Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/nut-2.7.4/tests/example.cpp
Examining data/nut-2.7.4/tests/cpputest.cpp
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-init.c
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-init.h
Examining data/nut-2.7.4/tools/nut-scanner/scan_snmp.c
Examining data/nut-2.7.4/tools/nut-scanner/nut-scan.h
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-device.h
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-serial.c
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-device.c
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c
Examining data/nut-2.7.4/tools/nut-scanner/scan_avahi.c
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-usb.h
Examining data/nut-2.7.4/tools/nut-scanner/scan_usb.c
Examining data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c
Examining data/nut-2.7.4/tools/nut-scanner/scan_ipmi.c
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-ip.h
Examining data/nut-2.7.4/tools/nut-scanner/nut-scanner.c
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-display.c
Examining data/nut-2.7.4/tools/nut-scanner/scan_nut.c
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-snmp.h
Examining data/nut-2.7.4/tools/nut-scanner/scan_xml_http.c
Examining data/nut-2.7.4/tools/nut-scanner/nutscan-serial.h
Examining data/nut-2.7.4/server/netuser.c
Examining data/nut-2.7.4/server/netinstcmd.h
Examining data/nut-2.7.4/server/netset.h
Examining data/nut-2.7.4/server/netcmds.h
Examining data/nut-2.7.4/server/netlist.h
Examining data/nut-2.7.4/server/upsd.h
Examining data/nut-2.7.4/server/conf.h
Examining data/nut-2.7.4/server/stype.h
Examining data/nut-2.7.4/server/desc.c
Examining data/nut-2.7.4/server/conf.c
Examining data/nut-2.7.4/server/upstype.h
Examining data/nut-2.7.4/server/upsd.c
Examining data/nut-2.7.4/server/netmisc.h
Examining data/nut-2.7.4/server/netinstcmd.c
Examining data/nut-2.7.4/server/user-data.h
Examining data/nut-2.7.4/server/sockdebug.c
Examining data/nut-2.7.4/server/netssl.c
Examining data/nut-2.7.4/server/sstate.c
Examining data/nut-2.7.4/server/netset.c
Examining data/nut-2.7.4/server/netuser.h
Examining data/nut-2.7.4/server/sstate.h
Examining data/nut-2.7.4/server/user.h
Examining data/nut-2.7.4/server/user.c
Examining data/nut-2.7.4/server/desc.h
Examining data/nut-2.7.4/server/nut_ctype.h
Examining data/nut-2.7.4/server/netssl.h
Examining data/nut-2.7.4/server/neterr.h
Examining data/nut-2.7.4/server/netlist.c
Examining data/nut-2.7.4/server/netmisc.c
Examining data/nut-2.7.4/server/netget.c
Examining data/nut-2.7.4/server/netget.h
Examining data/nut-2.7.4/drivers/usb-common.h
Examining data/nut-2.7.4/drivers/dstate.h
Examining data/nut-2.7.4/drivers/bestuferrups.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_megatec.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_megatec-old.h
Examining data/nut-2.7.4/drivers/apc-ats-mib.c
Examining data/nut-2.7.4/drivers/victronups.c
Examining data/nut-2.7.4/drivers/compaq-mib.h
Examining data/nut-2.7.4/drivers/powercom.c
Examining data/nut-2.7.4/drivers/microdowell.c
Examining data/nut-2.7.4/drivers/libhid.h
Examining data/nut-2.7.4/drivers/nutdrv_qx_mustek.h
Examining data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.h
Examining data/nut-2.7.4/drivers/belkinunv.c
Examining data/nut-2.7.4/drivers/openups-hid.c
Examining data/nut-2.7.4/drivers/main.h
Examining data/nut-2.7.4/drivers/libusb.c
Examining data/nut-2.7.4/drivers/eaton-ats-mib.c
Examining data/nut-2.7.4/drivers/asem.c
Examining data/nut-2.7.4/drivers/tripplite.h
Examining data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c
Examining data/nut-2.7.4/drivers/safenet.c
Examining data/nut-2.7.4/drivers/metasys.c
Examining data/nut-2.7.4/drivers/huawei-mib.h
Examining data/nut-2.7.4/drivers/blazer.c
Examining data/nut-2.7.4/drivers/dummy-ups.h
Examining data/nut-2.7.4/drivers/nutdrv_qx_megatec.h
Examining data/nut-2.7.4/drivers/netxml-ups.h
Examining data/nut-2.7.4/drivers/belkin.c
Examining data/nut-2.7.4/drivers/liebert-hid.c
Examining data/nut-2.7.4/drivers/mge-utalk.c
Examining data/nut-2.7.4/drivers/richcomm_usb.c
Examining data/nut-2.7.4/drivers/apcsmart_tabs.c
Examining data/nut-2.7.4/drivers/belkin-hid.h
Examining data/nut-2.7.4/drivers/tripplite.c
Examining data/nut-2.7.4/drivers/cps-hid.h
Examining data/nut-2.7.4/drivers/nutdrv_qx.h
Examining data/nut-2.7.4/drivers/bestups.c
Examining data/nut-2.7.4/drivers/gamatronic.c
Examining data/nut-2.7.4/drivers/netxml-ups.c
Examining data/nut-2.7.4/drivers/powerman-pdu.c
Examining data/nut-2.7.4/drivers/nutdrv_qx.c
Examining data/nut-2.7.4/drivers/raritan-pdu-mib.h
Examining data/nut-2.7.4/drivers/belkin.h
Examining data/nut-2.7.4/drivers/mge-mib.h
Examining data/nut-2.7.4/drivers/ietf-mib.h
Examining data/nut-2.7.4/drivers/explore-hid.h
Examining data/nut-2.7.4/drivers/serial.h
Examining data/nut-2.7.4/drivers/explore-hid.c
Examining data/nut-2.7.4/drivers/bestfcom.c
Examining data/nut-2.7.4/drivers/macosx-ups.c
Examining data/nut-2.7.4/drivers/baytech-mib.h
Examining data/nut-2.7.4/drivers/riello_usb.c
Examining data/nut-2.7.4/drivers/blazer_usb.c
Examining data/nut-2.7.4/drivers/apc-hid.h
Examining data/nut-2.7.4/drivers/raritan-pdu-mib.c
Examining data/nut-2.7.4/drivers/xppc-mib.c
Examining data/nut-2.7.4/drivers/nut-ipmipsu.c
Examining data/nut-2.7.4/drivers/powerware-mib.c
Examining data/nut-2.7.4/drivers/netvision-mib.h
Examining data/nut-2.7.4/drivers/bcmxcp_io.h
Examining data/nut-2.7.4/drivers/libhid.c
Examining data/nut-2.7.4/drivers/ietf-mib.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_blazer-common.c
Examining data/nut-2.7.4/drivers/openups-hid.h
Examining data/nut-2.7.4/drivers/libshut.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_voltronic.h
Examining data/nut-2.7.4/drivers/nutdrv_atcl_usb.c
Examining data/nut-2.7.4/drivers/eaton-mib.h
Examining data/nut-2.7.4/drivers/oneac.h
Examining data/nut-2.7.4/drivers/libshut.h
Examining data/nut-2.7.4/drivers/tripplite-hid.h
Examining data/nut-2.7.4/drivers/compaq-mib.c
Examining data/nut-2.7.4/drivers/masterguard.c
Examining data/nut-2.7.4/drivers/blazer.h
Examining data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs.h
Examining data/nut-2.7.4/drivers/eaton-mib.c
Examining data/nut-2.7.4/drivers/apc-mib.h
Examining data/nut-2.7.4/drivers/apc-hid.c
Examining data/nut-2.7.4/drivers/cyberpower-mib.c
Examining data/nut-2.7.4/drivers/cps-hid.c
Examining data/nut-2.7.4/drivers/apc-ats-mib.h
Examining data/nut-2.7.4/drivers/mge-utalk.h
Examining data/nut-2.7.4/drivers/liebert-esp2.c
Examining data/nut-2.7.4/drivers/bcmxcp_ser.c
Examining data/nut-2.7.4/drivers/riello.h
Examining data/nut-2.7.4/drivers/dstate.c
Examining data/nut-2.7.4/drivers/apcsmart_tabs.h
Examining data/nut-2.7.4/drivers/mge-mib.c
Examining data/nut-2.7.4/drivers/apcupsd-ups.h
Examining data/nut-2.7.4/drivers/liebert-hid.h
Examining data/nut-2.7.4/drivers/tripplite_usb.c
Examining data/nut-2.7.4/drivers/powerpanel.h
Examining data/nut-2.7.4/drivers/serial.c
Examining data/nut-2.7.4/drivers/riello_ser.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_mustek.c
Examining data/nut-2.7.4/drivers/dummy-ups.c
Examining data/nut-2.7.4/drivers/snmp-ups.h
Examining data/nut-2.7.4/drivers/powerp-txt.h
Examining data/nut-2.7.4/drivers/hidparser.c
Examining data/nut-2.7.4/drivers/bestfortress.c
Examining data/nut-2.7.4/drivers/skel.c
Examining data/nut-2.7.4/drivers/apcsmart.c
Examining data/nut-2.7.4/drivers/powerware-mib.h
Examining data/nut-2.7.4/drivers/etapro.c
Examining data/nut-2.7.4/drivers/mge-hid.h
Examining data/nut-2.7.4/drivers/powercom-hid.c
Examining data/nut-2.7.4/drivers/delta_ups-mib.c
Examining data/nut-2.7.4/drivers/xppc-mib.h
Examining data/nut-2.7.4/drivers/blazer_ser.c
Examining data/nut-2.7.4/drivers/huawei-mib.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_bestups.h
Examining data/nut-2.7.4/drivers/rhino.c
Examining data/nut-2.7.4/drivers/powercom-hid.h
Examining data/nut-2.7.4/drivers/powerp-bin.h
Examining data/nut-2.7.4/drivers/netvision-mib.c
Examining data/nut-2.7.4/drivers/usbhid-ups.c
Examining data/nut-2.7.4/drivers/usbhid-ups.h
Examining data/nut-2.7.4/drivers/nut-libfreeipmi.c
Examining data/nut-2.7.4/drivers/nut-ipmi.h
Examining data/nut-2.7.4/drivers/idowell-hid.h
Examining data/nut-2.7.4/drivers/nutdrv_qx_zinto.h
Examining data/nut-2.7.4/drivers/nutdrv_qx_q1.c
Examining data/nut-2.7.4/drivers/everups.c
Examining data/nut-2.7.4/drivers/apc-mib.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c
Examining data/nut-2.7.4/drivers/clone.c
Examining data/nut-2.7.4/drivers/baytech-mib.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_mecer.c
Examining data/nut-2.7.4/drivers/hidtypes.h
Examining data/nut-2.7.4/drivers/snmp-ups.c
Examining data/nut-2.7.4/drivers/eaton-ats-mib.h
Examining data/nut-2.7.4/drivers/mge-xml.h
Examining data/nut-2.7.4/drivers/bestpower-mib.c
Examining data/nut-2.7.4/drivers/safenet.h
Examining data/nut-2.7.4/drivers/idowell-hid.c
Examining data/nut-2.7.4/drivers/mge-shut.c
Examining data/nut-2.7.4/drivers/genericups.h
Examining data/nut-2.7.4/drivers/nutdrv_qx_zinto.c
Examining data/nut-2.7.4/drivers/bcmxcp_usb.c
Examining data/nut-2.7.4/drivers/solis.c
Examining data/nut-2.7.4/drivers/tripplitesu.c
Examining data/nut-2.7.4/drivers/apcupsd-ups.c
Examining data/nut-2.7.4/drivers/genericups.c
Examining data/nut-2.7.4/drivers/tripplite-hid.c
Examining data/nut-2.7.4/drivers/oneac.c
Examining data/nut-2.7.4/drivers/delta_ups-mib.h
Examining data/nut-2.7.4/drivers/upsdrvctl.c
Examining data/nut-2.7.4/drivers/clone-outlet.c
Examining data/nut-2.7.4/drivers/mge-xml.c
Examining data/nut-2.7.4/drivers/libusb.h
Examining data/nut-2.7.4/drivers/apcsmart-old.c
Examining data/nut-2.7.4/drivers/microdowell.h
Examining data/nut-2.7.4/drivers/riello.c
Examining data/nut-2.7.4/drivers/upscode2.c
Examining data/nut-2.7.4/drivers/isbmex.c
Examining data/nut-2.7.4/drivers/bestpower-mib.h
Examining data/nut-2.7.4/drivers/apcsmart-old.h
Examining data/nut-2.7.4/drivers/nutdrv_qx_megatec-old.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_mecer.h
Examining data/nut-2.7.4/drivers/powercom.h
Examining data/nut-2.7.4/drivers/al175.c
Examining data/nut-2.7.4/drivers/usb-common.c
Examining data/nut-2.7.4/drivers/cyberpower-mib.h
Examining data/nut-2.7.4/drivers/upshandler.h
Examining data/nut-2.7.4/drivers/bcmxcp.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_q1.h
Examining data/nut-2.7.4/drivers/main.c
Examining data/nut-2.7.4/drivers/powerpanel.c
Examining data/nut-2.7.4/drivers/hidparser.h
Examining data/nut-2.7.4/drivers/nutdrv_qx_bestups.c
Examining data/nut-2.7.4/drivers/liebert.c
Examining data/nut-2.7.4/drivers/powerp-txt.c
Examining data/nut-2.7.4/drivers/optiups.c
Examining data/nut-2.7.4/drivers/ivtscd.c
Examining data/nut-2.7.4/drivers/solis.h
Examining data/nut-2.7.4/drivers/mge-shut.h
Examining data/nut-2.7.4/drivers/bcmxcp.h
Examining data/nut-2.7.4/drivers/belkin-hid.c
Examining data/nut-2.7.4/drivers/apcsmart.h
Examining data/nut-2.7.4/drivers/gamatronic.h
Examining data/nut-2.7.4/drivers/powerp-bin.c
Examining data/nut-2.7.4/drivers/nutdrv_qx_blazer-common.h
Examining data/nut-2.7.4/drivers/mge-hid.c
Examining data/nut-2.7.4/clients/upsstats.c
Examining data/nut-2.7.4/clients/upscmd.c
Examining data/nut-2.7.4/clients/upslog.c
Examining data/nut-2.7.4/clients/status.h
Examining data/nut-2.7.4/clients/upsmon.c
Examining data/nut-2.7.4/clients/upssched.c
Examining data/nut-2.7.4/clients/upssched.h
Examining data/nut-2.7.4/clients/upsimage.c
Examining data/nut-2.7.4/clients/upsmon.h
Examining data/nut-2.7.4/clients/nutclient.h
Examining data/nut-2.7.4/clients/upsstats.h
Examining data/nut-2.7.4/clients/nutclient.cpp
Examining data/nut-2.7.4/clients/cgilib.c
Examining data/nut-2.7.4/clients/upslog.h
Examining data/nut-2.7.4/clients/upsclient.c
Examining data/nut-2.7.4/clients/cgilib.h
Examining data/nut-2.7.4/clients/upsclient.h
Examining data/nut-2.7.4/clients/upsrw.c
Examining data/nut-2.7.4/clients/upsimagearg.h
Examining data/nut-2.7.4/clients/upsset.c
Examining data/nut-2.7.4/clients/upsc.c
Examining data/nut-2.7.4/include/upsconf.h
Examining data/nut-2.7.4/include/proto.h
Examining data/nut-2.7.4/include/extstate.h
Examining data/nut-2.7.4/include/str.h
Examining data/nut-2.7.4/include/nut_platform.h
Examining data/nut-2.7.4/include/state.h
Examining data/nut-2.7.4/include/common.h
Examining data/nut-2.7.4/include/timehead.h
Examining data/nut-2.7.4/include/attribute.h
Examining data/nut-2.7.4/include/nut_stdint.h
Examining data/nut-2.7.4/include/parseconf.h
Examining data/nut-2.7.4/scripts/Windows/halt.c
Examining data/nut-2.7.4/common/snprintf.c
Examining data/nut-2.7.4/common/state.c
Examining data/nut-2.7.4/common/common.c
Examining data/nut-2.7.4/common/str.c
Examining data/nut-2.7.4/common/parseconf.c
Examining data/nut-2.7.4/common/setenv.c
Examining data/nut-2.7.4/common/atexit.c
Examining data/nut-2.7.4/common/upsconf.c
Examining data/nut-2.7.4/common/strerror.c
FINAL RESULTS:
data/nut-2.7.4/clients/upssched.c:290:8: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
ret = chmod(pipefn, 0660);
data/nut-2.7.4/drivers/dstate.c:128:8: [5] (race) chmod:
This accepts filename arguments; if an attacker can move those files, a
race condition results. (CWE-362). Use fchmod( ) instead.
