1");
data/mathgl-2.4.4/src/axis.cpp:480:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(size_t i=0;i<strlen(ar);i++)
data/mathgl-2.4.4/src/base.cpp:57:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *r = (char *)malloc((strlen(s)+1)*sizeof(char));
data/mathgl-2.4.4/src/base.cpp:58:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(r) memcpy(r,s,(strlen(s)+1)*sizeof(char));
data/mathgl-2.4.4/src/base.cpp:108:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t n=strlen(str), k, i;
data/mathgl-2.4.4/src/base.cpp:117:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l=strlen(str);
data/mathgl-2.4.4/src/base.cpp:1004:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l=strlen(s), n=0; long j=0;
data/mathgl-2.4.4/src/base.cpp:1023:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long l=strlen(s);
data/mathgl-2.4.4/src/base.cpp:1199:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l=strlen(chr);
data/mathgl-2.4.4/src/base.cpp:1211:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l=strlen(str),k=0;
data/mathgl-2.4.4/src/base.cpp:1240:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l=strlen(p);
data/mathgl-2.4.4/src/base.cpp:1318:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long m=0, l=strlen(p);
data/mathgl-2.4.4/src/base.cpp:1395:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long l=0,k=0,len=strlen(str);
data/mathgl-2.4.4/src/base.cpp:1462:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
{ if(*b=='\'') { b++; b[strlen(b)-1]=0; } leg_str = b; }
data/mathgl-2.4.4/src/base_cf.cpp:66:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(res);
data/mathgl-2.4.4/src/base_cf.cpp:74:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(res);
data/mathgl-2.4.4/src/base_cf.cpp:95:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(res);
data/mathgl-2.4.4/src/canvas.cpp:887:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long le=strlen(se), lf=strlen(sf), i;
data/mathgl-2.4.4/src/canvas.cpp:887:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long le=strlen(se), lf=strlen(sf), i;
data/mathgl-2.4.4/src/canvas.cpp:892:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lf = strlen(sf);
data/mathgl-2.4.4/src/canvas.cpp:912:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
le=strlen(se);
data/mathgl-2.4.4/src/canvas.cpp:919:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(se+i+1,se+2+st+dig,le-dig); le=strlen(se);
data/mathgl-2.4.4/src/canvas.cpp:926:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lf = strlen(sf);
data/mathgl-2.4.4/src/canvas.cpp:963:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *pA, *ff = new char[strlen(font)+3];
data/mathgl-2.4.4/src/complex_ex.cpp:460:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(id);
data/mathgl-2.4.4/src/complex_io.cpp:56:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
double re=0,im=0; size_t ll=strlen(s);
data/mathgl-2.4.4/src/complex_io.cpp:104:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long nb = strlen(b);
data/mathgl-2.4.4/src/complex_io.cpp:159:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long n=strlen(v)+1;
data/mathgl-2.4.4/src/complex_io.cpp:288:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
nb = strlen(buf); gzclose(fp);
data/mathgl-2.4.4/src/complex_io.cpp:377:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long nb = strlen(buf); gzclose(fp);
data/mathgl-2.4.4/src/complex_io.cpp:689:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long kx,ky,kz,n=strlen(templ)+20;
data/mathgl-2.4.4/src/cont.cpp:80:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *fnt = new char[strlen(font)+5];
data/mathgl-2.4.4/src/cont.cpp:955:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return j?j:strlen(MGL_DEF_PAL);
data/mathgl-2.4.4/src/data.cpp:1498:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(res);
data/mathgl-2.4.4/src/data_io.cpp:77:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long nb = strlen(b);
data/mathgl-2.4.4/src/data_io.cpp:127:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long n=strlen(v)+1;
data/mathgl-2.4.4/src/data_io.cpp:388:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long nb = strlen(buf); gzclose(fp);
data/mathgl-2.4.4/src/data_io.cpp:434:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *buf=new char[strlen(templ)+1],*s=buf;
data/mathgl-2.4.4/src/data_io.cpp:532:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long nb = strlen(buf); gzclose(fp);
data/mathgl-2.4.4/src/data_io.cpp:1183:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
