Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/monado-0.3.0/src/external/Catch2/catch/catch.hpp Examining data/monado-0.3.0/src/external/cjson/cjson/cJSON.c Examining data/monado-0.3.0/src/external/cjson/cjson/cJSON.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/AbsoluteOrientationMeasurement.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/AbsolutePositionLeverArmMeasurement.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/AbsolutePositionMeasurement.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/AngularVelocityMeasurement.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/AugmentedProcessModel.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/AugmentedState.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/BaseTypes.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/ConstantProcess.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/EigenQuatExponentialMap.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/ExternalQuaternion.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/FlexibleKalmanBase.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/FlexibleKalmanCorrect.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/FlexibleKalmanFilter.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/FlexibleKalmanMeta.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/FlexibleUnscentedCorrect.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/MatrixExponentialMap.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/OrientationConstantVelocity.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/OrientationState.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/PoseConstantVelocity.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/PoseConstantVelocityGeneric.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/PoseDampedConstantVelocity.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/PoseSeparatelyDampedConstantVelocity.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/PoseState.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/PoseStateExponentialMap.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/PureVectorState.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/SO3.h Examining data/monado-0.3.0/src/external/flexkalman/flexkalman/SigmaPointGenerator.h Examining data/monado-0.3.0/src/external/glad/glad/gl.c Examining data/monado-0.3.0/src/external/glad/glad/gl.h Examining data/monado-0.3.0/src/external/imgui/imgui/cimgui.cpp Examining data/monado-0.3.0/src/external/imgui/imgui/cimgui.h Examining data/monado-0.3.0/src/external/imgui/imgui/cimgui_sdl.cpp Examining data/monado-0.3.0/src/external/imgui/imgui/imconfig.h Examining data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp Examining data/monado-0.3.0/src/external/imgui/imgui/imgui.h Examining data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp Examining data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp Examining data/monado-0.3.0/src/external/imgui/imgui/imgui_impl_opengl3.cpp Examining data/monado-0.3.0/src/external/imgui/imgui/imgui_impl_opengl3.h Examining data/monado-0.3.0/src/external/imgui/imgui/imgui_impl_sdl.cpp Examining data/monado-0.3.0/src/external/imgui/imgui/imgui_impl_sdl.h Examining data/monado-0.3.0/src/external/imgui/imgui/imgui_internal.h Examining data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp Examining data/monado-0.3.0/src/external/imgui/imgui/imstb_rectpack.h Examining data/monado-0.3.0/src/external/imgui/imgui/imstb_textedit.h Examining data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h Examining data/monado-0.3.0/src/external/imgui/imgui_monado/cimgui_monado.h Examining data/monado-0.3.0/src/external/imgui/imgui_monado/imgui_monado.cpp Examining data/monado-0.3.0/src/external/openxr_includes/openxr/loader_interfaces.h Examining data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h Examining data/monado-0.3.0/src/external/openxr_includes/openxr/openxr_platform.h Examining data/monado-0.3.0/src/external/openxr_includes/openxr/openxr_platform_defines.h Examining data/monado-0.3.0/src/external/openxr_includes/openxr/openxr_reflection.h Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_api.h Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_base.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_eigen_interop.hpp Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_filter_fifo.c Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_filter_fifo.h Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_hash.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_imu_3dof.c Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_imu_3dof.h Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_imu_pre.c Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_imu_pre.h Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_optics.c Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_quatexpmap.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_vec2.h Examining data/monado-0.3.0/src/xrt/auxiliary/math/m_vec3.h Examining data/monado-0.3.0/src/xrt/auxiliary/ogl/ogl_api.c Examining data/monado-0.3.0/src/xrt/auxiliary/ogl/ogl_api.h Examining data/monado-0.3.0/src/xrt/auxiliary/ogl/ogl_documentation.h Examining data/monado-0.3.0/src/xrt/auxiliary/os/os_ble.h Examining data/monado-0.3.0/src/xrt/auxiliary/os/os_ble_dbus.c Examining data/monado-0.3.0/src/xrt/auxiliary/os/os_documentation.h Examining data/monado-0.3.0/src/xrt/auxiliary/os/os_hid.h Examining data/monado-0.3.0/src/xrt/auxiliary/os/os_hid_hidraw.c Examining data/monado-0.3.0/src/xrt/auxiliary/os/os_threading.h Examining data/monado-0.3.0/src/xrt/auxiliary/os/os_time.h Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_calibration.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_calibration_opencv.hpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_convert.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_data_utils.c Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_debug_hsv_filter.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_debug_hsv_picker.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_debug_hsv_viewer.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_file.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_fusion.hpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_helper_debug_sink.hpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_hsv_filter.c Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_imu.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_imu.h Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_imu_fusion.hpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_kalman.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_lowpass.hpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_lowpass_vector.hpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_tracker_psmv.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_tracker_psmv_fusion.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_tracker_psmv_fusion.hpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_tracker_psvr.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/tracking/t_tracking.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_bitwise.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_bitwise.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_debug.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_debug.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_device.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_device.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_distortion_mesh.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_distortion_mesh.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_documentation.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_file.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_file.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_format.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_format.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_frame.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_frame.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_hashmap.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_hashmap.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_hashset.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_hashset.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_index_fifo.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_json.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_json.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_logging.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_logging.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_misc.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_misc.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_render_timing.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_render_timing.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_sink.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_sink_converter.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_sink_deinterleaver.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_sink_queue.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_sink_quirk.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_sink_split.c Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_threading.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_time.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_time.h Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_var.cpp Examining data/monado-0.3.0/src/xrt/auxiliary/util/u_var.h Examining data/monado-0.3.0/src/xrt/auxiliary/vk/vk_documentation.h Examining data/monado-0.3.0/src/xrt/auxiliary/vk/vk_helpers.c Examining data/monado-0.3.0/src/xrt/auxiliary/vk/vk_helpers.h Examining data/monado-0.3.0/src/xrt/compositor/client/comp_egl_glue.c Examining data/monado-0.3.0/src/xrt/compositor/client/comp_gl_client.c Examining data/monado-0.3.0/src/xrt/compositor/client/comp_gl_client.h Examining data/monado-0.3.0/src/xrt/compositor/client/comp_gl_glue.c Examining data/monado-0.3.0/src/xrt/compositor/client/comp_gl_xlib_client.c Examining data/monado-0.3.0/src/xrt/compositor/client/comp_gl_xlib_client.h Examining data/monado-0.3.0/src/xrt/compositor/client/comp_gl_xlib_glue.c Examining data/monado-0.3.0/src/xrt/compositor/client/comp_gles_glue.c Examining data/monado-0.3.0/src/xrt/compositor/client/comp_vk_client.c Examining data/monado-0.3.0/src/xrt/compositor/client/comp_vk_client.h Examining data/monado-0.3.0/src/xrt/compositor/client/comp_vk_glue.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_compositor.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_compositor.h Examining data/monado-0.3.0/src/xrt/compositor/main/comp_distortion.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_distortion.h Examining data/monado-0.3.0/src/xrt/compositor/main/comp_documentation.h Examining data/monado-0.3.0/src/xrt/compositor/main/comp_layer.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_layer.h Examining data/monado-0.3.0/src/xrt/compositor/main/comp_layer_renderer.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_layer_renderer.h Examining data/monado-0.3.0/src/xrt/compositor/main/comp_renderer.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_renderer.h Examining data/monado-0.3.0/src/xrt/compositor/main/comp_settings.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_settings.h Examining data/monado-0.3.0/src/xrt/compositor/main/comp_swapchain.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_vk_swapchain.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_vk_swapchain.h Examining data/monado-0.3.0/src/xrt/compositor/main/comp_window.h Examining data/monado-0.3.0/src/xrt/compositor/main/comp_window_direct.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_window_direct.h Examining data/monado-0.3.0/src/xrt/compositor/main/comp_window_direct_nvidia.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_window_direct_randr.