ret = chmod(sockfn, 0660);
data/nut-2.7.4/clients/upsclient.c:498:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(ups->errbuf, UPSCLI_ERRBUF_LEN,
data/nut-2.7.4/clients/upsclient.c:508:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(ups->errbuf, UPSCLI_ERRBUF_LEN,
data/nut-2.7.4/clients/upsclient.c:512:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(ups->errbuf, UPSCLI_ERRBUF_LEN,
data/nut-2.7.4/clients/upsclient.c:531:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(ups->errbuf, UPSCLI_ERRBUF_LEN,
data/nut-2.7.4/clients/upsclient.c:1145:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(buf + len, bufsize - len, format,
data/nut-2.7.4/clients/upsimage.c:260:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(text, sizeof(text), format, value);
data/nut-2.7.4/clients/upsimage.c:281:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(msg, sizeof(msg), fmt, ap);
data/nut-2.7.4/clients/upsmon.c:105:7: [4] (shell) popen:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
wf = popen("wall", "w");
data/nut-2.7.4/clients/upsmon.c:154:8: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
if (system(exec) == -1) {
data/nut-2.7.4/clients/upsmon.c:176:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(msg, sizeof(msg), notifylist[i].msg ? notifylist[i].msg : notifylist[i].stockmsg,
data/nut-2.7.4/clients/upsmon.c:445:9: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
ret = system(shutdowncmd);
data/nut-2.7.4/clients/upsmon.c:1683:8: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
ret = system(shutdowncmd);
data/nut-2.7.4/clients/upssched.c:85:8: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
err = system(buf);
data/nut-2.7.4/clients/upssched.c:337:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf, sizeof(buf), fmt, ap);
data/nut-2.7.4/clients/upsset.c:263:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(msg, sizeof(msg), fmt, ap);
data/nut-2.7.4/clients/upsstats.c:486:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(var, s);
data/nut-2.7.4/clients/upsstats.c:508:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(var, s);
data/nut-2.7.4/common/common.c:291:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(dst + len, size - len, fmt, ap);
data/nut-2.7.4/common/common.c:322:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(buf, sizeof(buf), fmt, va);
data/nut-2.7.4/common/setenv.c:20:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buffer, name);
data/nut-2.7.4/common/setenv.c:22:2: [4] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused).
strcat(buffer, value);
data/nut-2.7.4/common/snprintf.c:801:6: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int vsnprintf (char *str, size_t count, const char *fmt, va_list args)
data/nut-2.7.4/common/snprintf.c:812:6: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int snprintf (char *str,size_t count,const char *fmt,...)
data/nut-2.7.4/common/snprintf.c:814:6: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int snprintf (va_alist) va_dcl
data/nut-2.7.4/common/snprintf.c:828:10: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
(void) vsnprintf(str, count, fmt, ap);
data/nut-2.7.4/common/snprintf.c:887:7: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (buf1, sizeof (buf1), fp_fmt[x], fp_nums[y]);
data/nut-2.7.4/common/snprintf.c:888:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (buf2, fp_fmt[x], fp_nums[y]);
data/nut-2.7.4/common/snprintf.c:901:7: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf (buf1, sizeof (buf1), int_fmt[x], int_nums[y]);
data/nut-2.7.4/common/snprintf.c:902:7: [4] (format) sprintf:
Potential format string problem (CWE-134). Make format string constant.
sprintf (buf2, int_fmt[x], int_nums[y]);
data/nut-2.7.4/drivers/apcsmart.c:112:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(info + curr, 8, isprint(x) ? "%c" : "0x%02x", x);
data/nut-2.7.4/drivers/apcsmart.c:158:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(temp, upsval);
data/nut-2.7.4/drivers/apcsmart.c:185:8: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(temp, upsval);
data/nut-2.7.4/drivers/apcsmart.c:192:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(temp, upsval);
data/nut-2.7.4/drivers/apcsmart.c:674:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name, vt->name);
data/nut-2.7.4/drivers/apcsmart.c:698:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(name, vt->name);
data/nut-2.7.4/drivers/apcsmart.c:702:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(temp, upsval);
data/nut-2.7.4/drivers/apcsmart.c:1487:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ptr, awd);
data/nut-2.7.4/drivers/apcsmart.c:1786:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(temp + 1, val);
data/nut-2.7.4/drivers/bcmxcp.c:873:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, 127, sFormat, fValue);
data/nut-2.7.4/drivers/bcmxcp_usb.c:514:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(why, sizeof(why), fmt, ap);
data/nut-2.7.4/drivers/belkinunv.c:713:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf, sizeof(buf), fmt, ap);
data/nut-2.7.4/drivers/belkinunv.c:720:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(oldbuf, buf);
data/nut-2.7.4/drivers/belkinunv.c:727:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(COL0 "%s", buf);
data/nut-2.7.4/drivers/bestfcom.c:495:13: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#error This system lacks cfsetispeed() and has no other means to set the speed
data/nut-2.7.4/drivers/bestfortress.c:168:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(buf, sizeof(buf), fmt, ap);
data/nut-2.7.4/drivers/bestuferrups.c:389:13: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#error This system lacks cfsetispeed() and has no other means to set the speed
data/nut-2.7.4/drivers/bestups.c:292:4: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
sscanf(temp, "%*s %*s %*s %*s %*s %*s %*s %s", pstat);
data/nut-2.7.4/drivers/bestups.c:369:2: [4] (buffer) sscanf:
The scanf() family's %s operation, without a limit specification, permits
buffer overflows (CWE-120, CWE-20). Specify a limit to %s, or use a
different input function.
sscanf(buf, "%*c%s %*s %s %s %s %s %s %s", involt, outvolt,
data/nut-2.7.4/drivers/dstate.c:172:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(buf, sizeof(buf), fmt, ap);
data/nut-2.7.4/drivers/dstate.c:201:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(buf, sizeof(buf), fmt, ap);
data/nut-2.7.4/drivers/dstate.c:617:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(value, sizeof(value), fmt, ap);
data/nut-2.7.4/drivers/dstate.c:636:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(value, sizeof(value), fmt, ap);
data/nut-2.7.4/drivers/gamatronic.c:71:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(buf,buf+5);
data/nut-2.7.4/drivers/mge-shut.c:460:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(model, string);
data/nut-2.7.4/drivers/mge-utalk.c:627:3: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(strchr(cmd, '?'), "%s", val);
data/nut-2.7.4/drivers/mge-utalk.c:685:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(infostr, infolen, item->fmt,
data/nut-2.7.4/drivers/mge-utalk.c:688:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(infostr, infolen, item->fmt,
data/nut-2.7.4/drivers/mge-utalk.c:691:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(infostr, infolen, item->fmt, buf);
data/nut-2.7.4/drivers/mge-utalk.c:870:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(command, sizeof(command), fmt, ap);
data/nut-2.7.4/drivers/netxml-ups.c:98:8: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
char *access; /**< OBJECT access */
data/nut-2.7.4/drivers/netxml-ups.c:1044:20: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
if (NULL != resp->access)
data/nut-2.7.4/drivers/netxml-ups.c:1045:14: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
free(resp->access);
data/nut-2.7.4/drivers/netxml-ups.c:1379:31: [4] (race) access:
This usually indicates a security flaw. If an attacker can change anything
along the path between the call to access() and the file's actual use
(e.g., by moving files), the attacker can exploit the race condition
(CWE-362/CWE-367!). Set up the correct permissions (e.g., using setuid())
and try to open the file directly.
attr = &entry->payld.resp.access;
data/nut-2.7.4/drivers/nutdrv_atcl_usb.c:166:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(why, sizeof(why), fmt, ap);
data/nut-2.7.4/drivers/nutdrv_qx.c:2833:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, sizeof(value), item->dfl, strtod(value, NULL));
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:375:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, val);
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:418:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "Best Power");
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:428:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "Sola Australia");
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:433:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "Unknown");
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:446:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "Axxium Rackmount");
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:450:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "Fortress");
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:454:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "Fortress Telecom");
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:458:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "Patriot Pro II");
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:463:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "Patriot Pro");
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:480:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "Unknown (%s)", item->value);
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:529:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, runtime);
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:544:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, strtol(item->value, NULL, 10));
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:570:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, pins_shutdown_mode);
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:686:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, val);
data/nut-2.7.4/drivers/nutdrv_qx_blazer-common.c:267:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, buf);
data/nut-2.7.4/drivers/nutdrv_qx_blazer-common.c:284:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, buf);
data/nut-2.7.4/drivers/nutdrv_qx_blazer-common.c:297:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, delay);
data/nut-2.7.4/drivers/nutdrv_qx_mecer.c:218:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "Voltronic Power P98");
data/nut-2.7.4/drivers/nutdrv_qx_mecer.c:263:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, buf);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:326:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, item->value);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:359:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, ret);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:372:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, strtol(item->value, NULL, 16));
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:394:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, ret);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:413:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, (val1 * val2) / 510.0);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:481:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, ret);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs.c:199:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, item->value);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:1916:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, val);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2048:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, buf);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2363:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, val);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2385:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, "E");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2390:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, "D");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2446:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, "D");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2448:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, "E");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2500:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, strtod(item->value, NULL));
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2658:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, strtod(item->value, NULL));
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2706:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, val);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2736:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, battery_number);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2767:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, runtime);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2832:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, "No fault found");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3181:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, alarm);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3572:3: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(bitwarns, warns);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3662:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, alarm);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3666:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, status);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3862:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, opf);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3876:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, item->value);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3911:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, switchable);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3915:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, status);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3976:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, val);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:4000:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->command, delay);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:4019:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, item->info_rw[val].value);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:4061:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, item->info_rw[val].value);
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:4129:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(value, valuelen, item->dfl, angle);
data/nut-2.7.4/drivers/optiups.c:531:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf(HELP);
data/nut-2.7.4/drivers/powerp-bin.c:301:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(command, sizeof(command), vartab[i].set,
data/nut-2.7.4/drivers/powerp-txt.c:205:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(command, sizeof(command), vartab[i].set, atoi(val));
data/nut-2.7.4/drivers/rhino.c:452:10: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( M_UNKN );
data/nut-2.7.4/drivers/richcomm_usb.c:150:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(why, sizeof(why), fmt, ap);
data/nut-2.7.4/drivers/serial.c:174:13: [4] (shell) system:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
#error This system lacks cfsetispeed() and has no other means to set the speed
data/nut-2.7.4/drivers/serial.c:269:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(buf, sizeof(buf), fmt, va);
data/nut-2.7.4/drivers/serial.c:470:8: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
ret = vsnprintf(why, sizeof(why), fmt, ap);
data/nut-2.7.4/drivers/snmp-ups.c:913:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(buf, sizeof(buf), fmt, va);
data/nut-2.7.4/drivers/snmp-ups.c:1356:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(test_OID, sizeof(test_OID), OID_template, base_index);
data/nut-2.7.4/drivers/snmp-ups.c:1386:2: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(test_OID, sizeof(test_OID), OID_template, base_index);
data/nut-2.7.4/drivers/snmp-ups.c:1392:3: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(test_OID, sizeof(test_OID), OID_template, base_index + base_count);
data/nut-2.7.4/drivers/snmp-ups.c:1442:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf((char*)cur_info_p.info_type, SU_INFOSIZE,
data/nut-2.7.4/drivers/snmp-ups.c:1449:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf((char *)cur_info_p.dfl, SU_INFOSIZE, su_info_p->dfl, cur_nut_index);
data/nut-2.7.4/drivers/snmp-ups.c:1453:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf((char *)cur_info_p.OID, SU_INFOSIZE, su_info_p->OID, cur_template_number);
data/nut-2.7.4/drivers/snmp-ups.c:1960:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf((char *)su_info_p->dfl, sizeof(su_info_p->dfl), tmp_info_p->dfl,
data/nut-2.7.4/drivers/snmp-ups.c:1965:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf((char *)su_info_p->OID, sizeof(su_info_p->OID), tmp_info_p->OID,
data/nut-2.7.4/drivers/snmp-ups.c:2092:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf((char *)su_info_p->dfl, sizeof(su_info_p->dfl), tmp_info_p->dfl,
data/nut-2.7.4/drivers/snmp-ups.c:2106:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf((char *)su_info_p->OID, sizeof(su_info_p->OID), tmp_info_p->OID,
data/nut-2.7.4/drivers/solis.c:361:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( UPS_DATE, Year, Month, Day );
data/nut-2.7.4/drivers/solis.c:362:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( SYS_DATE, anon, mesn, dian, seman );
data/nut-2.7.4/drivers/solis.c:364:2: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( UPS_TIME, ihour, imin, isec);
data/nut-2.7.4/drivers/solis.c:380:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( PRG_ONOU );
data/nut-2.7.4/drivers/solis.c:382:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( PRG_ONON );
data/nut-2.7.4/drivers/solis.c:383:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( TIME_ON, lhour, lmin);
data/nut-2.7.4/drivers/solis.c:384:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( TIME_OFF, dhour, dmin);
data/nut-2.7.4/drivers/solis.c:385:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( PRG_DAYS );
data/nut-2.7.4/drivers/solis.c:386:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( FMT_DAYS, sunday, monday, tuesday, wednesday, thursday, friday, saturday);
data/nut-2.7.4/drivers/solis.c:389:3: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( PRG_ONOF );
data/nut-2.7.4/drivers/solis.c:863:7: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( M_UNKN );
data/nut-2.7.4/drivers/solis.c:898:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( seman, diassemana[weekn] );
data/nut-2.7.4/drivers/solis.c:900:2: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy( seman, DaysOfWeek[weekn] );
data/nut-2.7.4/drivers/solis.c:1067:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( TODAY_DD, hourshut, minshut );
data/nut-2.7.4/drivers/solis.c:1070:4: [4] (format) printf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
printf( SHUT_NOW );
data/nut-2.7.4/drivers/upscode2.c:1242:4: [4] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused).