while(res[n][0]) { len += strlen(res[n])+1; n++; }
data/mathgl-2.4.4/src/data_io.cpp:1186:26: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
for(long i=1;i<n;i++) { strcat(buf,"\t"); strcat(buf,res[i]); }
data/mathgl-2.4.4/src/data_io.cpp:1254:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long kx,ky,kz,n=strlen(templ)+20;
data/mathgl-2.4.4/src/data_io.cpp:1323:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(id);
data/mathgl-2.4.4/src/data_png.cpp:37:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unsigned char *c=0,*cc=new unsigned char[3*strlen(scheme)+3],*c1,*c2;
data/mathgl-2.4.4/src/data_png.cpp:38:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t nc=1,np=0,l=strlen(scheme);
data/mathgl-2.4.4/src/data_png.cpp:68:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const char *ext = fname+strlen(fname)-1; // rindex(fname,'.');
data/mathgl-2.4.4/src/data_png.cpp:278:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(fname);
data/mathgl-2.4.4/src/eval.cpp:207:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *str = new char[strlen(string)+1];
data/mathgl-2.4.4/src/eval.cpp:212:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(str);
data/mathgl-2.4.4/src/eval.cpp:219:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(str);
data/mathgl-2.4.4/src/eval.cpp:301:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(str); str[--len]=0;
data/mathgl-2.4.4/src/eval.cpp:303:25: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(name,name+7,(strlen(name+7)+1)*sizeof(char));
data/mathgl-2.4.4/src/eval.cpp:765:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long l=0,r=0,len=strlen(str);
data/mathgl-2.4.4/src/evalc.cpp:92:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char *str = new char[strlen(string)+1];
data/mathgl-2.4.4/src/evalc.cpp:97:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(str);
data/mathgl-2.4.4/src/evalc.cpp:104:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(str);
data/mathgl-2.4.4/src/evalc.cpp:176:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(str); str[--len]=0;
data/mathgl-2.4.4/src/export.cpp:222:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bool gz = fname[strlen(fname)-1]=='z';
data/mathgl-2.4.4/src/export.cpp:231:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unsigned len = strlen(fname), pos=0;
data/mathgl-2.4.4/src/export.cpp:575:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len=strlen(fname);
data/mathgl-2.4.4/src/export_2d.cpp:205:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bool gz = fname[strlen(fname)-1]=='z';
data/mathgl-2.4.4/src/export_2d.cpp:217:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
unsigned len = strlen(fname), pos=0;
data/mathgl-2.4.4/src/export_2d.cpp:453:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bool gz = fname[strlen(fname)-1]=='z';
data/mathgl-2.4.4/src/export_3d.cpp:301:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len=strlen(fname),ntxt=gr->GetTxtNum();
data/mathgl-2.4.4/src/export_3d.cpp:430:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len=strlen(fname);
data/mathgl-2.4.4/src/export_3d.cpp:520:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bool gz = force_zlib || fname[strlen(fname)-1]=='z';
data/mathgl-2.4.4/src/export_3d.cpp:1166:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bool gz = fname[strlen(fname)-1]=='z';
data/mathgl-2.4.4/src/fit.cpp:46:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long n = strlen(mglFitRes)+(pre?strlen(pre):0)+1;
data/mathgl-2.4.4/src/fit.cpp:46:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long n = strlen(mglFitRes)+(pre?strlen(pre):0)+1;
data/mathgl-2.4.4/src/fit.cpp:224:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t i,k,len=strlen(var);
data/mathgl-2.4.4/src/fit.cpp:233:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len=strlen(eq);
data/mathgl-2.4.4/src/fit.cpp:240:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[31]=0; strcat(mglFitRes+k, buf); k+=strlen(buf);
data/mathgl-2.4.4/src/fit.cpp:336:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fd.eq = eq; fd.var = var; fd.m = strlen(var);
data/mathgl-2.4.4/src/fit.cpp:385:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fd.eq = eq; fd.var=var; fd.m = strlen(var);
data/mathgl-2.4.4/src/fit.cpp:431:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
fd.eq = eq; fd.var=var; fd.m = strlen(var);
data/mathgl-2.4.4/src/fit.cpp:520:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(res);