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_window_wayland.c Examining data/monado-0.3.0/src/xrt/compositor/main/comp_window_xcb.c Examining data/monado-0.3.0/src/xrt/drivers/arduino/arduino_device.c Examining data/monado-0.3.0/src/xrt/drivers/arduino/arduino_interface.h Examining data/monado-0.3.0/src/xrt/drivers/arduino/arduino_prober.c Examining data/monado-0.3.0/src/xrt/drivers/daydream/daydream_device.c Examining data/monado-0.3.0/src/xrt/drivers/daydream/daydream_device.h Examining data/monado-0.3.0/src/xrt/drivers/daydream/daydream_interface.h Examining data/monado-0.3.0/src/xrt/drivers/daydream/daydream_prober.c Examining data/monado-0.3.0/src/xrt/drivers/dummy/dummy_hmd.c Examining data/monado-0.3.0/src/xrt/drivers/dummy/dummy_interface.h Examining data/monado-0.3.0/src/xrt/drivers/dummy/dummy_prober.c Examining data/monado-0.3.0/src/xrt/drivers/hdk/hdk_device.cpp Examining data/monado-0.3.0/src/xrt/drivers/hdk/hdk_device.h Examining data/monado-0.3.0/src/xrt/drivers/hdk/hdk_interface.h Examining data/monado-0.3.0/src/xrt/drivers/hdk/hdk_prober.c Examining data/monado-0.3.0/src/xrt/drivers/hydra/hydra_driver.c Examining data/monado-0.3.0/src/xrt/drivers/hydra/hydra_interface.h Examining data/monado-0.3.0/src/xrt/drivers/north_star/distortion/deformation_northstar.cpp Examining data/monado-0.3.0/src/xrt/drivers/north_star/distortion/deformation_northstar.h Examining data/monado-0.3.0/src/xrt/drivers/north_star/distortion/utility_northstar.h Examining data/monado-0.3.0/src/xrt/drivers/north_star/ns_hmd.c Examining data/monado-0.3.0/src/xrt/drivers/north_star/ns_hmd.h Examining data/monado-0.3.0/src/xrt/drivers/north_star/ns_interface.h Examining data/monado-0.3.0/src/xrt/drivers/north_star/ns_prober.c Examining data/monado-0.3.0/src/xrt/drivers/ohmd/oh_device.c Examining data/monado-0.3.0/src/xrt/drivers/ohmd/oh_device.h Examining data/monado-0.3.0/src/xrt/drivers/ohmd/oh_interface.h Examining data/monado-0.3.0/src/xrt/drivers/ohmd/oh_prober.c Examining data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c Examining data/monado-0.3.0/src/xrt/drivers/psmv/psmv_interface.h Examining data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c Examining data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.h Examining data/monado-0.3.0/src/xrt/drivers/psvr/psvr_interface.h Examining data/monado-0.3.0/src/xrt/drivers/psvr/psvr_packet.c Examining data/monado-0.3.0/src/xrt/drivers/psvr/psvr_prober.c Examining data/monado-0.3.0/src/xrt/drivers/realsense/rs_6dof.c Examining data/monado-0.3.0/src/xrt/drivers/realsense/rs_interface.h Examining data/monado-0.3.0/src/xrt/drivers/survive/survive_driver.c Examining data/monado-0.3.0/src/xrt/drivers/survive/survive_interface.h Examining data/monado-0.3.0/src/xrt/drivers/survive/survive_wrap.c Examining data/monado-0.3.0/src/xrt/drivers/survive/survive_wrap.h Examining data/monado-0.3.0/src/xrt/drivers/v4l2/v4l2_driver.c Examining data/monado-0.3.0/src/xrt/drivers/v4l2/v4l2_interface.h Examining data/monado-0.3.0/src/xrt/drivers/vive/vive.h Examining data/monado-0.3.0/src/xrt/drivers/vive/vive_config.c Examining data/monado-0.3.0/src/xrt/drivers/vive/vive_config.h Examining data/monado-0.3.0/src/xrt/drivers/vive/vive_controller.c Examining data/monado-0.3.0/src/xrt/drivers/vive/vive_controller.h Examining data/monado-0.3.0/src/xrt/drivers/vive/vive_device.c Examining data/monado-0.3.0/src/xrt/drivers/vive/vive_device.h Examining data/monado-0.3.0/src/xrt/drivers/vive/vive_prober.c Examining data/monado-0.3.0/src/xrt/drivers/vive/vive_prober.h Examining data/monado-0.3.0/src/xrt/drivers/vive/vive_protocol.c Examining data/monado-0.3.0/src/xrt/drivers/vive/vive_protocol.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_compiler.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_compositor.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_config.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_config_os.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_defines.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_device.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_documentation.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_frame.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_frameserver.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_gfx_egl.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_gfx_fd.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_gfx_gl.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_gfx_gles.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_gfx_vk.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_gfx_xlib.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_instance.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_openxr_includes.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_prober.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_results.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_settings.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_tracking.h Examining data/monado-0.3.0/src/xrt/include/xrt/xrt_vulkan_includes.h Examining data/monado-0.3.0/src/xrt/ipc/ipc_client.h Examining data/monado-0.3.0/src/xrt/ipc/ipc_client_compositor.c Examining data/monado-0.3.0/src/xrt/ipc/ipc_client_device.c Examining data/monado-0.3.0/src/xrt/ipc/ipc_client_hmd.c Examining data/monado-0.3.0/src/xrt/ipc/ipc_client_instance.c Examining data/monado-0.3.0/src/xrt/ipc/ipc_client_utils.c Examining data/monado-0.3.0/src/xrt/ipc/ipc_documentation.h Examining data/monado-0.3.0/src/xrt/ipc/ipc_protocol.h Examining data/monado-0.3.0/src/xrt/ipc/ipc_server.h Examining data/monado-0.3.0/src/xrt/ipc/ipc_server_client.c Examining data/monado-0.3.0/src/xrt/ipc/ipc_server_process.c Examining data/monado-0.3.0/src/xrt/ipc/ipc_server_utils.c Examining data/monado-0.3.0/src/xrt/ipc/ipc_server_utils.h Examining data/monado-0.3.0/src/xrt/state_trackers/gui/gui_common.h Examining data/monado-0.3.0/src/xrt/state_trackers/gui/gui_imgui.h Examining data/monado-0.3.0/src/xrt/state_trackers/gui/gui_ogl.c Examining data/monado-0.3.0/src/xrt/state_trackers/gui/gui_prober.c Examining data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene.cpp Examining data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_calibrate.c Examining data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_debug.c Examining data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_main_menu.c Examining data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_video.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_action.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_debug.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_funcs.h Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_instance.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_negotiate.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_session.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_space.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_swapchain.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_system.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_verify.h Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_binding.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_binding_data.h Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_chain.h Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_event.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_extension_support.h Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_handle.h Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_handle_base.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_input.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_input_transform.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_input_transform.h Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_instance.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_logger.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_logger.h Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_messenger.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_objects.h Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_path.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_session.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_session_egl.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_session_gl.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_session_vk.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_space.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_swapchain.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_swapchain_gl.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_swapchain_vk.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_system.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_two_call.h Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_verify.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_vulkan.c Examining data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_xdev.c Examining data/monado-0.3.0/src/xrt/state_trackers/prober/p_documentation.h Examining data/monado-0.3.0/src/xrt/state_trackers/prober/p_dump.c Examining data/monado-0.3.0/src/xrt/state_trackers/prober/p_json.c Examining data/monado-0.3.0/src/xrt/state_trackers/prober/p_libusb.c Examining data/monado-0.3.0/src/xrt/state_trackers/prober/p_libuvc.c Examining data/monado-0.3.0/src/xrt/state_trackers/prober/p_prober.c Examining data/monado-0.3.0/src/xrt/state_trackers/prober/p_prober.h Examining data/monado-0.3.0/src/xrt/state_trackers/prober/p_tracking.c Examining data/monado-0.3.0/src/xrt/state_trackers/prober/p_udev.c Examining data/monado-0.3.0/src/xrt/targets/cli/cli_cmd_calibrate.c Examining data/monado-0.3.0/src/xrt/targets/cli/cli_cmd_probe.c Examining data/monado-0.3.0/src/xrt/targets/cli/cli_cmd_test.c Examining data/monado-0.3.0/src/xrt/targets/cli/cli_common.h Examining data/monado-0.3.0/src/xrt/targets/cli/cli_main.c Examining data/monado-0.3.0/src/xrt/targets/common/target_instance.c Examining data/monado-0.3.0/src/xrt/targets/common/target_instance_no_comp.c Examining data/monado-0.3.0/src/xrt/targets/common/target_instance_parts.h Examining data/monado-0.3.0/src/xrt/targets/common/target_lists.c Examining data/monado-0.3.0/src/xrt/targets/common/target_lists.h Examining data/monado-0.3.0/src/xrt/targets/ctl/main.c Examining data/monado-0.3.0/src/xrt/targets/gui/gui_sdl2.c Examining data/monado-0.3.0/src/xrt/targets/gui/gui_sdl2.h Examining data/monado-0.3.0/src/xrt/targets/gui/gui_sdl2_imgui.c Examining data/monado-0.3.0/src/xrt/targets/gui/gui_sdl2_main.c Examining data/monado-0.3.0/src/xrt/targets/openxr/oxr_sdl2_hack.c Examining data/monado-0.3.0/src/xrt/targets/openxr/target.c Examining data/monado-0.3.0/src/xrt/targets/service/main.c Examining data/monado-0.3.0/tests/tests_input_transform.cpp Examining data/monado-0.3.0/tests/tests_main.cpp FINAL RESULTS: data/monado-0.3.0/src/external/glad/glad/gl.c:12:31: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. #define GLAD_IMPL_UTIL_SSCANF sscanf data/monado-0.3.0/src/external/glad/glad/gl.h:1675:149: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. typedef void (GLAD_API_PTR *PFNGLBINDIMAGETEXTUREPROC)(GLuint unit, GLuint texture, GLint level, GLboolean layered, GLint layer, GLenum access, GLenum format); data/monado-0.3.0/src/external/glad/glad/gl.h:2003:77: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. typedef void * (GLAD_API_PTR *PFNGLMAPBUFFERPROC)(GLenum target, GLenum access); data/monado-0.3.0/src/external/glad/glad/gl.h:2004:126: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. typedef void * (GLAD_API_PTR *PFNGLMAPBUFFERRANGEPROC)(GLenum target, GLintptr offset, GLsizeiptr length, GLbitfield access); data/monado-0.3.0/src/external/glad/glad/gl.h:2005:82: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. typedef void * (GLAD_API_PTR *PFNGLMAPNAMEDBUFFERPROC)(GLuint buffer, GLenum access); data/monado-0.3.0/src/external/glad/glad/gl.h:2006:131: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. typedef void * (GLAD_API_PTR *PFNGLMAPNAMEDBUFFERRANGEPROC)(GLuint buffer, GLintptr offset, GLsizeiptr length, GLbitfield access); data/monado-0.3.0/src/external/imgui/imgui/cimgui.cpp:4475:5: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. vsnprintf(buffer, 256, fmt, args); data/monado-0.3.0/src/external/imgui/imgui/cimgui.h:14:13: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define snprintf sprintf_s data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1469:35: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #if defined(_MSC_VER) && !defined(vsnprintf) data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1470:9: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define vsnprintf _vsnprintf data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1480:13: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. int w = vsnprintf(buf, buf_size, fmt, args); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1496:13: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. int w = vsnprintf(buf, buf_size, fmt, args); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:9086:9: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(g.LogFile, fmt, args); data/monado-0.3.0/src/external/imgui/imgui/imgui.h:69:59: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define IM_FMTARGS(FMT) __attribute__((format(printf, FMT, FMT+1))) // Apply printf-style warnings to user functions. data/monado-0.3.0/src/external/imgui/imgui/imgui.h:70:59: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define IM_FMTLIST(FMT) __attribute__((format(printf, FMT, 0))) data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:103:9: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define snprintf _snprintf data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:103:21: [4] (format) _snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define snprintf _snprintf data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:104:9: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define vsnprintf _vsnprintf data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2448:23: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. char buf[64]; sprintf(buf, "Button: %s###Button", name); // ### operator override ID ignoring the preceding label data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2927:17: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(label, "Mouse cursor %d: %s", i, mouse_cursors_names[i]); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:3505:9: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. vsnprintf(buf, IM_ARRAYSIZE(buf), fmt, args); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:4457:9: [4] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. sprintf(buf, "Save %s", doc->Name); data/monado-0.3.0/src/external/imgui/imgui/imgui_impl_opengl3.cpp:148:5: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(g_GlslVersionString, glsl_version); data/monado-0.3.0/src/external/imgui/imgui/imgui_internal.h:150:41: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define IMGUI_DEBUG_LOG(_FMT,...) printf("[%05d] " _FMT, GImGui->FrameCount, __VA_ARGS__) data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1773:19: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. if (op && sscanf(initial_value_buf, format, &arg0i) < 1) data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1779:35: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. else { if (sscanf(buf, format, &arg1i) == 1) *v = arg1i; } // Assign constant data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1787:19: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. if (op && sscanf(initial_value_buf, format, &arg0f) < 1) data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1789:13: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. if (sscanf(buf, format, &arg1f) < 1) data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1801:19: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. if (op && sscanf(initial_value_buf, format, &arg0f) < 1) data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1803:13: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. if (sscanf(buf, format, &arg1f) < 1) data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1814:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. sscanf(buf, format, data_ptr); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1820:9: [4] (buffer) sscanf: The scanf() family's %s operation, without a limit specification, permits buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a different input function. If the scanf format is influenceable by an attacker, it's exploitable. sscanf(buf, format, &v32); data/monado-0.3.0/src/xrt/auxiliary/tracking/t_calibration.cpp:529:16: [4] (format) snprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. #define P(...) snprintf(c.text, sizeof(c.text), __VA_ARGS__) data/monado-0.3.0/src/xrt/auxiliary/util/u_logging.c:60:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, format, args); data/monado-0.3.0/src/xrt/auxiliary/util/u_logging.c:79:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, format, args); data/monado-0.3.0/src/xrt/auxiliary/vk/vk_helpers.h:235:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/auxiliary/vk/vk_helpers.h:243:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/compositor/main/comp_compositor.c:640:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, fmt, args); data/monado-0.3.0/src/xrt/drivers/arduino/arduino_device.c:109:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/arduino/arduino_device.c:118:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/arduino/arduino_device.c:126:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/daydream/daydream_device.h:107:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/daydream/daydream_device.h:116:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/daydream/daydream_device.h:124:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/dummy/dummy_hmd.c:68:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/dummy/dummy_hmd.c:77:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/dummy/dummy_hmd.c:85:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/hdk/hdk_device.h:63:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/hdk/hdk_device.h:71:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/hdk/hdk_device.h:79:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/hydra/hydra_driver.c:48:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/hydra/hydra_driver.c:57:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/hydra/hydra_driver.c:65:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/north_star/ns_hmd.h:35:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/north_star/ns_hmd.h:44:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/north_star/ns_hmd.h:52:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/ohmd/oh_device.h:58:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/ohmd/oh_device.h:67:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/ohmd/oh_device.h:75:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.h:152:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.h:160:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.h:168:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/survive/survive_driver.c:41:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/survive/survive_driver.c:50:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/survive/survive_driver.c:58:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/v4l2/v4l2_driver.c:49:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/v4l2/v4l2_driver.c:66:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/v4l2/v4l2_driver.c:81:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/drivers/v4l2/v4l2_driver.c:1095:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, ", " #FLAG); \ data/monado-0.3.0/src/xrt/include/xrt/xrt_compiler.h:38:60: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define XRT_PRINTF_FORMAT(fmt, list) __attribute__((format(printf, fmt, list))) data/monado-0.3.0/src/xrt/ipc/ipc_client.h:34:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/ipc/ipc_client.h:46:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/ipc/ipc_client.h:58:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/ipc/ipc_client_instance.c:82:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(addr.sun_path, IPC_MSG_SOCK_FILE); data/monado-0.3.0/src/xrt/ipc/ipc_client_instance.c:242:35: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. ii->ipc_c.ism = mmap(NULL, size, access, flags, ii->ipc_c.ism_fd, 0); data/monado-0.3.0/src/xrt/ipc/ipc_server.h:41:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/ipc/ipc_server.h:53:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/ipc/ipc_server_process.c:137:28: [4] (race) access: This usually indicates a security flaw. If an attacker can change anything along the path between the call to access() and the file's actual use (e.g., by moving files), the attacker can exploit the race condition (CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid()) and try to open the file directly. s->ism = mmap(NULL, size, access, flags, fd, 0); data/monado-0.3.0/src/xrt/ipc/ipc_server_process.c:290:2: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(addr.sun_path, IPC_MSG_SOCK_FILE); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_negotiate.c:31:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_session.c:44:40: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. ret = oxr_session_create(&log, &inst->system, createInfo, &sess); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_system.c:31:53: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. #define OXR_VERIFY_SYSTEM_AND_GET(log, inst, sysId, system) \ data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_system.c:35:47: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. oxr_system_get_by_id(log, inst, sysId, &system); \ data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_system.c:39:10: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. assert(system != NULL); \ data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_system.c:55:42: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. struct oxr_system *systems[1] = {&inst->system}; data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_binding_data.h:922:13: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. MAKE_INPUT(system, click, XRT_INPUT_INDEX_SYSTEM_CLICK) data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_binding_data.h:923:13: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. MAKE_INPUT(system, touch, XRT_INPUT_INDEX_SYSTEM_TOUCH) data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_binding_data.h:948:13: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. MAKE_INPUT(system, click, XRT_INPUT_VIVE_SYSTEM_CLICK) data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_instance.c:71:31: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. for (size_t i = 0; i < inst->system.num_xdevs; i++) { data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_instance.c:72:27: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. oxr_xdev_destroy(&inst->system.xdevs[i]); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_instance.c:247:48: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. ret = oxr_system_fill_in(log, inst, 1, &inst->system, xdevs, NUM_XDEVS); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_logger.c:109:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, fmt, args); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_logger.c:122:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, fmt, args); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_logger.c:139:2: [4] (format) vfprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. vfprintf(stderr, fmt, args); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_logger.c:201:8: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. ret = vsnprintf(NULL, 0, fmt, args); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_logger.c:211:8: [4] (format) vsnprintf: If format strings can be influenced by an attacker, they can be exploited, and note that sprintf variations do not always \0-terminate (CWE-134). Use a constant for the format specification. ret = vsnprintf(slog->store + slog->length, data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_objects.h:774:42: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. struct oxr_system **system); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_objects.h:1101:20: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. struct oxr_system system; data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_system.c:91:42: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. struct oxr_system **system) data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_system.c:99:19: [4] (shell) system: This causes a new program to execute and is difficult to use safely (CWE-78). try using a library call that implements the same functionality if available. *system = &inst->system; data/monado-0.3.0/src/xrt/state_trackers/prober/p_prober.h:37:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/state_trackers/prober/p_prober.h:46:4: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/state_trackers/prober/p_prober.h:54:3: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. fprintf(stderr, __VA_ARGS__); \ data/monado-0.3.0/src/xrt/targets/cli/cli_main.c:15:16: [4] (format) fprintf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. #define P(...) fprintf(stderr, __VA_ARGS__) data/monado-0.3.0/src/xrt/targets/ctl/main.c:85:3: [4] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). strcpy(addr.sun_path, IPC_MSG_SOCK_FILE); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:4643:1: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. random(T a, T b) { data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:4652:1: [3] (random) random: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. random(T a, T b) { data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:12980:18: [3] (random) srand: This function is not sufficiently random for security-related functions such as key and nonce creation (CWE-327). Use a more secure technique for acquiring random values. std::srand(config.rngSeed()); data/monado-0.3.0/src/xrt/auxiliary/util/u_debug.c:26:9: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. return getenv(name); data/monado-0.3.0/src/xrt/auxiliary/util/u_debug.c:32:20: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *raw = getenv(name); data/monado-0.3.0/src/xrt/auxiliary/util/u_file.c:54:25: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *xgd_home = getenv("XDG_CONFIG_HOME"); data/monado-0.3.0/src/xrt/auxiliary/util/u_file.c:55:21: [3] (buffer) getenv: Environment variables are untrustable input if they can be set by an attacker. They can have any content and length, and the same variable can be set more than once (CWE-807, CWE-20). Check environment variables carefully before using them. const char *home = getenv("HOME"); data/monado-0.3.0/src/xrt/targets/ctl/main.c:40:14: [3] (buffer) getopt: Some older implementations do not protect against internal buffer overflows (CWE-120, CWE-20). Check implementation on installation, or limit the size