strcpy(ret, val);
data/nut-2.7.4/drivers/upsdrvctl.c:252:8: [4] (shell) execv:
This causes a new program to execute and is difficult to use safely
(CWE-78). try using a library call that implements the same functionality
if available.
ret = execv(argv[0], argv);
data/nut-2.7.4/include/proto.h:43:5: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int snprintf (char *str, size_t count, const char *fmt, ...)
data/nut-2.7.4/include/proto.h:48:5: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
int vsnprintf (char *str, size_t count, const char *fmt, va_list arg);
data/nut-2.7.4/include/proto.h:78:17: [4] (misc) getpass:
This function is obsolete and not portable. It was in SUSv2 but removed by
POSIX.2. What it does exactly varies considerably between systems,
particularly in where its prompt is displayed and where it gets its data
(e.g., /dev/tty, stdin, stderr, etc.). In addition, some implementations
overflow buffers. (CWE-676, CWE-120, CWE-20). Make the specific calls to do
exactly what you want. If you continue to use it, or write your own, be
sure to zero the password as soon as possible to avoid leaving the
cleartext password visible in the process' address space.
#define GETPASS getpass
data/nut-2.7.4/include/proto.h:84:5: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
int vprintf(const char *, va_list);
data/nut-2.7.4/server/upsd.c:323:2: [4] (format) vsnprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
vsnprintf(ans, sizeof(ans), fmt, ap);
data/nut-2.7.4/tools/nut-scanner/nut-scanner.c:145:8: [4] (format) vprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
ret = vprintf(fmt, ap);
data/nut-2.7.4/tools/nut-scanner/nutscan-serial.c:142:5: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr,ERR_OUT_OF_BOUND);
data/nut-2.7.4/tools/nut-scanner/nutscan-serial.c:150:6: [4] (format) fprintf:
If format strings can be influenced by an attacker, they can be exploited
(CWE-134). Use a constant for the format specification.
fprintf(stderr,ERR_OUT_OF_BOUND);
data/nut-2.7.4/tools/nut-scanner/nutscan-serial.c:194:4: [4] (format) snprintf:
If format strings can be influenced by an attacker, they can be exploited,
and note that sprintf variations do not always \0-terminate (CWE-134). Use
a constant for the format specification.
snprintf(str_tmp, sizeof(str_tmp),cur_device->name,
data/nut-2.7.4/tools/nut-scanner/scan_ipmi.c:545:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(port_id, "id%x@%s", ipmi_id, IPaddr);
data/nut-2.7.4/tools/nut-scanner/scan_xml_http.c:227:5: [4] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf.
sprintf(buf,"http://%s",string);
data/nut-2.7.4/clients/cgilib.c:68:10: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
query = getenv("QUERY_STRING");
data/nut-2.7.4/clients/upsc.c:215:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((i = getopt(argc, argv, "+hlLcV")) != -1) {
data/nut-2.7.4/clients/upscmd.c:183:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((i = getopt(argc, argv, "+lhu:p:V")) != -1) {
data/nut-2.7.4/clients/upslog.c:393:15: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((i = getopt(argc, argv, "+hs:l:i:f:u:Vp:")) != -1) {
data/nut-2.7.4/clients/upsmon.c:1873:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((i = getopt(argc, argv, "+Dhic:f:pu:VK46")) != -1) {
data/nut-2.7.4/clients/upsrw.c:480:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((i = getopt(argc, argv, "+hs:p:u:V")) != -1) {
data/nut-2.7.4/clients/upssched.c:911:12: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
upsname = getenv("UPSNAME");
data/nut-2.7.4/clients/upssched.c:912:16: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
notify_type = getenv("NOTIFYTYPE");
data/nut-2.7.4/common/common.c:197:6: [3] (misc) chroot:
chroot can be very helpful, but is hard to use correctly (CWE-250, CWE-22).
Make sure the program immediately chdir("/"), closes file descriptors, and
drops root privileges, and that all necessary files (and no more!) are in
the new root.
if (chroot(path))
data/nut-2.7.4/common/common.c:360:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((path = getenv("NUT_CONFPATH")) == NULL)
data/nut-2.7.4/common/common.c:371:14: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
if ((path = getenv("NUT_STATEPATH")) == NULL)
data/nut-2.7.4/common/setenv.c:14:9: [3] (buffer) getenv:
Environment variables are untrustable input if they can be set by an
attacker. They can have any content and length, and the same variable can
be set more than once (CWE-807, CWE-20). Check environment variables
carefully before using them.
val = getenv(name);
data/nut-2.7.4/drivers/main.c:511:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((i = getopt(argc, argv, "+a:kDhx:Lqr:u:Vi:")) != -1) {
data/nut-2.7.4/drivers/safenet.c:374:17: [3] (random) random:
This function is not sufficiently random for security-related functions
such as key and nonce creation (CWE-327). Use a more secure technique for
acquiring random values.
command[i] = (random() % 10) + 'A';
data/nut-2.7.4/drivers/upsdrvctl.c:454:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((i = getopt(argc, argv, "+htu:r:DV")) != -1) {
data/nut-2.7.4/server/upsd.c:909:14: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while ((i = getopt(argc, argv, "+h46p:qr:i:fu:Vc:D")) != -1) {
data/nut-2.7.4/tools/nut-scanner/nut-scanner.c:77:9: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
#define getopt_long(a,b,c,d,e) getopt(a,b,c)
data/nut-2.7.4/tools/nut-scanner/nut-scanner.c:77:32: [3] (buffer) getopt:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
#define getopt_long(a,b,c,d,e) getopt(a,b,c)
data/nut-2.7.4/tools/nut-scanner/nut-scanner.c:181:19: [3] (buffer) getopt_long:
Some older implementations do not protect against internal buffer overflows
(CWE-120, CWE-20). Check implementation on installation, or limit the size
of all string inputs.
while((opt_ret = getopt_long(argc, argv, optstring, longopts, NULL))!=-1) {
data/nut-2.7.4/tools/nut-scanner/nutscan-init.c:75:20: [3] (buffer) realpath:
This function does not protect against buffer overflows, and some
implementations can overflow internally (CWE-120/CWE-785!). Ensure that the
destination buffer is at least of size MAXPATHLEN, andto protect against
implementation problems, the input argument should also be checked to
ensure it is no larger than MAXPATHLEN.
libname_path = realpath(current_test_path, NULL);
data/nut-2.7.4/clients/cgilib.c:29:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ch, *newbuf, hex[8];
data/nut-2.7.4/clients/cgilib.c:113:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF], *ptr, *cleanval;
data/nut-2.7.4/clients/cgilib.c:159:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/clients/nutclient.cpp:136:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sport[NI_MAXSERV];
data/nut-2.7.4/clients/nutclient.cpp:358:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[256];
data/nut-2.7.4/clients/nutclient.cpp:694:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return atoi(num.c_str());
data/nut-2.7.4/clients/upsc.c:62:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsc.c:99:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsc.c:133:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsc.c:169:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsclient.c:157:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[SMALLBUF];
data/nut-2.7.4/clients/upsclient.c:209:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[SMALLBUF];
data/nut-2.7.4/clients/upsclient.c:477:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sslbuf[UPSCLI_ERRBUF_LEN];
data/nut-2.7.4/clients/upsclient.c:684:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[UPSCLI_NETBUF_LEN];
data/nut-2.7.4/clients/upsclient.c:852:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sport[NI_MAXSERV];
data/nut-2.7.4/clients/upsclient.c:1127:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char enc[UPSCLI_NETBUF_LEN];
data/nut-2.7.4/clients/upsclient.c:1172:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[UPSCLI_NETBUF_LEN], tmp[UPSCLI_NETBUF_LEN];
data/nut-2.7.4/clients/upsclient.c:1224:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[UPSCLI_NETBUF_LEN], tmp[UPSCLI_NETBUF_LEN];
data/nut-2.7.4/clients/upsclient.c:1283:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[UPSCLI_NETBUF_LEN];
data/nut-2.7.4/clients/upsclient.c:1415:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *s, tmp[SMALLBUF], *last = NULL;
data/nut-2.7.4/clients/upsclient.c:1451:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *s, tmp[SMALLBUF], *last = NULL;
data/nut-2.7.4/clients/upsclient.h:53:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errbuf[UPSCLI_ERRBUF_LEN];
data/nut-2.7.4/clients/upsclient.h:63:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char readbuf[64];
data/nut-2.7.4/clients/upscmd.c:61:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upscmd.c:84:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upscmd.c:141:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/clients/upscmd.c:180:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF], username[SMALLBUF], password[SMALLBUF];
data/nut-2.7.4/clients/upsimage.c:87:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
v = atoi(value);
data/nut-2.7.4/clients/upsimage.c:146:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lbltxt[SMALLBUF];
data/nut-2.7.4/clients/upsimage.c:222:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char text[SMALLBUF];
data/nut-2.7.4/clients/upsimage.c:277:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[SMALLBUF];
data/nut-2.7.4/clients/upsimage.c:500:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsimage.c:523:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str[SMALLBUF];
data/nut-2.7.4/clients/upsimage.c:579:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
min = atoi(str);
data/nut-2.7.4/clients/upsimage.c:592:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nom = atoi(str);
data/nut-2.7.4/clients/upsimage.c:605:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
max = atoi(str);
data/nut-2.7.4/clients/upslog.c:49:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char logbuffer[LARGEBUF], *logformat;
data/nut-2.7.4/clients/upslog.c:65:12: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
logfile = fopen(logfn, "a");
data/nut-2.7.4/clients/upslog.c:148:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hn[LARGEBUF];
data/nut-2.7.4/clients/upslog.c:173:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timebuf[SMALLBUF], *format;
data/nut-2.7.4/clients/upslog.c:195:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upslog.c:288:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[4];
data/nut-2.7.4/clients/upslog.c:408:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
interval = atoi(optarg);
data/nut-2.7.4/clients/upslog.c:442:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
interval = atoi(argv[2]);
data/nut-2.7.4/clients/upslog.c:479:13: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
logfile = fopen(logfn, "a");
data/nut-2.7.4/clients/upsmon.c:119:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char exec[LARGEBUF];
data/nut-2.7.4/clients/upsmon.c:166:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[SMALLBUF], *upsname = NULL;
data/nut-2.7.4/clients/upsmon.c:190:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/clients/upsmon.c:233:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/clients/upsmon.c:408:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pdf = fopen(powerdownflag, "w");
data/nut-2.7.4/clients/upsmon.c:458:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/clients/upsmon.c:510:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsmon.c:572:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[SMALLBUF];
data/nut-2.7.4/clients/upsmon.c:1095:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pollfreq = atoi(arg[1]);
data/nut-2.7.4/clients/upsmon.c:1101:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pollfreqalert = atoi(arg[1]);
data/nut-2.7.4/clients/upsmon.c:1107:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
hostsync = atoi(arg[1]);
data/nut-2.7.4/clients/upsmon.c:1113:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
deadtime = atoi(arg[1]);
data/nut-2.7.4/clients/upsmon.c:1119:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
minsupplies = atoi(arg[1]);
data/nut-2.7.4/clients/upsmon.c:1125:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
rbwarntime = atoi(arg[1]);
data/nut-2.7.4/clients/upsmon.c:1131:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
nocommwarntime = atoi(arg[1]);
data/nut-2.7.4/clients/upsmon.c:1137:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
finaldelay = atoi(arg[1]);
data/nut-2.7.4/clients/upsmon.c:1157:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
certverify = atoi(arg[1]);
data/nut-2.7.4/clients/upsmon.c:1163:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
forcessl = atoi(arg[1]);
data/nut-2.7.4/clients/upsmon.c:1198:40: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
upscli_add_host_cert(arg[1], arg[2], atoi(arg[3]), atoi(arg[4]));
data/nut-2.7.4/clients/upsmon.c:1198:54: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
upscli_add_host_cert(arg[1], arg[2], atoi(arg[3]), atoi(arg[4]));
data/nut-2.7.4/clients/upsmon.c:1256:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[SMALLBUF];
data/nut-2.7.4/clients/upsmon.c:1504:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char status[SMALLBUF];
data/nut-2.7.4/clients/upsmon.c:1557:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/clients/upsmon.c:1562:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pdf = fopen(powerdownflag, "r");
data/nut-2.7.4/clients/upsmon.c:1762:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(fn, "r");
data/nut-2.7.4/clients/upsrw.c:69:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF], enc[SMALLBUF];
data/nut-2.7.4/clients/upsrw.c:91:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char newval[SMALLBUF], temp[SMALLBUF], user[SMALLBUF], *ptr;
data/nut-2.7.4/clients/upsrw.c:188:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsrw.c:225:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char **answer, buf[SMALLBUF];
data/nut-2.7.4/clients/upsrw.c:226:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4], *val;
data/nut-2.7.4/clients/upsrw.c:277:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4], *val;
data/nut-2.7.4/clients/upsrw.c:287:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ival = atoi(val);
data/nut-2.7.4/clients/upsrw.c:312:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
min = atoi(answer[3]);
data/nut-2.7.4/clients/upsrw.c:313:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
max = atoi(answer[4]);
data/nut-2.7.4/clients/upsrw.c:332:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsrw.c:406:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[2];
data/nut-2.7.4/clients/upssched.c:81:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[LARGEBUF];
data/nut-2.7.4/clients/upssched.c:334:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[US_SOCK_BUF_LEN];
data/nut-2.7.4/clients/upssched.c:523:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (open("/dev/null", O_RDWR) != 0)
data/nut-2.7.4/clients/upssched.c:616:9: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
return open(fn, O_RDONLY | O_CREAT | O_EXCL, 0);
data/nut-2.7.4/clients/upssched.c:683:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF], enc[SMALLBUF];
data/nut-2.7.4/clients/upssched.c:861:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/clients/upssched.c:885:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[SMALLBUF];
data/nut-2.7.4/clients/upsset.c:192:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char hostfn[SMALLBUF];
data/nut-2.7.4/clients/upsset.c:259:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[SMALLBUF];
data/nut-2.7.4/clients/upsset.c:336:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsset.c:358:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[2];
data/nut-2.7.4/clients/upsset.c:474:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/clients/upsset.c:511:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF], *desc;
data/nut-2.7.4/clients/upsset.c:600:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsset.c:638:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4], *tmp;
data/nut-2.7.4/clients/upsset.c:702:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsset.c:772:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[2];
data/nut-2.7.4/clients/upsset.c:870:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF], enc[SMALLBUF];
data/nut-2.7.4/clients/upsset.c:981:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:107:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsstats.c:147:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char answer[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:158:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char status[SMALLBUF], *ptr, *last = NULL;
data/nut-2.7.4/clients/upsstats.c:179:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char runtime[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:196:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char datebuf[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:210:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char answer[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:279:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *type, *ptr, imgargs[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:433:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dummy[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:482:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:483:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *aa[MAX_PARSE_ARGS];