data/mathgl-2.4.4/src/font.cpp:814:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf = new char[strlen(base)+1];
data/mathgl-2.4.4/src/font.cpp:819:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(i=strlen(buf);i>=0 && buf[i]!=sep;i--);
data/mathgl-2.4.4/src/font.cpp:830:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(base);
data/mathgl-2.4.4/src/obj.cpp:416:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len=strlen(fname);
data/mathgl-2.4.4/src/parser.cpp:111:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t i,l=strlen(s);
data/mathgl-2.4.4/src/plot.cpp:1808:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long n=a->GetNx(),i,j=0,len=cols?long(strlen(cols)):0;
data/mathgl-2.4.4/src/plot.cpp:1811:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(j==0) { cols = MGL_DEF_PAL; len=long(strlen(cols)); }
data/mathgl-2.4.4/src/prc.cpp:263:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t len=strlen(fname);
data/mathgl-2.4.4/src/prc.cpp:969:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t tlen = strlen(tname);
data/mathgl-2.4.4/src/prc.cpp:976:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const size_t tlen = strlen(tname);
data/mathgl-2.4.4/udav/dat_pnl.cpp:133:9: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
long m=wcslen(vs);
data/mathgl-2.4.4/udav/dat_pnl.cpp:175:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
double re=0,im=0; size_t ll=strlen(s);
data/mathgl-2.4.4/udav/qmglsyntax.cpp:88:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
l = strlen(o[j]);
data/mathgl-2.4.4/udav/text_pnl.cpp:164:11: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(v && wcslen(v->Name())>2) vars<<QString::fromWCharArray(v->Name());
data/mathgl-2.4.4/udav/text_pnl.cpp:390:27: [1] (buffer) wcslen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
wcstombs(name,v->Name(),wcslen(v->Name())+1);
data/mathgl-2.4.4/utils/make_forth.cpp:126:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(unsigned i=strlen(buf)-1;buf[i]<=' ';i--) buf[i]=0;
data/mathgl-2.4.4/utils/make_pas.cpp:212:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const int prefixLen = strlen(prefix);
data/mathgl-2.4.4/utils/make_pas.cpp:219:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int argNameLen = strlen(argname);
data/mathgl-2.4.4/utils/make_pas.cpp:278:3: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(res, " ");
data/mathgl-2.4.4/utils/make_pas.cpp:286:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr = res + strlen(res);
data/mathgl-2.4.4/utils/make_pas.cpp:328:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(res);
data/mathgl-2.4.4/utils/make_pas.cpp:335:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
const int prefixLen = strlen(prefix);
data/mathgl-2.4.4/utils/make_pas.cpp:434:22: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for ( unsigned i = strlen(buf) - 1; buf[i] <= ' '; i-- )
data/mathgl-2.4.4/utils/mglcgi.cpp:37:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memset(val,0,strlen(buf)+1);
data/mathgl-2.4.4/utils/mglcgi.cpp:41:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t l=strlen(pos);
data/mathgl-2.4.4/utils/mglcgi.cpp:75:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
str = new char[strlen(buf)+1];
data/mathgl-2.4.4/utils/mglconv.cpp:136:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bool gif = !strcmp(oname+strlen(oname)-4,".gif");
data/mathgl-2.4.4/utils/mglview.cpp:102:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
bool mgld=(*iname && iname[strlen(iname)-1]=='d');
data/mathgl-2.4.4/widgets/fltk.cpp:76:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(str) fl_utf8towc(str, strlen(str)+1, res, 1024);
data/mathgl-2.4.4/widgets/fltk.cpp:795:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
Fl::copy(buf,strlen(buf),1);
data/mathgl-2.4.4/widgets/fltk.cpp:1184:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lbl = (char*)malloc(strlen(args)+1);
data/mathgl-2.4.4/widgets/fltk.cpp:1192:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
lbl = (char*)malloc(strlen(tip)+2);
ANALYSIS SUMMARY:
Hits = 1657
Lines analyzed = 101688 in approximately 5.80 seconds (17543 lines/second)
Physical Source Lines of Code (SLOC) = 85161
Hits@level = [0] 641 [1] 170 [2] 1341 [3] 14 [4] 132 [5] 0
Hits@level+ = [0+] 2298 [1+] 1657 [2+] 1487 [3+] 146 [4+] 132 [5+] 0
Hits/KSLOC@level+ = [0+] 26.9842 [1+] 19.4573 [2+] 17.461 [3+] 1.7144 [4+] 1.55001 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.