of all string inputs. while ((c = getopt(argc, argv, "p:f:")) != -1) { data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:2162:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char timeStamp[timeStampSize]; data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:4455:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. alignas(alignof(T)) char storage[sizeof(T)]; data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:5951:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char line[CATCH_CONFIG_CONSOLE_WIDTH] = {0}; data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:7562:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). void open(); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:11395:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(&i, &f, sizeof(f)); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:11402:14: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. std::memcpy(&i, &d, sizeof(d)); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:11926:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char m_buffer[L_tmpnam] = { 0 }; data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:12013:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100]; data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:12022:23: [2] (tmpfile) tmpfile: Function tmpfile() has a security flaw on some systems (e.g., older System V systems) (CWE-377). m_file = std::tmpfile(); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:12046:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[100] = {}; data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:12509:30: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tracker->open(); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:13309:31: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char **utf8Argv = new char *[ argc ]; data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:13468:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data[bufferSize]; data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:13517:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). m_ofs.open( filename.c_str() ); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:14271:23: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). void TrackerBase::open() { data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:14371:13: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). open(); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:15555:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[maxDoubleSize]; data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:15562:14: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. std::sprintf(buffer, "%.3f", duration); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:16151:10: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). void open() { data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:16185:12: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). tp.open(); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:16588:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char timeStamp[timeStampSize]; data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:97:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char version[15]; data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:98:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(version, "%i.%i.%i", CJSON_VERSION_MAJOR, CJSON_VERSION_MINOR, CJSON_VERSION_PATCH); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:175:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(copy, string, length); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:280:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char number_c_string[64]; data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:460:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(newbuffer, p->buffer, p->offset + 1); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:490:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char number_buffer[26] = {0}; /* temporary buffer to print the number into */ data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:502:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. length = sprintf((char*)number_buffer, "null"); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:507:18: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. length = sprintf((char*)number_buffer, "%1.15g", d); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:513:22: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. length = sprintf((char*)number_buffer, "%1.17g", d); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:859:9: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char*)output, "\"\""); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:900:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output + 1, input, output_length); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:946:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf((char*)output_pointer, "u%04x", *input_pointer); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:1138:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(printed, buffer->buffer, cjson_min(buffer->length, buffer->offset + 1)); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:1294:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char*)output, "null"); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:1303:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char*)output, "false"); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:1312:13: [2] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant string. strcpy((char*)output, "true"); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:1332:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(output, item->valuestring, raw_length); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:1851:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(reference, item, sizeof(cJSON)); data/monado-0.3.0/src/external/glad/glad/gl.c:1495:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(local_str, gl_str_tmp, len * sizeof(char)); data/monado-0.3.0/src/external/imgui/imgui/cimgui.cpp:4472:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[256]; data/monado-0.3.0/src/external/imgui/imgui/cimgui.h:688:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DataType[32+1]; data/monado-0.3.0/src/external/imgui/imgui/cimgui.h:698:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char InputBuf[256]; data/monado-0.3.0/src/external/imgui/imgui/cimgui.h:813:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Name[40]; data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1375:19: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return (char*)memcpy(buf, (const void*)str, len + 1); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1389:19: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. return (char*)memcpy(dst, (const void*)src, src_size); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1589:12: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return fopen(filename, mode); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:2207:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&Buf[write_off - 1], str, (size_t)len); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:3750:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(g.IO.KeysDownDurationPrev, g.IO.KeysDownDuration, sizeof(g.IO.KeysDownDuration)); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:4070:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&Layers[0][n], &layer[0], layer.Size * sizeof(ImDrawList*)); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:4672:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[256]; data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:7317:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char window_name[16]; data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:7550:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[20]; data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:7858:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:8213:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(g.IO.NavInputsDownDurationPrev, g.IO.NavInputsDownDuration, sizeof(g.IO.NavInputsDownDuration)); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:8449:141: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. if (1) { ImU32 col = (!g.NavWindow->Hidden) ? IM_COL32(255,0,255,255) : IM_COL32(255,0,0,255); ImVec2 p = NavCalcPreferredRefPos(); char buf[32]; ImFormatString(buf, 32, "%d", g.NavLayer); draw_list->AddCircleFilled(p, 3.0f, col); draw_list->AddText(NULL, 13.0f, p + ImVec2(8,-4), col, buf); } data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:8932:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(payload.Data, data, data_size); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:8939:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(payload.Data, data, data_size); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:9352:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buf, ini_data, ini_size); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:9640:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&g.PrivateClipboard[0], text, (size_t)(text_end - text)); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:9759:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[300]; data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:9865:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:9986:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1233:90: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. inline ImVector<T>& operator=(const ImVector<T>& src) { clear(); resize(src.Size); memcpy(Data, src.Data, (size_t)Size * sizeof(T)); return *this; } data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1256:182: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. inline void resize(int new_size, const T& v) { if (new_size > Capacity) reserve(_grow_capacity(new_size)); if (new_size > Size) for (int n = Size; n < new_size; n++) memcpy(&Data[n], &v, sizeof(v)); Size = new_size; } data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1257:175: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. inline void reserve(int new_capacity) { if (new_capacity <= Capacity) return; T* new_data = (T*)IM_ALLOC((size_t)new_capacity * sizeof(T)); if (Data) { memcpy(new_data, Data, (size_t)Size * sizeof(T)); IM_FREE(Data); } Data = new_data; Capacity = new_capacity; } data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1260:120: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. inline void push_back(const T& v) { if (Size == Capacity) reserve(_grow_capacity(Size + 1)); memcpy(&Data[Size], &v, sizeof(v)); Size++; } data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1265:160: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. inline T* erase_unsorted(const T* it) { IM_ASSERT(it >= Data && it < Data+Size); const ptrdiff_t off = it - Data; if (it < Data+Size-1) memcpy(Data + off, Data + Size - 1, sizeof(T)); Size--; return Data + off; } data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1266:295: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. inline T* insert(const T* it, const T& v) { IM_ASSERT(it >= Data && it <= Data+Size); const ptrdiff_t off = it - Data; if (Size == Capacity) reserve(_grow_capacity(Size + 1)); if (off < (int)Size) memmove(Data + off + 1, Data + off, ((size_t)Size - (size_t)off) * sizeof(T)); memcpy(&Data[off], &v, sizeof(v)); Size++; return Data + off; } data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1516:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char DataType[32+1]; // Data type tag (short user-supplied string, 32 characters max) data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1538:50: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). static inline void SetNextTreeNodeOpen(bool open, ImGuiCond cond = 0) { SetNextItemOpen(open, cond); } data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1538:94: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). static inline void SetNextTreeNodeOpen(bool open, ImGuiCond cond = 0) { SetNextItemOpen(open, cond); } data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1606:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char InputBuf[256]; data/monado-0.3.0/src/external/imgui/imgui/imgui.h:1616:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. IMGUI_API static char EmptyString[1]; data/monado-0.3.0/src/external/imgui/imgui/imgui.h:2003:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char Name[40]; // Name (strictly to ease debugging) data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:497:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char str0[128] = "Hello, world!"; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:501:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char str1[128] = ""; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:746:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[32] = "\xe6\x97\xa5\xe6\x9c\xac\xe8\xaa\x9e"; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:870:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:871:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "Object %d", n); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:883:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:884:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "Object %d", n); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:909:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[32]; sprintf(label, "Item %d", i); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:909:33: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. char label[32]; sprintf(label, "Item %d", i); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:946:21: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:947:21: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(name, "(%.1f,%.1f)", alignment.x, alignment.y); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:965:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char text[1024 * 16] = data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:988:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf1[64] = ""; ImGui::InputText("default", buf1, 64); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:989:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf2[64] = ""; ImGui::InputText("decimal", buf2, 64, ImGuiInputTextFlags_CharsDecimal); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:990:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf3[64] = ""; ImGui::InputText("hexadecimal", buf3, 64, ImGuiInputTextFlags_CharsHexadecimal | ImGuiInputTextFlags_CharsUppercase); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:991:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf4[64] = ""; ImGui::InputText("uppercase", buf4, 64, ImGuiInputTextFlags_CharsUppercase); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:992:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf5[64] = ""; ImGui::InputText("no blank", buf5, 64, ImGuiInputTextFlags_CharsNoBlank); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:994:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf6[64] = ""; ImGui::InputText("\"imgui\" letters", buf6, 64, ImGuiInputTextFlags_CallbackCharFilter, TextFilters::FilterImGuiLetters); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:997:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char bufpass[64] = "password123"; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:1106:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:1107:9: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%d/%d", (int)(progress_saturated*1753), 1753); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:1194:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((float*)&saved_palette[n], payload->Data, sizeof(float) * 3); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:1196:25: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((float*)&saved_palette[n], payload->Data, sizeof(float) * 4); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:1558:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char str[16] = {}; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:1734:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:1735:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "%03d", i); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2186:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char num_buf[16]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2187:17: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(num_buf, "%d", n); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2272:62: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). ImGui::CollapsingHeader("CollapsingHeader", &open); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2447:16: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char name[32] = "Label1"; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2448:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; sprintf(buf, "Button: %s###Button", name); // ### operator override ID ignoring the preceding label data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2575:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2576:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(label, "Item %d", n); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2597:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2598:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(label, "%04d", i); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2844:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[32] = "dummy"; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2862:20: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char buf[128] = "click on a button to set focus"; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:2926:17: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:3457:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char InputBuf[256]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:3489:157: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. static char* Strdup(const char *str) { size_t len = strlen(str) + 1; void* buf = malloc(len); IM_ASSERT(buf); return (char*)memcpy(buf, (const void*)str, len); } data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:3502:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[1024]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:3954:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char label[128]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:3955:13: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(label, "MyObject %d", i); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:4254:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[128]; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:4255:5: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(buf, "Animated title %c %d###AnimatedTitle", "|/-\\"[(int)(ImGui::GetTime() / 0.25f) & 3], ImGui::GetFrameCount()); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:4423:27: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). Open = OpenPrev = open; data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:4456:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256]; data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1297:44: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (int sz = ch._CmdBuffer.Size) { memcpy(cmd_write, ch._CmdBuffer.Data, sz * sizeof(ImDrawCmd)); cmd_write += sz; } data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1298:44: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. if (int sz = ch._IdxBuffer.Size) { memcpy(idx_write, ch._IdxBuffer.Data, sz * sizeof(ImDrawIdx)); idx_write += sz; } data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1311:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&_Channels.Data[_Current]._CmdBuffer, &draw_list->CmdBuffer, sizeof(draw_list->CmdBuffer)); data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1312:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&_Channels.Data[_Current]._IdxBuffer, &draw_list->IdxBuffer, sizeof(draw_list->IdxBuffer)); data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1440:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char FONT_ATLAS_DEFAULT_TEX_DATA_PIXELS[FONT_ATLAS_DEFAULT_TEX_DATA_W_HALF * FONT_ATLAS_DEFAULT_TEX_DATA_H + 1] = data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1616:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(new_font_cfg.FontData, font_cfg->FontData, (size_t)new_font_cfg.FontDataSize); data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1783:58: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. void ImFontAtlasBuildMultiplyCalcLookupTable(unsigned char out_table[256], float in_brighten_factor) data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1792:59: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. void ImFontAtlasBuildMultiplyRectAlpha8(const unsigned char table[256], unsigned char* pixels, int x, int y, int w, int h, int stride) data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:2032:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char multiply_table[256]; data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:2312:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(full_ranges, base_ranges, sizeof(base_ranges)); data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:2370:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(full_ranges, base_ranges, sizeof(base_ranges)); data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:3166:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(stb__dout, data, length); data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:3267:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static const char proggy_clean_ttf_compressed_data_base85[11980+1] = data/monado-0.3.0/src/external/imgui/imgui/imgui_impl_opengl3.cpp:119:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. static char g_GlslVersionString[32] = ""; data/monado-0.3.0/src/external/imgui/imgui/imgui_internal.h:992:14: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char DragDropPayloadBufLocal[8]; // Local buffer for small payloads data/monado-0.3.0/src/external/imgui/imgui/imgui_internal.h:1051:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char TempBuffer[1024*3+1]; // Temporary text buffer data/monado-0.3.0/src/external/imgui/imgui/imgui_internal.h:1691:78: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. IMGUI_API void ImFontAtlasBuildMultiplyCalcLookupTable(unsigned char out_table[256], float in_multiply_factor); data/monado-0.3.0/src/external/imgui/imgui/imgui_internal.h:1692:79: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. IMGUI_API void ImFontAtlasBuildMultiplyRectAlpha8(const unsigned char table[256], unsigned char* pixels, int x, int y, int w, int h, int stride); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1125:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char overlay_buf[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1472:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[16]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1761:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(data_backup, data_ptr, type_info->Size); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1863:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char v_str[64]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:2094:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value_buf[64]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:2548:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value_buf[64]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:2695:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char value_buf[64]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:2819:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt_buf[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:2820:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char data_buf[32]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:2856:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:2976:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char format[16] = "%f"; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:2984:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char format[16] = "%f"; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:2992:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char format[16] = "%f"; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:3000:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char format[16] = "%f"; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:3191:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(text + pos, new_text, (size_t)new_text_len * sizeof(ImWchar)); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:3277:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(Buf + pos, new_text, (size_t)new_text_len * sizeof(char)); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:3445:9: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(state->InitialTextA.Data, buf, buf_len + 1); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:4232:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:4324:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((float*)col, payload->Data, sizeof(float) * 3); // Preserve alpha if any //-V512 data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:4329:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy((float*)col, payload->Data, sizeof(float) * components); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:4462:5: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(backup_initial_col, col, components * sizeof(float)); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:4588:17: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(col, ref_col, components * sizeof(float)); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:4926:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[64]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:4970:13: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dummy_ref_col, ref_col, sizeof(float) * ((picker_flags & ImGuiColorEditFlags_NoAlpha) ? 