data/nut-2.7.4/clients/upsstats.c:501:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:502:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *aa[MAX_PARSE_ARGS];
data/nut-2.7.4/clients/upsstats.c:503:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:566:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tempc[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:595:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char stat[SMALLBUF], *sp, *ptr;
data/nut-2.7.4/clients/upsstats.c:809:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[SMALLBUF];
data/nut-2.7.4/clients/upsstats.c:845:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF], buf[LARGEBUF];
data/nut-2.7.4/clients/upsstats.c:849:7: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
tf = fopen(fn, "r");
data/nut-2.7.4/clients/upsstats.c:869:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/clients/upsstats.c:964:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/common/common.c:135:6: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
if (open("/dev/null", O_RDWR) != 0)
data/nut-2.7.4/common/common.c:209:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/common/common.c:220:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pidf = fopen(fn, "w");
data/nut-2.7.4/common/common.c:235:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/common/common.c:239:9: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
pidf = fopen(pidfn, "r");
data/nut-2.7.4/common/common.c:301:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/common/common.c:320:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[LARGEBUF];
data/nut-2.7.4/common/common.c:436:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[100];
data/nut-2.7.4/common/common.c:450:15: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
((unsigned char *)buf)[i]);
data/nut-2.7.4/common/common.c:494:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char line[256];
data/nut-2.7.4/common/common.c:504:19: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
ch = ((unsigned char *)buf)[i];
data/nut-2.7.4/common/parseconf.c:438:11: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ctx->f = fopen(fn, "r");
data/nut-2.7.4/common/snprintf.c:461:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char convert[20];
data/nut-2.7.4/common/snprintf.c:587:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iconvert[20];
data/nut-2.7.4/common/snprintf.c:588:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fconvert[20];
data/nut-2.7.4/common/snprintf.c:590:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char iconvert[311];
data/nut-2.7.4/common/snprintf.c:591:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fconvert[311];
data/nut-2.7.4/common/snprintf.c:845:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf1[LONG_STRING];
data/nut-2.7.4/common/snprintf.c:846:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[LONG_STRING];
data/nut-2.7.4/common/state.c:36:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char etmp[ST_MAX_VALUE_LEN];
data/nut-2.7.4/common/state.c:238:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char enc[ST_MAX_VALUE_LEN];
data/nut-2.7.4/common/str.c:43:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char characters[2] = { character, '\0' };
data/nut-2.7.4/common/str.c:69:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char characters[2] = { character, '\0' };
data/nut-2.7.4/common/strerror.c:12:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[32];
data/nut-2.7.4/common/upsconf.c:72:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/drivers/al175.c:338:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(out+11, buf, count);
data/nut-2.7.4/drivers/al175.c:386:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char data[8+1];
data/nut-2.7.4/drivers/al175.c:863:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(reply.end, reply_head.begin, (reply_head.end - reply_head.begin));
data/nut-2.7.4/drivers/apc-hid.c:102:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/nut-2.7.4/drivers/apc-hid.c:444:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char model[64];
data/nut-2.7.4/drivers/apcsmart-old.c:79:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char tmp[128];
data/nut-2.7.4/drivers/apcsmart-old.c:219:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[SMALLBUF];
data/nut-2.7.4/drivers/apcsmart-old.c:255:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/nut-2.7.4/drivers/apcsmart-old.c:307:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char upsloc, temp[512], cmd, loc, etmp[16], *endtemp;
data/nut-2.7.4/drivers/apcsmart-old.c:421:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/apcsmart-old.c:539:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/apcsmart-old.c:611:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *alrts, *cmds, temp[512];
data/nut-2.7.4/drivers/apcsmart-old.c:674:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/nut-2.7.4/drivers/apcsmart-old.c:751:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/nut-2.7.4/drivers/apcsmart-old.c:793:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[16];
data/nut-2.7.4/drivers/apcsmart-old.c:839:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char timer[4];
data/nut-2.7.4/drivers/apcsmart-old.c:1028:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[32];
data/nut-2.7.4/drivers/apcsmart-old.c:1107:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char orig[256], temp[256];
data/nut-2.7.4/drivers/apcsmart-old.c:1202:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/nut-2.7.4/drivers/apcsmart-old.c:1305:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/apcsmart.c:109:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char info[32];
data/nut-2.7.4/drivers/apcsmart.c:137:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:442:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:601:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:626:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:649:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:665:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[vt->nlen0], *nidx;
data/nut-2.7.4/drivers/apcsmart.c:687:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[vt->nlen0], *nidx;
data/nut-2.7.4/drivers/apcsmart.c:688:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[strlen(upsval) + 1], *vidx[APC_PACK_MAX], *com, *curr;
data/nut-2.7.4/drivers/apcsmart.c:742:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:765:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:792:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:919:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char upsloc, temp[APC_LBUF], cmd, loc, etmp[APC_SBUF], *endtemp;
data/nut-2.7.4/drivers/apcsmart.c:1141:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:1179:3: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(buf, "set\1");
data/nut-2.7.4/drivers/apcsmart.c:1211:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *cmds, *tail, temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:1270:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:1347:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:1374:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:1408:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_SBUF];
data/nut-2.7.4/drivers/apcsmart.c:1445:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_SBUF];
data/nut-2.7.4/drivers/apcsmart.c:1474:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_SBUF], *ptr;
data/nut-2.7.4/drivers/apcsmart.c:1631:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:1679:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char orig[APC_LBUF], temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:1759:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF], *ptr;
data/nut-2.7.4/drivers/apcsmart.c:1862:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcsmart.c:2044:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[APC_LBUF];
data/nut-2.7.4/drivers/apcupsd-ups.c:145:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char bfr[1024];
data/nut-2.7.4/drivers/apcupsd-ups.c:274:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
port=atoi(p);
data/nut-2.7.4/drivers/apcupsd-ups.c:281:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
else memcpy(&host.sin_addr,h->h_addr,4);
data/nut-2.7.4/drivers/asem.c:316:10: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
upsfd = open(device_path, O_RDWR);
data/nut-2.7.4/drivers/bcmxcp.c:167:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *FreqTol[3] = {"+/-2%", "+/-5%", "+/-7"};
data/nut-2.7.4/drivers/bcmxcp.c:168:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *ABMStatus[4] = {"charging", "discharging", "floating", "resting"};
data/nut-2.7.4/drivers/bcmxcp.c:169:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *OutletStatus[9] = {"unknown","on/closed","off/open","on with pending","off with pending","unknown","unknown","failed and closed","failed and open"};
data/nut-2.7.4/drivers/bcmxcp.c:171:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char AUTHOR[4] = {0xCF, 0x69, 0xE8, 0xD5};
data/nut-2.7.4/drivers/bcmxcp.c:174:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *cpu_name[5] = {"Cont:", "Inve:", "Rect:", "Netw:", "Disp:"};
data/nut-2.7.4/drivers/bcmxcp.c:175:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *horn_stat[3] = {"disabled", "enabled", "muted"};
data/nut-2.7.4/drivers/bcmxcp.c:751:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[PW_ANSWER_MAX_SIZE];
data/nut-2.7.4/drivers/bcmxcp.c:846:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sFormat[32];
data/nut-2.7.4/drivers/bcmxcp.c:985:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[PW_ANSWER_MAX_SIZE];
data/nut-2.7.4/drivers/bcmxcp.c:990:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outlet_name[25];
data/nut-2.7.4/drivers/bcmxcp.c:1038:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[PW_ANSWER_MAX_SIZE],cbuf[5];
data/nut-2.7.4/drivers/bcmxcp.c:1119:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[PW_ANSWER_MAX_SIZE];
data/nut-2.7.4/drivers/bcmxcp.c:1121:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sValue[17];
data/nut-2.7.4/drivers/bcmxcp.c:1122:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sPartNumber[17];
data/nut-2.7.4/drivers/bcmxcp.c:1159:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[PW_ANSWER_MAX_SIZE];
data/nut-2.7.4/drivers/bcmxcp.c:1272:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[PW_ANSWER_MAX_SIZE];
data/nut-2.7.4/drivers/bcmxcp.c:1289:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[PW_ANSWER_MAX_SIZE], cbuf[5];
data/nut-2.7.4/drivers/bcmxcp.c:1323:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[PW_ANSWER_MAX_SIZE];
data/nut-2.7.4/drivers/bcmxcp.c:1325:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outlet_name[27];
data/nut-2.7.4/drivers/bcmxcp.c:1326:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char power_rating[10];
data/nut-2.7.4/drivers/bcmxcp.c:1340:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
bcmxcp_status.shutdowndelay = atoi(getval("shutdown_delay"));
data/nut-2.7.4/drivers/bcmxcp.c:1523:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[PW_ANSWER_MAX_SIZE];
data/nut-2.7.4/drivers/bcmxcp.c:1525:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sValue[128];
data/nut-2.7.4/drivers/bcmxcp.c:1830:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sValue[128];
data/nut-2.7.4/drivers/bcmxcp.c:1881:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[128], cbuf[6];
data/nut-2.7.4/drivers/bcmxcp.c:1882:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char success_msg[40];
data/nut-2.7.4/drivers/bcmxcp.c:1883:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[MAX_NUT_NAME_LENGTH];
data/nut-2.7.4/drivers/bcmxcp.c:1884:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char varname[32];
data/nut-2.7.4/drivers/bcmxcp.c:2027:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sddelay = atoi(varvalue);
data/nut-2.7.4/drivers/bcmxcp.c:2140:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[128], cbuf[5];
data/nut-2.7.4/drivers/bcmxcp.c:2141:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char namebuf[MAX_NUT_NAME_LENGTH];
data/nut-2.7.4/drivers/bcmxcp.c:2142:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char success_msg[50];
data/nut-2.7.4/drivers/bcmxcp.c:2153:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp=atoi(val);
data/nut-2.7.4/drivers/bcmxcp.c:2176:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp=atoi(val);
data/nut-2.7.4/drivers/bcmxcp.c:2198:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp=atoi(val);
data/nut-2.7.4/drivers/bcmxcp.c:2220:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp=atoi(val);
data/nut-2.7.4/drivers/bcmxcp.c:2242:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp=atoi(val);
data/nut-2.7.4/drivers/bcmxcp.c:2265:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp=atoi(val);
data/nut-2.7.4/drivers/bcmxcp.c:2287:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp=atoi(val);
data/nut-2.7.4/drivers/bcmxcp.c:2309:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp=atoi(val);
data/nut-2.7.4/drivers/bcmxcp.c:2333:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp=atoi(val);
data/nut-2.7.4/drivers/bcmxcp.c:2356:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp=atoi(val);
data/nut-2.7.4/drivers/bcmxcp.c:2397:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sec = atoi(val);
data/nut-2.7.4/drivers/bcmxcp_ser.c:34:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char AUT[4] = {0xCF, 0x69, 0xE8, 0xD5}; /* Autorisation command */
data/nut-2.7.4/drivers/bcmxcp_ser.c:39:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sbuf[128];
data/nut-2.7.4/drivers/bcmxcp_ser.c:44:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sbuf+2, command, command_length);
data/nut-2.7.4/drivers/bcmxcp_ser.c:81:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char my_buf[128]; /* packet has a maximum length of 121+5 bytes */
data/nut-2.7.4/drivers/bcmxcp_ser.c:192:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data+end_length, my_buf+4, length);
data/nut-2.7.4/drivers/bcmxcp_ser.c:262:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[256];
data/nut-2.7.4/drivers/bcmxcp_ser.c:267:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
baud = atoi(getval("baud_rate"));
data/nut-2.7.4/drivers/bcmxcp_usb.c:100:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[4];
data/nut-2.7.4/drivers/bcmxcp_usb.c:114:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sbuf[128];
data/nut-2.7.4/drivers/bcmxcp_usb.c:120:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(sbuf+2, command, command_length);
data/nut-2.7.4/drivers/bcmxcp_usb.c:136:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[PW_CMD_BUFSIZE], *my_buf = buf;
data/nut-2.7.4/drivers/bcmxcp_usb.c:257:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data+end_length, my_buf + 4, length);
data/nut-2.7.4/drivers/bcmxcp_usb.c:481:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char why[SMALLBUF];
data/nut-2.7.4/drivers/belkin-hid.c:122:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char liebert_conversion_buf[10];
data/nut-2.7.4/drivers/belkin-hid.c:202:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/nut-2.7.4/drivers/belkin-hid.c:570:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serial[64];
data/nut-2.7.4/drivers/belkin.c:57:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[SMALLBUF];
data/nut-2.7.4/drivers/belkin.c:114:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[8];
data/nut-2.7.4/drivers/belkin.c:161:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[8];
data/nut-2.7.4/drivers/belkin.c:214:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[SMALLBUF], st[SMALLBUF];
data/nut-2.7.4/drivers/belkin.c:263:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
res = atoi(st);
data/nut-2.7.4/drivers/belkin.c:375:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[SMALLBUF];
data/nut-2.7.4/drivers/belkin.c:486:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[SMALLBUF], st[SMALLBUF];
data/nut-2.7.4/drivers/belkinunv.c:164:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *upstype[3] = {
data/nut-2.7.4/drivers/belkinunv.c:170:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *voltsens[3] = {
data/nut-2.7.4/drivers/belkinunv.c:176:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *teststatus[6] = {
data/nut-2.7.4/drivers/belkinunv.c:306:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[MAXMSGSIZE];
data/nut-2.7.4/drivers/belkinunv.c:340:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(str, &buf[4], len);
data/nut-2.7.4/drivers/belkinunv.c:348:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[MAXMSGSIZE];
data/nut-2.7.4/drivers/belkinunv.c:393:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[MAXMSGSIZE];
data/nut-2.7.4/drivers/belkinunv.c:447:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/nut-2.7.4/drivers/belkinunv.c:451:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(device, O_RDWR | O_NONBLOCK);
data/nut-2.7.4/drivers/belkinunv.c:616:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[MAXMSGSIZE];
data/nut-2.7.4/drivers/belkinunv.c:658:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[MAXMSGSIZE];
data/nut-2.7.4/drivers/belkinunv.c:697:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024]; /* static string limit is OK */
data/nut-2.7.4/drivers/belkinunv.c:698:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char oldbuf[1024] = { 0 };
data/nut-2.7.4/drivers/belkinunv.c:757:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
level = atoi(val);
data/nut-2.7.4/drivers/belkinunv.c:1261:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i=atoi(val);
data/nut-2.7.4/drivers/belkinunv.c:1266:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
belkin_nut_write_int(REG_XFER_LO, atoi(val));
data/nut-2.7.4/drivers/belkinunv.c:1269:37: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
belkin_nut_write_int(REG_XFER_HI, atoi(val));
data/nut-2.7.4/drivers/bestfcom.c:99:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[16]; /* ups type name*/
data/nut-2.7.4/drivers/bestfcom.c:184:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/nut-2.7.4/drivers/bestfcom.c:201:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/nut-2.7.4/drivers/bestfcom.c:249:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fstring[512];
data/nut-2.7.4/drivers/bestfcom.c:263:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[32];
data/nut-2.7.4/drivers/bestfcom.c:427:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/nut-2.7.4/drivers/bestfcom.c:460:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[10];
data/nut-2.7.4/drivers/bestfcom.c:530:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256], rstring[1024];
data/nut-2.7.4/drivers/bestfcom.c:662:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/nut-2.7.4/drivers/bestfcom.c:736:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rstring[256];
data/nut-2.7.4/drivers/bestfortress.c:126:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/nut-2.7.4/drivers/bestfortress.c:132:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(buf);
data/nut-2.7.4/drivers/bestfortress.c:142:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/nut-2.7.4/drivers/bestfortress.c:147:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo (key, "%d", 60*atoi (buf));
data/nut-2.7.4/drivers/bestfortress.c:153:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/nut-2.7.4/drivers/bestfortress.c:157:45: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo (key, fmt, factor * (double)atoi (buf));
data/nut-2.7.4/drivers/bestfortress.c:162:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[1024], *p;
data/nut-2.7.4/drivers/bestfortress.c:201:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256];
data/nut-2.7.4/drivers/bestfortress.c:314:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[80];
data/nut-2.7.4/drivers/bestfortress.c:432:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (max_load) maxload = atoi(max_load);
data/nut-2.7.4/drivers/bestuferrups.c:120:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/nut-2.7.4/drivers/bestuferrups.c:133:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fstring[512];
data/nut-2.7.4/drivers/bestuferrups.c:146:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[16];
data/nut-2.7.4/drivers/bestuferrups.c:149:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+16, 2);
data/nut-2.7.4/drivers/bestuferrups.c:151:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
inverter = atoi(tmp);
data/nut-2.7.4/drivers/bestuferrups.c:154:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+18, 2);
data/nut-2.7.4/drivers/bestuferrups.c:156:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
charger = atoi(tmp);
data/nut-2.7.4/drivers/bestuferrups.c:159:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+24, 4);
data/nut-2.7.4/drivers/bestuferrups.c:161:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
vin = atoi(tmp);
data/nut-2.7.4/drivers/bestuferrups.c:164:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+28, 4);
data/nut-2.7.4/drivers/bestuferrups.c:166:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
vout = atoi(tmp);
data/nut-2.7.4/drivers/bestuferrups.c:169:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+36, 4);
data/nut-2.7.4/drivers/bestuferrups.c:171:25: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ampsout = ((double)(atoi(tmp)) / 10.0);
data/nut-2.7.4/drivers/bestuferrups.c:174:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+50, 4);
data/nut-2.7.4/drivers/bestuferrups.c:176:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
vbatt = ((double)(atoi(tmp)) / 10.0);
data/nut-2.7.4/drivers/bestuferrups.c:179:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+40, 6);
data/nut-2.7.4/drivers/bestuferrups.c:181:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
vaout = atoi(tmp);
data/nut-2.7.4/drivers/bestuferrups.c:184:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+72, 2);
data/nut-2.7.4/drivers/bestuferrups.c:186:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
linestat = atoi(tmp);
data/nut-2.7.4/drivers/bestuferrups.c:189:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+20, 2);
data/nut-2.7.4/drivers/bestuferrups.c:191:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
alstat = atoi(tmp);
data/nut-2.7.4/drivers/bestuferrups.c:194:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+22, 2);
data/nut-2.7.4/drivers/bestuferrups.c:196:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
alstat = alstat | (atoi(tmp) << 8);
data/nut-2.7.4/drivers/bestuferrups.c:199:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+54, 4);
data/nut-2.7.4/drivers/bestuferrups.c:201:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
acfreq = ((double)(atoi(tmp)) / 100.0);
data/nut-2.7.4/drivers/bestuferrups.c:204:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+58, 4);
data/nut-2.7.4/drivers/bestuferrups.c:206:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
btimeleft = atoi(tmp);
data/nut-2.7.4/drivers/bestuferrups.c:209:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp, fstring+62, 4);
data/nut-2.7.4/drivers/bestuferrups.c:211:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ambtemp = (double)(atoi(tmp));
data/nut-2.7.4/drivers/bestuferrups.c:326:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/nut-2.7.4/drivers/bestuferrups.c:359:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[10];
data/nut-2.7.4/drivers/bestuferrups.c:402:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256], fcstring[512];
data/nut-2.7.4/drivers/bestuferrups.c:427:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(temp, fcstring+9, 2);
data/nut-2.7.4/drivers/bestups.c:168:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], *ptr;
data/nut-2.7.4/drivers/bestups.c:191:50: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("input.voltage.nominal", "%d", atoi(ptr));
data/nut-2.7.4/drivers/bestups.c:195:51: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("output.voltage.nominal", "%d", atoi(ptr));
data/nut-2.7.4/drivers/bestups.c:220:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
battvoltmult = atoi(ptr);
data/nut-2.7.4/drivers/bestups.c:242:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/nut-2.7.4/drivers/bestups.c:281:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[256], pstat[32];
data/nut-2.7.4/drivers/bestups.c:322:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char involt[16], outvolt[16], loadpct[16], acfreq[16],
data/nut-2.7.4/drivers/blazer.c:183:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF], *val, *last = NULL;
data/nut-2.7.4/drivers/blazer.c:310:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF], *val, *last = NULL;
data/nut-2.7.4/drivers/blazer.c:360:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/blazer.c:380:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[SMALLBUF];
data/nut-2.7.4/drivers/blazer.c:407:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF] = "";
data/nut-2.7.4/drivers/blazer_usb.c:57:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[SMALLBUF];
data/nut-2.7.4/drivers/blazer_usb.c:104:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[SMALLBUF];
data/nut-2.7.4/drivers/blazer_usb.c:178:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[64];
data/nut-2.7.4/drivers/blazer_usb.c:412:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ret = usb->open(&udev, &usbdevice, reopen_matcher, NULL);
data/nut-2.7.4/drivers/blazer_usb.c:524:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[255]; /* Some devices choke on size > 255 */
data/nut-2.7.4/drivers/blazer_usb.c:525:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *regex_array[6];
data/nut-2.7.4/drivers/blazer_usb.c:585:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ret = usb->open(&udev, &usbdevice, regex_matcher, NULL);
data/nut-2.7.4/drivers/clone-outlet.c:61:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char status[LARGEBUF];
data/nut-2.7.4/drivers/clone-outlet.c:254:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/clone-outlet.c:390:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/clone.c:45:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char status[ST_MAX_VALUE_LEN];
data/nut-2.7.4/drivers/clone.c:268:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/clone.c:475:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/clone.c:497:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/cps-hid.c:104:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[8];
data/nut-2.7.4/drivers/cps-hid.c:124:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[8];
data/nut-2.7.4/drivers/dstate.c:38:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char status_buf[ST_MAX_VALUE_LEN], alarm_buf[LARGEBUF];
data/nut-2.7.4/drivers/dstate.c:167:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ST_SOCK_BUF_LEN];
data/nut-2.7.4/drivers/dstate.c:198:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[ST_SOCK_BUF_LEN];
data/nut-2.7.4/drivers/dstate.c:319:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char flist[SMALLBUF];
data/nut-2.7.4/drivers/dstate.c:436:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/dstate.c:507:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sockname[SMALLBUF];
data/nut-2.7.4/drivers/dstate.c:613:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[ST_MAX_VALUE_LEN];
data/nut-2.7.4/drivers/dstate.c:632:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[ST_MAX_VALUE_LEN];
data/nut-2.7.4/drivers/dstate.c:664:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char flist[SMALLBUF];
data/nut-2.7.4/drivers/dummy-ups.c:330:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/drivers/dummy-ups.c:429:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/drivers/dummy-ups.c:430:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *ptr, var_value[MAX_STRING_SIZE];
data/nut-2.7.4/drivers/dummy-ups.c:484:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int delay = atoi (ctx->arglist[1]);
data/nut-2.7.4/drivers/etapro.c:71:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[256];
data/nut-2.7.4/drivers/everups.c:94:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char recBuf[2];
data/nut-2.7.4/drivers/gamatronic.c:56:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char lenbuf[4];
data/nut-2.7.4/drivers/gamatronic.c:69:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ret = atoi(lenbuf);
data/nut-2.7.4/drivers/gamatronic.c:84:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[140];
data/nut-2.7.4/drivers/gamatronic.c:152:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(value) < 0) {
data/nut-2.7.4/drivers/gamatronic.c:156:53: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
{dstate_setinfo(sec_varlist[varnum].setcmd,"%d", atoi(value) * sec_varlist[varnum].unit);
data/nut-2.7.4/drivers/gamatronic.c:210:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char retbuf[140],*n,*r;
data/nut-2.7.4/drivers/gamatronic.c:251:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *a,*p,avail_list[300];
data/nut-2.7.4/drivers/gamatronic.c:268:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
v = atoi(p);
data/nut-2.7.4/drivers/gamatronic.c:299:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msgbuf[SMALLBUF];
data/nut-2.7.4/drivers/gamatronic.c:343:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[140];
data/nut-2.7.4/drivers/gamatronic.h:92:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[SEC_MAX_VARSIZE];
data/nut-2.7.4/drivers/genericups.c:250:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
upstype = atoi(getval("upstype"));
data/nut-2.7.4/drivers/hidparser.c:166:6: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&valTmp, &pParser->ReportDesc[(pParser->Pos)+i], 1);
data/nut-2.7.4/drivers/hidparser.c:172:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&pParser->Value, &pParser->ReportDesc[pParser->Pos], ItemSize[pParser->Item & SIZE_MASK]);
data/nut-2.7.4/drivers/hidparser.c:276:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData, &pParser->Data, sizeof(HIDData_t));
data/nut-2.7.4/drivers/hidparser.c:366:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(pData, pFoundData, sizeof(*pData));
data/nut-2.7.4/drivers/isbmex.c:155:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[256];
data/nut-2.7.4/drivers/isbmex.c:233:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf2[17];
data/nut-2.7.4/drivers/ivtscd.c:54:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[SMALLBUF];
data/nut-2.7.4/drivers/libhid.c:232:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(rbuf->data[id], buf, (buflen < rbuf->len[id]) ? buflen : rbuf->len[id]);
data/nut-2.7.4/drivers/libhid.c:361:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char itemPath[128];
data/nut-2.7.4/drivers/libhid.c:480:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[SMALLBUF];
data/nut-2.7.4/drivers/libhid.c:641:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/libhid.c:665:35: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
path->Node[i++] = 0x00ff0000 + atoi(token+1);
data/nut-2.7.4/drivers/libhid.h:87:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char *data[256]; /* report data (allocated) */
data/nut-2.7.4/drivers/libshut.c:295:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[20];
data/nut-2.7.4/drivers/libshut.c:296:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[MAX_STRING_SIZE];
data/nut-2.7.4/drivers/libshut.c:301:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char rdbuf[MAX_REPORT_SIZE];
data/nut-2.7.4/drivers/libshut.c:706:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Buf, Start, 1);
data/nut-2.7.4/drivers/libshut.c:712:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Buf, Start, 1);
data/nut-2.7.4/drivers/libshut.c:743:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Buf, Frame, Size);
data/nut-2.7.4/drivers/libshut.c:803:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tbuf[255]; /* Some devices choke on size > 255 */
data/nut-2.7.4/drivers/libshut.c:863:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char shut_pkt[11];
data/nut-2.7.4/drivers/libshut.c:913:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&shut_pkt[2], bytes, data_size); /* we need to send ctrl.data */
data/nut-2.7.4/drivers/libshut.c:915:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&shut_pkt[2], &ctrl, 8);
data/nut-2.7.4/drivers/libshut.h:60:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int (*open)(int *upsfd, /* try to open the next available */
data/nut-2.7.4/drivers/libusb.c:153:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[20];
data/nut-2.7.4/drivers/libusb.c:155:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[256];
data/nut-2.7.4/drivers/libusb.c:163:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char rdbuf[MAX_REPORT_SIZE];
data/nut-2.7.4/drivers/libusb.h:48:8: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
int (*open)(usb_dev_handle **sdevp, /* try to open the next available */
data/nut-2.7.4/drivers/liebert-esp2.c:168:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[LARGEBUF];
data/nut-2.7.4/drivers/liebert-esp2.c:170:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char command[6], reply[8];
data/nut-2.7.4/drivers/liebert-esp2.c:206:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(command,cmd_upstype,6);
data/nut-2.7.4/drivers/liebert-esp2.c:242:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(command,cmd_scaling1,6);
data/nut-2.7.4/drivers/liebert-esp2.c:273:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const unsigned char cmd[6];
data/nut-2.7.4/drivers/liebert-esp2.c:355:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[8];
data/nut-2.7.4/drivers/liebert-esp2.c:478:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[8];
data/nut-2.7.4/drivers/liebert-esp2.c:528:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
switch (atoi(val))
data/nut-2.7.4/drivers/macosx-ups.c:110:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char device_name[80] = "";
data/nut-2.7.4/drivers/macosx-ups.c:345:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char potential_model_name[256];
data/nut-2.7.4/drivers/main.c:128:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char vtmp[SMALLBUF];
data/nut-2.7.4/drivers/main.c:311:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
poll_interval = atoi(val);
data/nut-2.7.4/drivers/main.c:338:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[SMALLBUF];
data/nut-2.7.4/drivers/main.c:376:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
poll_interval = atoi(val);
data/nut-2.7.4/drivers/main.c:526:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
poll_interval = atoi(optarg);
data/nut-2.7.4/drivers/main.c:595:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[SMALLBUF];
data/nut-2.7.4/drivers/masterguard.c:58:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char name[31];