3 : 4)); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:5842:9: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char fmt[64]; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:6727:9: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). if (open) data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:284:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char ttf_buffer[1<<20]; data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:285:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char temp_bitmap[512*512]; data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:292:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fread(ttf_buffer, 1, 1<<20, fopen("c:/windows/fonts/times.ttf", "rb")); data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:333:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char ttf_buffer[1<<25]; data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:339:32: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int w,h,i,j,c = (argc > 1 ? atoi(argv[1]) : 'a'), s = (argc > 2 ? atoi(argv[2]) : 20); data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:339:70: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). int w,h,i,j,c = (argc > 1 ? atoi(argv[1]) : 'a'), s = (argc > 2 ? atoi(argv[2]) : 20); data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:341:32: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fread(ttf_buffer, 1, 1<<25, fopen(argc > 3 ? argv[3] : "c:/windows/fonts/arialbd.ttf", "rb")); data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:373:1: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[24<<20]; data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:374:10: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char screen[20][79]; data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:383:30: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). fread(buffer, 1, 1000000, fopen("c:/windows/fonts/arialbd.ttf", "rb")); data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:437:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char stbtt__check_size32[sizeof(stbtt_int32)==4 ? 1 : -1]; data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:438:12: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef char stbtt__check_size16[sizeof(stbtt_int16)==2 ? 1 : -1]; data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:488:31: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. #define STBTT_memcpy memcpy data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:2839:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char scanline_data[512], *scanline; data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:3854:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[STBTT_MAX_OVERSAMPLE]; data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:3916:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buffer[STBTT_MAX_OVERSAMPLE]; data/monado-0.3.0/src/external/imgui/imgui_monado/imgui_monado.cpp:36:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[100]; data/monado-0.3.0/src/external/openxr_includes/openxr/loader_interfaces.h:105:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char layerName[XR_MAX_API_LAYER_NAME_SIZE]; // Name of API layer which should receive this info data/monado-0.3.0/src/external/openxr_includes/openxr/loader_interfaces.h:118:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char settings_file_location[XR_API_LAYER_MAX_SETTINGS_PATH_SIZE]; // Location to the found settings file (or empty '\0') data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:449:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char layerName[XR_MAX_API_LAYER_NAME_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:452:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char description[XR_MAX_API_LAYER_DESCRIPTION_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:458:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char extensionName[XR_MAX_EXTENSION_NAME_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:463:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char applicationName[XR_MAX_APPLICATION_NAME_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:465:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char engineName[XR_MAX_ENGINE_NAME_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:485:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char runtimeName[XR_MAX_RUNTIME_NAME_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:516:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char systemName[XR_MAX_SYSTEM_NAME_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:705:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char actionSetName[XR_MAX_ACTION_SET_NAME_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:706:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char localizedActionSetName[XR_MAX_LOCALIZED_ACTION_SET_NAME_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:713:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char actionName[XR_MAX_ACTION_NAME_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:717:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char localizedActionName[XR_MAX_LOCALIZED_ACTION_NAME_SIZE]; data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:967:89: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef XrResult (XRAPI_PTR *PFN_xrResultToString)(XrInstance instance, XrResult value, char buffer[XR_MAX_RESULT_STRING_SIZE]); data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:968:103: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. typedef XrResult (XRAPI_PTR *PFN_xrStructureTypeToString)(XrInstance instance, XrStructureType value, char buffer[XR_MAX_STRUCTURE_NAME_SIZE]); data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:1051:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[XR_MAX_RESULT_STRING_SIZE]); data/monado-0.3.0/src/external/openxr_includes/openxr/openxr.h:1056:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[XR_MAX_STRUCTURE_NAME_SIZE]); data/monado-0.3.0/src/xrt/auxiliary/math/m_base.cpp:372:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(outPose, &newPose, sizeof(xrt_pose)); data/monado-0.3.0/src/xrt/auxiliary/os/os_ble_dbus.c:741:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char dbus_address[256]; // should be long enough data/monado-0.3.0/src/xrt/auxiliary/os/os_hid_hidraw.c:153:14: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). hrdev->fd = open(path, O_RDWR); data/monado-0.3.0/src/xrt/auxiliary/tracking/t_calibration.cpp:158:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[512] = {}; data/monado-0.3.0/src/xrt/auxiliary/tracking/t_calibration.cpp:837:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/monado-0.3.0/src/xrt/auxiliary/tracking/t_calibration.cpp:921:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/monado-0.3.0/src/xrt/auxiliary/tracking/t_calibration.cpp:1129:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[512]; data/monado-0.3.0/src/xrt/auxiliary/util/u_file.c:24:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[PATH_MAX]; data/monado-0.3.0/src/xrt/auxiliary/util/u_file.c:71:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[PATH_MAX]; data/monado-0.3.0/src/xrt/auxiliary/util/u_file.c:83:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[PATH_MAX]; data/monado-0.3.0/src/xrt/auxiliary/util/u_file.c:89:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char file_str[PATH_MAX + 15]; data/monado-0.3.0/src/xrt/auxiliary/util/u_file.c:95:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *file = fopen(file_str, mode); data/monado-0.3.0/src/xrt/auxiliary/util/u_file.c:104:9: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). return fopen(file_str, mode); data/monado-0.3.0/src/xrt/auxiliary/vk/vk_helpers.c:835:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char title[20]; data/monado-0.3.0/src/xrt/compositor/main/comp_distortion.c:525:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d->ubo_viewport_handles[eye].mapped, &d->ubo_vp_data[eye], data/monado-0.3.0/src/xrt/compositor/main/comp_distortion.c:678:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d->ubo_handle.mapped, &d->ubo_vive, sizeof(d->ubo_vive)); data/monado-0.3.0/src/xrt/compositor/main/comp_distortion.c:702:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d->ubo_handle.mapped, &d->ubo_pano, sizeof(d->ubo_pano)); data/monado-0.3.0/src/xrt/compositor/main/comp_distortion.c:717:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d->ubo_viewport_handles[0].mapped, &d->ubo_vp_data[0], sizeof(d->ubo_vp_data[0])); data/monado-0.3.0/src/xrt/compositor/main/comp_distortion.c:718:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d->ubo_viewport_handles[1].mapped, &d->ubo_vp_data[1], sizeof(d->ubo_vp_data[1])); data/monado-0.3.0/src/xrt/compositor/main/comp_distortion.c:783:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(buffer->mapped, data, size); data/monado-0.3.0/src/xrt/compositor/main/comp_layer.c:41:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&self->model_matrix, m, sizeof(struct xrt_matrix_4x4)); data/monado-0.3.0/src/xrt/compositor/main/comp_layer.c:51:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(self->transformation_ubos[eye].data, &self->transformation[eye], data/monado-0.3.0/src/xrt/compositor/main/comp_layer.c:78:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(self->transformation_ubos[i].data, data/monado-0.3.0/src/xrt/compositor/main/comp_layer_renderer.c:362:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(tmp, plane_vertices, sizeof(float) * ARRAY_SIZE(plane_vertices)); data/monado-0.3.0/src/xrt/compositor/main/comp_window_direct_nvidia.c:142:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d.name, disp->displayName, disp_entry_length); data/monado-0.3.0/src/xrt/compositor/main/comp_window_direct_randr.c:337:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(d.name, name, name_len); data/monado-0.3.0/src/xrt/compositor/main/comp_window_xcb.c:336:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(w->displays[i].name, name, name_len); data/monado-0.3.0/src/xrt/drivers/daydream/daydream_device.h:72:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mac[128]; data/monado-0.3.0/src/xrt/drivers/daydream/daydream_device.h:73:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[128]; data/monado-0.3.0/src/xrt/drivers/hdk/hdk_prober.c:44:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char buf[256] = {0}; data/monado-0.3.0/src/xrt/drivers/north_star/ns_hmd.c:191:4: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char key[4]; data/monado-0.3.0/src/xrt/drivers/north_star/ns_hmd.c:192:4: [2] (buffer) sprintf: Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or vsnprintf. Risk is low because the source has a constant maximum length. sprintf(key, "e%d%d", x, y); data/monado-0.3.0/src/xrt/drivers/north_star/ns_hmd.c:244:22: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *config_file = fopen(ns->config_path, "r"); data/monado-0.3.0/src/xrt/drivers/north_star/ns_hmd.c:253:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char json[8192]; data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:1272:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst + dst_offset, src + src_offset, data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:1518:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst + dst_offset, src + src_offset, data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:144:40: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. XRT_MAYBE_UNUSED static const unsigned char psvr_tracking_on[12] = { data/monado-0.3.0/src/xrt/drivers/survive/survive_driver.c:448:4: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(&dev[i]->pending_events[queue_index], event, data/monado-0.3.0/src/xrt/drivers/v4l2/v4l2_driver.c:789:11: [2] (misc) open: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). int fd = open(path, O_RDWR, 0); data/monado-0.3.0/src/xrt/drivers/v4l2/v4l2_interface.h:37:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char format_name[32]; data/monado-0.3.0/src/xrt/drivers/vive/vive_controller.h:121:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mb_serial_number[32]; data/monado-0.3.0/src/xrt/drivers/vive/vive_controller.h:122:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char model_number[32]; data/monado-0.3.0/src/xrt/drivers/vive/vive_controller.h:123:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char device_serial_number[32]; data/monado-0.3.0/src/xrt/drivers/vive/vive_device.h:122:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char mb_serial_number[32]; data/monado-0.3.0/src/xrt/drivers/vive/vive_device.h:123:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char model_number[32]; data/monado-0.3.0/src/xrt/drivers/vive/vive_device.h:124:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char device_serial_number[32]; data/monado-0.3.0/src/xrt/drivers/vive/vive_prober.c:32:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char s[256] = {0}; data/monado-0.3.0/src/xrt/drivers/vive/vive_protocol.c:105:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(config_z + count, report.payload, report.len); data/monado-0.3.0/src/xrt/include/xrt/xrt_device.h:210:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[XRT_DEVICE_NAME_LEN]; data/monado-0.3.0/src/xrt/include/xrt/xrt_frameserver.h:62:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[512]; data/monado-0.3.0/src/xrt/include/xrt/xrt_instance.h:38:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char application_name[XRT_MAX_APPLICATION_NAME_SIZE]; data/monado-0.3.0/src/xrt/include/xrt/xrt_settings.h:44:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char camera_name[XRT_SETTINGS_CAMERA_NAME_LENGTH]; data/monado-0.3.0/src/xrt/include/xrt/xrt_settings.h:47:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char calibration_path[XRT_SETTINGS_PATH_LENGTH]; data/monado-0.3.0/src/xrt/include/xrt/xrt_tracking.h:58:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[XRT_TRACKING_NAME_LEN]; data/monado-0.3.0/src/xrt/ipc/ipc_client_compositor.c:276:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(formats, info.formats, sizeof(int64_t) * (*num_formats)); data/monado-0.3.0/src/xrt/ipc/ipc_client_utils.c:134:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(fds, (int *)CMSG_DATA(cmsg), fds_size); data/monado-0.3.0/src/xrt/ipc/ipc_protocol.h:48:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[XRT_TRACKING_NAME_LEN]; data/monado-0.3.0/src/xrt/ipc/ipc_protocol.h:66:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char str[XRT_DEVICE_NAME_LEN]; data/monado-0.3.0/src/xrt/ipc/ipc_server_client.c:406:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(dst, src, sizeof(struct xrt_input) * idev->num_inputs); data/monado-0.3.0/src/xrt/ipc/ipc_server_utils.c:81:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(CMSG_DATA(cmsg), fds, fds_size); data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_calibrate.c:49:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char filename[16]; data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_calibrate.c:96:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[sizeof(cs->filename) + 16]; data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_calibrate.c:149:21: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *calib_file = fopen(cs->settings->calibration_path, "wb"); data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_calibrate.c:183:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[512]; data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_debug.c:121:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char temp[512]; data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_debug.c:244:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char text[512]; data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_video.c:61:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[256] = {0}; data/monado-0.3.0/src/xrt/state_trackers/gui/gui_scene_video.c:79:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[512]; data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_funcs.h:84:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[XR_MAX_RESULT_STRING_SIZE]); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_funcs.h:90:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[XR_MAX_STRUCTURE_NAME_SIZE]); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_instance.c:154:22: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[XR_MAX_RESULT_STRING_SIZE]) data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_instance.c:177:29: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buffer[XR_MAX_STRUCTURE_NAME_SIZE]) data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_binding_data.h:18:8: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. const char *paths[8]; data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_event.c:238:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(eventData, oxr_event_extra(event), event->length); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_input_transform.c:266:2: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(ret, transforms, sizeof(*ret) * num_transforms); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_objects.h:1661:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[XR_MAX_ACTION_SET_NAME_SIZE]; data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_objects.h:1734:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char name[XR_MAX_ACTION_NAME_SIZE]; data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_verify.c:163:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char formatted_path[XR_MAX_PATH_LENGTH + 6]; data/monado-0.3.0/src/xrt/state_trackers/prober/p_dump.c:68:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[1024]; data/monado-0.3.0/src/xrt/state_trackers/prober/p_json.c:49:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[1024]; data/monado-0.3.0/src/xrt/state_trackers/prober/p_json.c:166:2: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char tmp[16]; data/monado-0.3.0/src/xrt/state_trackers/prober/p_libusb.c:89:3: [2] (buffer) memcpy: Does not check for buffer overflows when copying to destination (CWE-120). Make sure destination can always hold the source data. memcpy(pdev->usb.ports, ports, sizeof(uint8_t) * num); data/monado-0.3.0/src/xrt/state_trackers/prober/p_prober.c:141:11: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. unsigned char s[256] = {0}; data/monado-0.3.0/src/xrt/state_trackers/prober/p_tracking.c:148:15: [2] (misc) fopen: Check when opening files - can an attacker redirect it (via symlinks), force the opening of special file type (e.g., device files), move things around to create a race condition, control its ancestors, or change its contents? (CWE-362). FILE *file = fopen(fact->settings.calibration_path, "rb"); data/monado-0.3.0/src/xrt/targets/ctl/main.c:43:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). s_val = atoi(optarg); data/monado-0.3.0/src/xrt/targets/ctl/main.c:49:12: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). s_val = atoi(optarg); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:3727:29: [1] (buffer) is_permutation: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. return std::is_permutation(m_target.begin(), m_target.end(), vec.begin()); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:13338:36: [1] (buffer) getchar: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static_cast<void>(std::getchar()); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:13343:36: [1] (buffer) getchar: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). static_cast<void>(std::getchar()); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:13640:50: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. return s.size() >= prefix.size() && std::equal(prefix.begin(), prefix.end(), s.begin()); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:13646:50: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. return s.size() >= suffix.size() && std::equal(suffix.rbegin(), suffix.rend(), s.rbegin()); data/monado-0.3.0/src/external/Catch2/catch/catch.hpp:13734:67: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). : StringRef( rawChars, static_cast<StringRef::size_type>(std::strlen(rawChars) ) ) data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:169:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). length = strlen((const char*)string) + sizeof(""); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:480:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer->offset += strlen((const char*)buffer_pointer); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:1025:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buffer.length = strlen((const char*)value) + sizeof(""); data/monado-0.3.0/src/external/cjson/cjson/cJSON.c:1326:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). raw_length = strlen(item->valuestring) + sizeof(""); data/monado-0.3.0/src/external/glad/glad/gl.c:1491:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(gl_str_tmp) + 1; data/monado-0.3.0/src/external/glad/glad/gl.c:1531:32: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). terminator = loc + strlen(ext); data/monado-0.3.0/src/external/glad/glad/gl.c:1580:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const size_t length = strlen(prefixes[i]); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1367:9: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(dst, src, count - 1); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1373:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(str); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1380:54: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t dst_buf_size = p_dst_size ? *p_dst_size : strlen(dst) + 1; data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1381:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t src_size = strlen(src) + 1; data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:1423:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). needle_end = needle + strlen(needle); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:2125:51: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ImGuiTextRange input_range(InputBuf, InputBuf+strlen(InputBuf)); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:2195:53: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = str_end ? (int)(str_end - str) : (int)strlen(str); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:2414:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). text_end = text + strlen(text); // FIXME-OPT data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:2432:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). text_end = text + strlen(text); // FIXME-OPT data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:2672:23: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). NameBufLen = (int)strlen(name) + 1; data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:8917:15: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). IM_ASSERT(strlen(type) < IM_ARRAYSIZE(payload.DataType) && "Payload type can be at most 32 characters long"); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:9349:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ini_size = strlen(ini_data); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:9585:79: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). CFDataRef cf_data = CFDataCreate(kCFAllocatorDefault, (const UInt8*)text, strlen(text)); data/monado-0.3.0/src/external/imgui/imgui/imgui.cpp:9638:35: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const char* text_end = text + strlen(text); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:3203:130: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ImGui::LogText("colors[ImGuiCol_%s]%*s= ImVec4(%.2ff, %.2ff, %.2ff, %.2ff);" IM_NEWLINE, name, 23 - (int)strlen(name), "", col.x, col.y, col.z, col.w); data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:3489:85: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). static char* Strdup(const char *str) { size_t len = strlen(str) + 1; void* buf = malloc(len); IM_ASSERT(buf); return (char*)memcpy(buf, (const void*)str, len); } data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:3490:94: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). static void Strtrim(char* str) { char* str_end = str + strlen(str); while (str_end > str && str_end[-1] == ' ') str_end--; *str_end = 0; } data/monado-0.3.0/src/external/imgui/imgui/imgui_demo.cpp:3611:13: [1] (buffer) strcpy: Does not check for buffer overflows when copying to destination [MS-banned] (CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused). Risk is low because the source is a constant character. strcpy(s, ""); data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1107:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). text_end = text_begin + strlen(text_begin); data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1676:29: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). for (p = filename + strlen(filename); p > filename && p[-1] != '/' && p[-1] != '\\'; p--) {} data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:1710:38: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int compressed_ttf_size = (((int)strlen(compressed_ttf_data_base85) + 4) / 5) * 4; data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:2712:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). text_end = text_begin + strlen(text_begin); // FIXME-OPT: Need to avoid this. data/monado-0.3.0/src/external/imgui/imgui/imgui_draw.cpp:2820:33: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). text_end = text_begin + strlen(text_begin); // ImGui:: functions generally already provides a valid text_end, so this is merely to handle direct calls. data/monado-0.3.0/src/external/imgui/imgui/imgui_impl_opengl3.cpp:147:20: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). IM_ASSERT((int)strlen(glsl_version) + 2 < IM_ARRAYSIZE(g_GlslVersionString)); data/monado-0.3.0/src/external/imgui/imgui/imgui_impl_opengl3.cpp:149:5: [1] (buffer) strcat: Does not check for buffer overflows when concatenating to