data/nut-2.7.4/drivers/masterguard.c:59:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char firmware[6];
data/nut-2.7.4/drivers/masterguard.c:173:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[WORDMAXLEN];
data/nut-2.7.4/drivers/masterguard.c:174:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[WORDMAXLEN];
data/nut-2.7.4/drivers/masterguard.c:247:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[WORDMAXLEN];
data/nut-2.7.4/drivers/masterguard.c:248:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char word[WORDMAXLEN];
data/nut-2.7.4/drivers/masterguard.c:371:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( name, "GenericUPS" );
data/nut-2.7.4/drivers/masterguard.c:372:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy( firmware, "unkn" );
data/nut-2.7.4/drivers/masterguard.c:379:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[255];
data/nut-2.7.4/drivers/masterguard.c:482:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[255];
data/nut-2.7.4/drivers/metasys.c:98:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[100]; /* the ups serial port */
data/nut-2.7.4/drivers/metasys.c:119:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[4];
data/nut-2.7.4/drivers/metasys.c:138:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char raw_buf[255];
data/nut-2.7.4/drivers/metasys.c:143:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(raw_buf+2, command, command_length);
data/nut-2.7.4/drivers/metasys.c:166:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char my_buf[255]; /* packet has a maximum length of 256 bytes */
data/nut-2.7.4/drivers/metasys.c:208:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data, my_buf, packet_length);
data/nut-2.7.4/drivers/metasys.c:258:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char my_answer[255];
data/nut-2.7.4/drivers/metasys.c:259:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char serial[13];
data/nut-2.7.4/drivers/metasys.c:542:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(serial, my_answer + 7, res - 7);
data/nut-2.7.4/drivers/metasys.c:575:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char my_answer[255];
data/nut-2.7.4/drivers/metasys.c:815:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char command[10], answer[10];
data/nut-2.7.4/drivers/metasys.c:858:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char command[10], answer[10];
data/nut-2.7.4/drivers/mge-hid.c:133:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char mge_scratch_buf[20];
data/nut-2.7.4/drivers/mge-hid.c:1387:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/mge-hid.c:1396:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char product[SMALLBUF];
data/nut-2.7.4/drivers/mge-hid.c:1397:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char model[SMALLBUF];
data/nut-2.7.4/drivers/mge-shut.c:245:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[5];
data/nut-2.7.4/drivers/mge-shut.c:270:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[MAX_STRING];
data/nut-2.7.4/drivers/mge-shut.c:304:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
lowbatt = atoi (getval ("lowbatt"));
data/nut-2.7.4/drivers/mge-shut.c:308:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ondelay = atoi (getval ("ondelay"));
data/nut-2.7.4/drivers/mge-shut.c:312:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
offdelay = atoi (getval ("offdelay"));
data/nut-2.7.4/drivers/mge-shut.c:316:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
notification = atoi (getval ("notification"));
data/nut-2.7.4/drivers/mge-shut.c:443:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[MAX_STRING];
data/nut-2.7.4/drivers/mge-shut.c:444:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char model[MAX_STRING];
data/nut-2.7.4/drivers/mge-shut.c:809:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Buf, Start, 1);
data/nut-2.7.4/drivers/mge-shut.c:830:7: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(Buf, Frame, Size);
data/nut-2.7.4/drivers/mge-shut.c:1044:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&data.raw_pkt, pkt, reportlen);
data/nut-2.7.4/drivers/mge-shut.c:1144:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[MAX_STRING];
data/nut-2.7.4/drivers/mge-shut.c:1188:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
return (0x00FF0000 + atoi(&name[1]));
data/nut-2.7.4/drivers/mge-shut.c:1393:14: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
hValue = atol(val);
data/nut-2.7.4/drivers/mge-shut.h:90:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char raw_pkt[8]; /* max report lengh, was 8 */
data/nut-2.7.4/drivers/mge-shut.h:102:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char raw_pkt[11];
data/nut-2.7.4/drivers/mge-shut.h:119:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char raw_desc[9]; /* max report lengh, aws 9 */
data/nut-2.7.4/drivers/mge-shut.h:141:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char raw_desc[18];
data/nut-2.7.4/drivers/mge-utalk.c:140:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[BUFFLEN];
data/nut-2.7.4/drivers/mge-utalk.c:164:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFFLEN];
data/nut-2.7.4/drivers/mge-utalk.c:181:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mge_ups.LowBatt = atoi (getval ("lowbatt"));
data/nut-2.7.4/drivers/mge-utalk.c:193:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mge_ups.OnDelay = atoi (getval ("ondelay"));
data/nut-2.7.4/drivers/mge-utalk.c:205:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mge_ups.OffDelay = atoi (getval ("offdelay"));
data/nut-2.7.4/drivers/mge-utalk.c:219:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFFLEN];
data/nut-2.7.4/drivers/mge-utalk.c:233:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char infostr[32];
data/nut-2.7.4/drivers/mge-utalk.c:287:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
si_data1 = atoi(buf);
data/nut-2.7.4/drivers/mge-utalk.c:294:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
si_data2 = atoi(v);
data/nut-2.7.4/drivers/mge-utalk.c:317:49: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("ups.model", "Evolution %i", atoi(strchr(model, ' ')));
data/nut-2.7.4/drivers/mge-utalk.c:335:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
table = atoi(p + 1);
data/nut-2.7.4/drivers/mge-utalk.c:404:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFFLEN];
data/nut-2.7.4/drivers/mge-utalk.c:405:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char infostr[32];
data/nut-2.7.4/drivers/mge-utalk.c:464:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFFLEN];
data/nut-2.7.4/drivers/mge-utalk.c:502:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[BUFFLEN];
data/nut-2.7.4/drivers/mge-utalk.c:618:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[BUFFLEN];
data/nut-2.7.4/drivers/mge-utalk.c:619:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[15];
data/nut-2.7.4/drivers/mge-utalk.c:653:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[8];
data/nut-2.7.4/drivers/mge-utalk.c:712:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[BUFFLEN];
data/nut-2.7.4/drivers/mge-utalk.c:861:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char command[BUFFLEN];
data/nut-2.7.4/drivers/mge-xml.c:45:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char mge_scratch_buf[256];
data/nut-2.7.4/drivers/mge-xml.c:47:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char var[128];
data/nut-2.7.4/drivers/mge-xml.c:48:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char val[128];
data/nut-2.7.4/drivers/mge-xml.c:409:74: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
snprintf(mge_scratch_buf, sizeof(mge_scratch_buf), "%.1f", 0.1 * (float)atoi(val));
data/nut-2.7.4/drivers/mge-xml.c:417:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(val) == 0) {
data/nut-2.7.4/drivers/mge-xml.c:438:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], *last = NULL;
data/nut-2.7.4/drivers/mge-xml.c:448:68: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
snprintf(mge_scratch_buf, sizeof(mge_scratch_buf), "%.2f", (float)atoi(val) / 3600);
data/nut-2.7.4/drivers/mge-xml.c:454:68: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
snprintf(mge_scratch_buf, sizeof(mge_scratch_buf), "%.2f", (float)atoi(val) / 100);
data/nut-2.7.4/drivers/mge-xml.c:460:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
switch (atoi(val))
data/nut-2.7.4/drivers/mge-xml.c:474:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
switch (atoi(val))
data/nut-2.7.4/drivers/mge-xml.c:492:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
switch (atoi(val))
data/nut-2.7.4/drivers/mge-xml.c:506:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
switch (atoi(val))
data/nut-2.7.4/drivers/mge-xml.c:539:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(delay_before_shutoff) > -1 ) {
data/nut-2.7.4/drivers/mge-xml.c:543:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if( atoi(delay_before_shutoff) > shutdown_duration ) {
data/nut-2.7.4/drivers/mge-xml.c:557:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
const int shutdown_delay = atoi(val);
data/nut-2.7.4/drivers/mge-xml.c:1483:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(vcpy, value, len * sizeof(char));
data/nut-2.7.4/drivers/microdowell.c:193:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char Tmp[20], Xor ;
data/nut-2.7.4/drivers/microdowell.c:217:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char InpBuff[TMP_BUFF_LEN+1] ;
data/nut-2.7.4/drivers/microdowell.c:218:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char TmpBuff[3] ;
data/nut-2.7.4/drivers/microdowell.c:280:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char OutBuff[20] ;
data/nut-2.7.4/drivers/microdowell.c:281:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char InpBuff[260] ;
data/nut-2.7.4/drivers/microdowell.c:525:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char OutBuff[20] ;
data/nut-2.7.4/drivers/microdowell.c:526:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char InpBuff[260] ;
data/nut-2.7.4/drivers/microdowell.c:649:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char OutBuff[20] ;
data/nut-2.7.4/drivers/microdowell.c:650:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char InpBuff[260] ;
data/nut-2.7.4/drivers/microdowell.c:812:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ups.ShutdownDelay = CLAMP(atoi(getval("ups.delay.shutdown")), 0, MAX_SHUTDOWN_DELAY);
data/nut-2.7.4/drivers/microdowell.c:819:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ups.WakeUpDelay = CLAMP(atoi(getval("ups.delay.start")), 0, MAX_START_DELAY);
data/nut-2.7.4/drivers/microdowell.c:835:44: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("ups.power.nominal", "%d", atoi(ups.UpsModel+3) * 100) ;
data/nut-2.7.4/drivers/microdowell.c:836:48: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("ups.realpower.nominal", "%d", atoi(ups.UpsModel+3) * 60) ;
data/nut-2.7.4/drivers/microdowell.c:839:6: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(ups.UpsModel+3) >= 20)
data/nut-2.7.4/drivers/microdowell.c:884:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char OutBuff[20] ;
data/nut-2.7.4/drivers/microdowell.c:885:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char InpBuff[260] ;
data/nut-2.7.4/drivers/microdowell.h:241:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char UpsModel[9] ; // modello UPS (8 caratteri)
data/nut-2.7.4/drivers/microdowell.h:243:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char SerialNumber[9] ; // numero di serie dell'UPS
data/nut-2.7.4/drivers/netxml-ups.c:263:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/netxml-ups.c:303:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[LARGEBUF];
data/nut-2.7.4/drivers/netxml-ups.c:496:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/netxml-ups.c:538:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
timeout = atoi(val);
data/nut-2.7.4/drivers/netxml-ups.c:547:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
shutdown_duration = atoi(val);
data/nut-2.7.4/drivers/netxml-ups.c:556:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
shutdown_timer = atoi(val);
data/nut-2.7.4/drivers/netxml-ups.c:609:8: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fp = fopen("/dev/null", "w");
data/nut-2.7.4/drivers/netxml-ups.c:686:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[LARGEBUF], *s;
data/nut-2.7.4/drivers/netxml-ups.c:690:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char resp_buf[LARGEBUF];
data/nut-2.7.4/drivers/netxml-ups.c:1592:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buff[512];
data/nut-2.7.4/drivers/nut-ipmipsu.c:203:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ipmi_id = atoi(device_path+2);
data/nut-2.7.4/drivers/nut-libfreeipmi.c:269:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char strbuf[IPMI_FRU_AREA_STRING_MAX + 1];
data/nut-2.7.4/drivers/nut-libfreeipmi.c:434:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char mfg_date_time_buf[IPMI_FRU_STR_BUFLEN + 1];
data/nut-2.7.4/drivers/nutdrv_atcl_usb.c:140:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char why[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_atcl_usb.c:277:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_atcl_usb.c:286:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_atcl_usb.c:295:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_atcl_usb.c:413:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[STATUS_PACKETSIZE];
data/nut-2.7.4/drivers/nutdrv_atcl_usb.c:469:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char shutdown_packet[SHUTDOWN_PACKETSIZE] = { 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };
data/nut-2.7.4/drivers/nutdrv_qx.c:134:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char command[SMALLBUF]; /* Command sent to the UPS to get answer/to execute an instant command */
data/nut-2.7.4/drivers/nutdrv_qx.c:135:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char answer[SMALLBUF]; /* Answer from the UPS, filled at runtime */
data/nut-2.7.4/drivers/nutdrv_qx.c:431:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_qx.c:481:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_qx.c:495:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&tmp[1], &cmd[i], ret);
data/nut-2.7.4/drivers/nutdrv_qx.c:536:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&buf[i], &tmp[1], ret);
data/nut-2.7.4/drivers/nutdrv_qx.c:550:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_qx.c:625:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[64];
data/nut-2.7.4/drivers/nutdrv_qx.c:678:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, tmp, len);
data/nut-2.7.4/drivers/nutdrv_qx.c:889:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tmp[8];
data/nut-2.7.4/drivers/nutdrv_qx.c:890:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char command[SMALLBUF] = "",
data/nut-2.7.4/drivers/nutdrv_qx.c:968:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&tmp[4], command, strlen(command));
data/nut-2.7.4/drivers/nutdrv_qx.c:1147:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_qx.c:1271:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_qx.c:1625:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_qx.c:1932:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tbuf[255]; /* Some devices choke on size > 255 */
data/nut-2.7.4/drivers/nutdrv_qx.c:1933:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *regex_array[6];
data/nut-2.7.4/drivers/nutdrv_qx.c:1993:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ret = usb->open(&udev, &usbdevice, regex_matcher, NULL);
data/nut-2.7.4/drivers/nutdrv_qx.c:2112:15: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ret = usb->open(&udev, &usbdevice, reopen_matcher, NULL);
data/nut-2.7.4/drivers/nutdrv_qx.c:2226:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, testing[i].answer, len);
data/nut-2.7.4/drivers/nutdrv_qx.c:2301:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char subdrv_name[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_qx.c:2355:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[LARGEBUF] = "";
data/nut-2.7.4/drivers/nutdrv_qx.c:2752:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[sizeof(item->answer) - 1] = "",
data/nut-2.7.4/drivers/nutdrv_qx.c:2773:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(item->answer, buf, sizeof(buf));
data/nut-2.7.4/drivers/nutdrv_qx.c:2793:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[SMALLBUF] = "";
data/nut-2.7.4/drivers/nutdrv_qx.h:56:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[SMALLBUF]; /* Value for enum/range, or length for ST_FLAG_STRING */
data/nut-2.7.4/drivers/nutdrv_qx.h:74:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char answer[SMALLBUF]; /* Answer from the UPS, filled at runtime.
data/nut-2.7.4/drivers/nutdrv_qx.h:79:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char value[SMALLBUF]; /* Value from the answer, filled at runtime (i.e. answer between from and to) */
data/nut-2.7.4/drivers/nutdrv_qx.h:131:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char answer[SMALLBUF]; /* Answer for that command.
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:302:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char refined[SMALLBUF] = "",
data/nut-2.7.4/drivers/nutdrv_qx_blazer-common.c:247:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF] = "";
data/nut-2.7.4/drivers/nutdrv_qx_blazer-common.c:276:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF] = "";
data/nut-2.7.4/drivers/nutdrv_qx_mecer.c:227:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF] = "";
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:197:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char refined[SMALLBUF] = "";
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:1924:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF] = "";
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2056:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char rawval[SMALLBUF], *enabled, *disabled, *val = NULL, *saveptr = NULL;
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2324:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2482:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2827:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char alarm[SMALLBUF];
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2855:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Fan failure.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2860:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Over temperature fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2865:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Battery voltage is too high.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2870:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Battery voltage too low.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2875:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Inverter relay short-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2880:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Inverter voltage over maximum value.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2885:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Overload fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2891:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Bus voltage exceeds its upper limit.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2896:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Bus soft start fail.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2901:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Unknown fault [Fault code: 10]");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2906:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Over current fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2911:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Bus voltage below its under limit.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2916:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Inverter soft start fail.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2921:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Self test fail.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2926:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Output DC voltage exceeds its upper limit.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2931:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Battery open fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2936:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Current sensor fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2941:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Battery short.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2946:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Inverter voltage below its lower limit.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2969:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "L1 inverter negative power out of acceptable range.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2974:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "L2 inverter negative power out of acceptable range.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2979:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "L3 inverter negative power out of acceptable range.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2984:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Bus voltage not within default setting.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2993:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Bus voltage over maximum value.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2998:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Bus voltage below minimum value.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3003:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Bus voltage differences out of acceptable range.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3008:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Bus voltage of slope rate drops too fast.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3013:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Over current in PFC input inductor.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3018:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Inverter voltage not within default setting.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3023:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Inverter voltage over maximum value.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3028:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Inverter voltage below minimum value.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3033:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Inverter short-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3038:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "L2 phase inverter short-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3043:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "L3 phase inverter short-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3048:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "L1L2 inverter short-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3053:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "L2L3 inverter short-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3058:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "L3L1 inverter short-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3063:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Battery SCR short-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3068:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Line SCR short-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3073:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Inverter relay open fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3078:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Inverter relay short-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3083:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Input and output wires oppositely connected.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3088:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Battery oppositely connected.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3093:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Battery voltage is too high.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3098:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Battery voltage too low.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3103:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Failure for battery fuse being open-circuited.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3108:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "CAN-bus communication fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3113:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Host signal circuit fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3118:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Synchronous signal circuit fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3123:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Synchronous pulse signal circuit fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3128:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Parallel cable disconnected.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3133:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Load unbalanced.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3138:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Over temperature fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3143:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Communication failure between CPUs in control board.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3148:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Overload fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3154:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Fan failure.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3159:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Charger failure.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3164:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "Model fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3169:4: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(alarm, "MCU communication fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3192:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char warn[SMALLBUF] = "", unk[SMALLBUF] = "", bitwarns[SMALLBUF] = "", warns[4096] = "";
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3217:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Battery disconnected.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3222:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Neutral not connected.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3227:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Site fault.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3232:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Phase sequence incorrect.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3237:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Phase sequence incorrect in bypass.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3242:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Input frequency unstable in bypass.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3247:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Battery overcharged.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3252:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Low battery.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3258:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Overload alarm.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3264:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Fan alarm.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3269:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "EPO enabled.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3274:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Unable to turn on UPS.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3279:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Over temperature alarm.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3284:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Charger alarm.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3289:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Remote auto shutdown.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3294:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "L1 input fuse not working.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3299:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "L2 input fuse not working.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3304:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "L3 input fuse not working.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3309:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Positive PFC abnormal in L1.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3314:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Negative PFC abnormal in L1.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3319:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Positive PFC abnormal in L2.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3324:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Negative PFC abnormal in L2.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3329:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Positive PFC abnormal in L3.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3334:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Negative PFC abnormal in L3.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3339:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Abnormal in CAN-bus communication.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3344:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Abnormal in synchronous signal circuit.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3349:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Abnormal in synchronous pulse signal circuit.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3354:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Abnormal in host signal circuit.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3359:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Male connector of parallel cable not connected well.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3364:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Female connector of parallel cable not connected well.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3369:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Parallel cable not connected well.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3374:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Battery connection not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3379:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "AC connection not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3384:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Bypass connection not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3389:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "UPS model types not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3394:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Capacity of UPSes not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3399:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Auto restart setting not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3404:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Battery cell over charge.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3409:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Battery protection setting not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3414:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Battery detection setting not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3419:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Bypass not allowed setting not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3424:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Converter setting not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3429:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "High loss point for frequency in bypass mode not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3434:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Low loss point for frequency in bypass mode not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3439:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "High loss point for voltage in bypass mode not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3444:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Low loss point for voltage in bypass mode not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3449:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "High loss point for frequency in AC mode not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3454:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Low loss point for frequency in AC mode not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3459:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "High loss point for voltage in AC mode not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3464:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Low loss point for voltage in AC mode not consistent in parallel systems.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3469:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Warning for locking in bypass mode after 3 consecutive overloads within 30 min.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3474:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Warning for three-phase AC input current unbalance.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3479:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Warning for a three-phase input current unbalance detected in battery mode.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3484:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Warning for Inverter inter-current unbalance.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3489:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Programmable outlets cut off pre-alarm.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3494:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Warning for Battery replace.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3500:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Abnormal warning on input phase angle.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3505:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "Warning!! Cover of maintain switch is open.");
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3510:5: [2] (buffer) strcpy:
Does not check for buffer overflows when copying to destination [MS-banned]
(CWE-120). Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy
easily misused). Risk is low because the source is a constant string.