destination [MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or snprintf (warning: strncat is easily misused). Risk is low because the source is a constant character. strcat(g_GlslVersionString, "\n"); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:140:27: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). text_end = text + strlen(text); // FIXME-OPT data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1526:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:1591:14: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). p += strlen(p) + 1; data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:3258:83: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int new_text_len = new_text_end ? (int)(new_text_end - new_text) : (int)strlen(new_text); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:3443:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int buf_len = (int)strlen(buf); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:3711:48: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). const int clipboard_len = (int)strlen(clipboard); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:3828:68: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). IM_ASSERT(callback_data.BufTextLen == (int)strlen(callback_data.Buf)); // You need to maintain BufTextLen if you change the text! data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:3901:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf_display_end = hint + strlen(hint); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:4071:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). buf_display_end = buf_display + strlen(buf_display); data/monado-0.3.0/src/external/imgui/imgui/imgui_widgets.cpp:6850:46: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). tab_bar->TabsNames.append(label, label + strlen(label) + 1); data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:483:31: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). #define STBTT_strlen(x) strlen(x) data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:4292:12: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. static int equal(float *a, float *b) data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:4341:17: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (equal(q0,q1) || equal(q1,q2)) { data/monado-0.3.0/src/external/imgui/imgui/imstb_truetype.h:4341:33: [1] (buffer) equal: Function does not check the second iterator for over-read conditions (CWE-126). This function is often discouraged by most C++ coding standards in favor of its safer alternatives provided since C++14. Consider using a form of this function that checks the second iterator before potentially overflowing it. if (equal(q0,q1) || equal(q1,q2)) { data/monado-0.3.0/src/xrt/auxiliary/os/os_ble.h:30:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int (*read)(struct os_ble_device *ble_dev, data/monado-0.3.0/src/xrt/auxiliary/os/os_ble.h:52:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return ble_dev->read(ble_dev, data, size, milliseconds); data/monado-0.3.0/src/xrt/auxiliary/os/os_ble_dbus.c:239:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t str_len = strlen(str); data/monado-0.3.0/src/xrt/auxiliary/os/os_ble_dbus.c:240:25: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t beginning_len = strlen(beginning); data/monado-0.3.0/src/xrt/auxiliary/os/os_ble_dbus.c:829:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read(dev->fd, data, length); data/monado-0.3.0/src/xrt/auxiliary/os/os_hid.h:30:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). int (*read)(struct os_hid_device *hid_dev, data/monado-0.3.0/src/xrt/auxiliary/os/os_hid.h:70:18: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). return hid_dev->read(hid_dev, data, size, milliseconds); data/monado-0.3.0/src/xrt/auxiliary/os/os_hid_hidraw.c:67:8: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). ret = read(hrdev->fd, data, length); data/monado-0.3.0/src/xrt/auxiliary/tracking/t_file.cpp:340:6: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read != 3) { data/monado-0.3.0/src/xrt/auxiliary/tracking/t_file.cpp:341:57: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). printf("Failed to read mat header: '%i' '%s'\n", (int)read, data/monado-0.3.0/src/xrt/auxiliary/tracking/t_file.cpp:360:6: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). if (read != (header[1] * header[2])) { data/monado-0.3.0/src/xrt/auxiliary/tracking/t_file.cpp:361:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). printf("Failed to read mat body: '%i' '%s'\n", (int)read, name); data/monado-0.3.0/src/xrt/auxiliary/util/u_file.c:29:8: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(tmp) - 1; data/monado-0.3.0/src/xrt/auxiliary/util/u_hashset.cpp:74:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t length = strlen(c_str); data/monado-0.3.0/src/xrt/auxiliary/util/u_hashset.cpp:133:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t length = strlen(c_str); data/monado-0.3.0/src/xrt/auxiliary/util/u_hashset.cpp:156:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t length = strlen(c_str); data/monado-0.3.0/src/xrt/compositor/client/comp_egl_glue.c:26:68: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). EGLSurface read, data/monado-0.3.0/src/xrt/compositor/main/comp_compositor.c:650:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned long wl_entry_length = strlen(wl_entry); data/monado-0.3.0/src/xrt/compositor/main/comp_compositor.c:651:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned long disp_entry_length = strlen(disp->displayName); data/monado-0.3.0/src/xrt/compositor/main/comp_window_direct_nvidia.c:126:34: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned long wl_entry_length = strlen(wl_entry); data/monado-0.3.0/src/xrt/compositor/main/comp_window_direct_nvidia.c:127:36: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). unsigned long disp_entry_length = strlen(disp->displayName); data/monado-0.3.0/src/xrt/compositor/main/comp_window_direct_randr.c:379:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). connection, 1, strlen("non-desktop"), "non-desktop"); data/monado-0.3.0/src/xrt/compositor/main/comp_window_xcb.c:375:45: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). cookie = xcb_intern_atom(w->connection, 0, strlen(name), name); data/monado-0.3.0/src/xrt/compositor/main/comp_window_xcb.c:416:22: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(title), title); data/monado-0.3.0/src/xrt/drivers/north_star/ns_hmd.c:256:15: [1] (buffer) fgetc: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). json[i++] = fgetc(config_file); data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:490:4: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). } read; data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:654:31: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). &psmv->read.accel, &psmv->read.gyro); data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:654:50: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). &psmv->read.accel, &psmv->read.gyro); data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:659:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). sample.accel_m_s2 = psmv->read.accel; data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:660:32: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). sample.gyro_rad_secs = psmv->read.gyro; data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:669:33: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). &psmv->fusion.rot, &psmv->read.gyro, dt, &psmv->fusion.rot); data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:672:49: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). psmv->fusion.fusion, timestamp_ns, &psmv->read.gyro, data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:673:43: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). &psmv->fusion.variance.gyro, &psmv->read.accel, data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:1141:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). u_var_add_ro_vec3_f32(psmv, &psmv->read.accel, "read.accel"); data/monado-0.3.0/src/xrt/drivers/psmv/psmv_driver.c:1142:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). u_var_add_ro_vec3_f32(psmv, &psmv->read.gyro, "read.gyro"); data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:81:4: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). } read; data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:312:57: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). read_sample_and_apply_calibration(psvr, sample, &psvr->read.accel, data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:313:43: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). &psvr->read.gyro); data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:317:29: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). sample.accel_m_s2 = psvr->read.accel; data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:318:32: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). sample.gyro_rad_secs = psvr->read.gyro; data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:325:55: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). m_imu_3dof_update(&psvr->fusion, delta_secs, &psvr->read.accel, data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:326:28: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). &psvr->read.gyro); data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:329:39: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). &psvr->read.gyro, delta_secs, data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:1111:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). u_var_add_ro_vec3_f32(psvr, &psvr->read.accel, "read.accel"); data/monado-0.3.0/src/xrt/drivers/psvr/psvr_device.c:1112:37: [1] (buffer) read: Check buffer boundaries if used in a loop including recursive loops (CWE-120, CWE-20). u_var_add_ro_vec3_f32(psvr, &psvr->read.gyro, "read.gyro"); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_instance.c:162:12: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). case VAL: strncpy(buffer, #VAL, XR_MAX_RESULT_STRING_SIZE); break; data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_instance.c:185:12: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). case VAL: strncpy(buffer, #VAL, XR_MAX_RESULT_STRING_SIZE); break; data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_api_instance.c:214:55: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). ret = oxr_path_get_or_create(&log, inst, pathString, strlen(pathString), data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_binding.c:38:16: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t len = strlen(str); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_binding.c:124:26: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). strlen(templ->path), &t_path); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_input.c:278:2: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(act_set_ref->name, createInfo->actionSetName, data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_input.c:368:2: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). strncpy(act_ref->name, createInfo->actionName, sizeof(act_ref->name)); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_input_transform.c:171:12: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int len = strlen(str); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_input_transform.c:172:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). int suffix_len = strlen(suffix); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_instance.c:98:41: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). oxr_path_get_or_create(log, inst, str, strlen(str), out_path); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_instance.c:291:2: [1] (buffer) strncpy: Easily used incorrectly; doesn't always \0-terminate or check for invalid pointers [MS-banned] (CWE-120). Risk is low because the source is a constant string. strncpy(instanceProperties->runtimeName, data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_verify.c:83:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t length = strlen(path); data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_vulkan.c:32:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t length = strlen(xrt_gfx_vk_instance_extensions) + 1; data/monado-0.3.0/src/xrt/state_trackers/oxr/oxr_vulkan.c:46:18: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). size_t length = strlen(xrt_gfx_vk_device_extensions) + 1; data/monado-0.3.0/src/xrt/state_trackers/prober/p_json.c:75:6: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if (strlen(str) == 0) { ANALYSIS SUMMARY: Hits = 511 Lines analyzed = 150689 in approximately 3.36 seconds (44859 lines/second) Physical Source Lines of Code (SLOC) = 107972 Hits@level = [0] 461 [1] 112 [2] 286 [3] 8 [4] 105 [5] 0 Hits@level+ = [0+] 972 [1+] 511 [2+] 399 [3+] 113 [4+] 105 [5+] 0 Hits/KSLOC@level+ = [0+] 9.00233 [1+] 4.73271 [2+] 3.6954 [3+] 1.04657 [4+] 0.972474 [5+] 0 Dot directories skipped = 3 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.