strcpy(warn, "EEPROM operation error.");
data/nut-2.7.4/drivers/oneac.c:67:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char UpsFamily [3];
data/nut-2.7.4/drivers/oneac.c:115:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[32];
data/nut-2.7.4/drivers/oneac.c:135:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[32];
data/nut-2.7.4/drivers/oneac.c:209:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[256], buffer2[32];
data/nut-2.7.4/drivers/oneac.c:362:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
timevalue = atoi(buffer2) * 60; /* Change minutes to seconds */
data/nut-2.7.4/drivers/oneac.c:417:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i = atoi(buffer2); /* Minimum voltage */
data/nut-2.7.4/drivers/oneac.c:420:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
j = atoi(buffer2); /* Maximum voltage */
data/nut-2.7.4/drivers/oneac.c:424:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
k = atoi(buffer2); /* Spread between */
data/nut-2.7.4/drivers/oneac.c:465:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[256]; /* Main response buffer */
data/nut-2.7.4/drivers/oneac.c:466:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer2[32]; /* Conversion buffer */
data/nut-2.7.4/drivers/oneac.c:663:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
timevalue = atoi(buffer2) * 60; /* Change mins to secs */
data/nut-2.7.4/drivers/oneac.c:734:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
timevalue = atoi(buffer2) * 60; /* Mins to secs */
data/nut-2.7.4/drivers/oneac.c:759:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(buffer) == 0)
data/nut-2.7.4/drivers/oneac.c:826:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
i = atoi(dstate_getinfo("ups.delay.shutdown"));
data/nut-2.7.4/drivers/oneac.c:916:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(setvalue) > 65535)
data/nut-2.7.4/drivers/oneac.c:924:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(setvalue) > 999)
data/nut-2.7.4/drivers/oneac.c:977:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(setvalue) <= 9999)
data/nut-2.7.4/drivers/oneac.c:992:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (atoi(setvalue) <= 99)
data/nut-2.7.4/drivers/openups-hid.c:46:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char openups_scratch_buf[20];
data/nut-2.7.4/drivers/optiups.c:79:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char _buf[256];
data/nut-2.7.4/drivers/powercom-hid.c:54:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char powercom_scratch_buf[32];
data/nut-2.7.4/drivers/powercom-hid.c:71:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(value ? value : s) / 60;
data/nut-2.7.4/drivers/powercom-hid.c:97:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(value ? value : s);
data/nut-2.7.4/drivers/powercom-hid.c:115:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
val = atoi(value ? value : s);
data/nut-2.7.4/drivers/powercom-hid.c:136:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/nut-2.7.4/drivers/powercom.c:108:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char raw_data[MAX_NUM_OF_BYTES_FROM_UPS]; /* raw data reveived from UPS */
data/nut-2.7.4/drivers/powercom.c:748:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[32];
data/nut-2.7.4/drivers/powercom.c:832:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/nut-2.7.4/drivers/powercom.c:860:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp = atoi(getval("linevoltage"));
data/nut-2.7.4/drivers/powercom.c:869:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp = atoi(getval("numOfBytesFromUPS"));
data/nut-2.7.4/drivers/powerman-pdu.c:42:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ebuf[64];
data/nut-2.7.4/drivers/powerman-pdu.c:55:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outletname[SMALLBUF];
data/nut-2.7.4/drivers/powerman-pdu.c:69:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/nut-2.7.4/drivers/powerman-pdu.c:71:48: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
snprintf(buf, sizeof(buf), "outlet.%i.desc", atoi(cmdindex));
data/nut-2.7.4/drivers/powerman-pdu.c:215:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outlet_prop[64];
data/nut-2.7.4/drivers/powerman-pdu.c:236:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outlet_prop[64];
data/nut-2.7.4/drivers/powerp-bin.c:47:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char flags[4];
data/nut-2.7.4/drivers/powerp-bin.c:61:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char powpan_answer[SMALLBUF];
data/nut-2.7.4/drivers/powerp-bin.c:281:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char command[SMALLBUF];
data/nut-2.7.4/drivers/powerp-txt.c:43:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char flags[2];
data/nut-2.7.4/drivers/powerp-txt.c:57:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char powpan_answer[SMALLBUF];
data/nut-2.7.4/drivers/powerp-txt.c:128:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char command[SMALLBUF];
data/nut-2.7.4/drivers/powerp-txt.c:191:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char command[SMALLBUF];
data/nut-2.7.4/drivers/powerp-txt.c:205:53: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
snprintf(command, sizeof(command), vartab[i].set, atoi(val));
data/nut-2.7.4/drivers/rhino.c:136:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char RecPack[37];
data/nut-2.7.4/drivers/rhino.c:481:12: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char ch, psend[sizes];
data/nut-2.7.4/drivers/rhino.c:540:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char temp[256];
data/nut-2.7.4/drivers/rhino.c:541:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char Pacote[37];
data/nut-2.7.4/drivers/rhino.c:637:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char temp[256];
data/nut-2.7.4/drivers/richcomm_usb.c:116:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char query[QUERY_PACKETSIZE] = { 0x01, 0x00, 0x00, 0x30 };
data/nut-2.7.4/drivers/richcomm_usb.c:124:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char why[SMALLBUF];
data/nut-2.7.4/drivers/richcomm_usb.c:269:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/richcomm_usb.c:278:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/richcomm_usb.c:287:5: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/drivers/richcomm_usb.c:356:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[REPLY_PACKETSIZE];
data/nut-2.7.4/drivers/richcomm_usb.c:409:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[REPLY_PACKETSIZE];
data/nut-2.7.4/drivers/richcomm_usb.c:482:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char prepare[QUERY_PACKETSIZE] = { 0x02, 0x00, 0x00, 0x00 };
data/nut-2.7.4/drivers/richcomm_usb.c:488:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char restart[QUERY_PACKETSIZE] = { 0x02, 0x01, 0x00, 0x00 };
data/nut-2.7.4/drivers/richcomm_usb.c:489:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[REPLY_PACKETSIZE];
data/nut-2.7.4/drivers/riello.c:45:10: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char LAST_DATA[6];
data/nut-2.7.4/drivers/riello.c:428:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->Identification, &buffer[7], 16);
data/nut-2.7.4/drivers/riello.c:430:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->ModelStr, &buffer[23], 16);
data/nut-2.7.4/drivers/riello.c:433:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->Version, &buffer[39], 12);
data/nut-2.7.4/drivers/riello.c:435:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->Identif_bytes, &buffer[51], 12);
data/nut-2.7.4/drivers/riello.c:494:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(data->StatusCode, &buffer[j], 5);
data/nut-2.7.4/drivers/riello.h:105:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char AlarmCodeT[12];
data/nut-2.7.4/drivers/riello.h:107:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char StatusCodeT[42];
data/nut-2.7.4/drivers/riello.h:109:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Identification[18];
data/nut-2.7.4/drivers/riello.h:110:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ModelStr[18];
data/nut-2.7.4/drivers/riello.h:111:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char Version[14];
data/nut-2.7.4/drivers/riello_ser.c:394:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
delay = atoi(delay_char);
data/nut-2.7.4/drivers/riello_ser.c:472:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
delay = atoi(delay_char);
data/nut-2.7.4/drivers/riello_ser.c:522:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
delay = atoi(delay_char);
data/nut-2.7.4/drivers/riello_usb.c:173:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char inBuf[10];
data/nut-2.7.4/drivers/riello_usb.c:193:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buffer, &inBuf[1], size);
data/nut-2.7.4/drivers/riello_usb.c:330:14: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ret = usb->open(&udev, &usbdevice, reopen_matcher, &driver_callback);
data/nut-2.7.4/drivers/riello_usb.c:565:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
delay = atoi(delay_char);
data/nut-2.7.4/drivers/riello_usb.c:616:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
delay = atoi(delay_char);
data/nut-2.7.4/drivers/riello_usb.c:643:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
delay = atoi(delay_char);
data/nut-2.7.4/drivers/riello_usb.c:796:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *regex_array[6];
data/nut-2.7.4/drivers/riello_usb.c:845:13: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ret = usb->open(&udev, &usbdevice, regex_matcher, &driver_callback);
data/nut-2.7.4/drivers/safenet.c:59:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[10];
data/nut-2.7.4/drivers/safenet.c:68:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char reply[32];
data/nut-2.7.4/drivers/serial.c:132:7: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
fd = open(port, O_RDWR | O_NOCTTY | O_EXCL | O_NONBLOCK);
data/nut-2.7.4/drivers/serial.c:267:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[LARGEBUF];
data/nut-2.7.4/drivers/serial.c:376:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp[64];
data/nut-2.7.4/drivers/serial.c:449:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char why[SMALLBUF];
data/nut-2.7.4/drivers/snmp-ups.c:283:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char model[SU_INFOSIZE];
data/nut-2.7.4/drivers/snmp-ups.c:302:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pollfreq = atoi(getval(SU_VAR_POLLFREQ));
data/nut-2.7.4/drivers/snmp-ups.c:376:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
snmp_retries = atoi(getval(SU_VAR_RETRIES));
data/nut-2.7.4/drivers/snmp-ups.c:382:18: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
snmp_timeout = atol(getval(SU_VAR_TIMEOUT));
data/nut-2.7.4/drivers/snmp-ups.c:655:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp_buf[SU_LARGEBUF];
data/nut-2.7.4/drivers/snmp-ups.c:670:5: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, pdu->variables->val.string, len);
data/nut-2.7.4/drivers/snmp-ups.c:790:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmp_buf[SU_LARGEBUF];
data/nut-2.7.4/drivers/snmp-ups.c:803:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf, pdu->variables->val.string, pdu->variables->val_len);
data/nut-2.7.4/drivers/snmp-ups.c:889:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SU_BUFSIZE];
data/nut-2.7.4/drivers/snmp-ups.c:897:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SU_BUFSIZE];
data/nut-2.7.4/drivers/snmp-ups.c:910:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SU_LARGEBUF];
data/nut-2.7.4/drivers/snmp-ups.c:1030:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char alarm_info_value[SU_LARGEBUF];
data/nut-2.7.4/drivers/snmp-ups.c:1056:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
item_number = atoi(su_info_p->info_type+1);
data/nut-2.7.4/drivers/snmp-ups.c:1090:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sysOID_buf[LARGEBUF];
data/nut-2.7.4/drivers/snmp-ups.c:1091:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char testOID_buf[LARGEBUF];
data/nut-2.7.4/drivers/snmp-ups.c:1173:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[LARGEBUF];
data/nut-2.7.4/drivers/snmp-ups.c:1350:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_OID[SU_INFOSIZE];
data/nut-2.7.4/drivers/snmp-ups.c:1380:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_OID[SU_INFOSIZE];
data/nut-2.7.4/drivers/snmp-ups.c:1414:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char template_count_var[SU_BUFSIZE];
data/nut-2.7.4/drivers/snmp-ups.c:1429:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
template_count = atoi(dstate_getinfo(template_count_var));
data/nut-2.7.4/drivers/snmp-ups.c:1515:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
item_number = atoi(++item_number_ptr);
data/nut-2.7.4/drivers/snmp-ups.c:1739:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[SU_INFOSIZE];
data/nut-2.7.4/drivers/snmp-ups.c:1925:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
total_items = atoi(dstate_getinfo("outlet.group.count"));
data/nut-2.7.4/drivers/snmp-ups.c:1929:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
total_items = atoi(dstate_getinfo("outlet.count"));
data/nut-2.7.4/drivers/snmp-ups.c:1933:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
item_number = atoi(++item_number_ptr);
data/nut-2.7.4/drivers/snmp-ups.c:2057:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
total_items = atoi(dstate_getinfo("outlet.group.count"));
data/nut-2.7.4/drivers/snmp-ups.c:2061:18: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
total_items = atoi(dstate_getinfo("outlet.count"));
data/nut-2.7.4/drivers/snmp-ups.c:2065:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
item_number = atoi(++item_number_ptr);
data/nut-2.7.4/drivers/snmp-ups.c:2170:57: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
status = nut_snmp_set_int(su_info_p->OID, extradata ? atoi(extradata) : su_info_p->info_len);
data/nut-2.7.4/drivers/snmp-ups.c:2229:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/drivers/snmp-ups.c:2253:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[SMALLBUF];
data/nut-2.7.4/drivers/solis.c:112:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char alt[8];
data/nut-2.7.4/drivers/solis.c:183:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char alt[8];
data/nut-2.7.4/drivers/solis.c:876:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char diassemana[7][4]={"Dom", "Seg", "Ter", "Qua", "Qui", "Sex", "Sab"};
data/nut-2.7.4/drivers/solis.c:878:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char DaysOfWeek[7][4]={"Sun", "Mon", "Tue", "Wed", "Thu", "Fri", "Sat"};
data/nut-2.7.4/drivers/solis.c:881:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char Pacote[25];
data/nut-2.7.4/drivers/solis.c:904:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
BattExtension = atoi(getval("battext"));
data/nut-2.7.4/drivers/solis.c:907:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
prgups = atoi(getval("prgshut"));
data/nut-2.7.4/drivers/solis.c:1048:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char temp[256];
data/nut-2.7.4/drivers/solis.h:336:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char seman[4];
data/nut-2.7.4/drivers/solis.h:339:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char RecPack[25];
data/nut-2.7.4/drivers/solis.h:340:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char ConfigPack[12];
data/nut-2.7.4/drivers/tripplite-hid.c:153:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/nut-2.7.4/drivers/tripplite-hid.c:179:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[8];
data/nut-2.7.4/drivers/tripplite-hid.c:192:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[8];
data/nut-2.7.4/drivers/tripplite-hid.c:205:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[8];
data/nut-2.7.4/drivers/tripplite-hid.c:218:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[8];
data/nut-2.7.4/drivers/tripplite.c:135:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[32];
data/nut-2.7.4/drivers/tripplite.c:195:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], cmd[16];
data/nut-2.7.4/drivers/tripplite.c:203:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], cmd[16];
data/nut-2.7.4/drivers/tripplite.c:212:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], cmd[16];
data/nut-2.7.4/drivers/tripplite.c:221:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], cmd[16];
data/nut-2.7.4/drivers/tripplite.c:230:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/nut-2.7.4/drivers/tripplite.c:268:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
offdelay = atoi(val);
data/nut-2.7.4/drivers/tripplite.c:273:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
startdelay = atoi(val);
data/nut-2.7.4/drivers/tripplite.c:278:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
bootdelay = atoi(val);
data/nut-2.7.4/drivers/tripplite.c:288:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char w_value[16], l_value[16], v_value[16], x_value[16];
data/nut-2.7.4/drivers/tripplite.c:347:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256];
data/nut-2.7.4/drivers/tripplite.c:558:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[256];
data/nut-2.7.4/drivers/tripplite.c:577:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
offdelay = atoi(getval("offdelay"));
data/nut-2.7.4/drivers/tripplite.c:579:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
startdelay = atoi(getval("startdelay"));
data/nut-2.7.4/drivers/tripplite.c:581:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
bootdelay = atoi(getval("rebootdelay"));
data/nut-2.7.4/drivers/tripplite_usb.c:293:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ret = comm_driver->open(&udev, &curDevice, reopen_matcher, NULL);
data/nut-2.7.4/drivers/tripplite_usb.c:334:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[32];
data/nut-2.7.4/drivers/tripplite_usb.c:382:18: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static unsigned char buf[256];
data/nut-2.7.4/drivers/tripplite_usb.c:391:11: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
bufp += sprintf((char *)bufp, "%02x ", msg[i]);
data/nut-2.7.4/drivers/tripplite_usb.c:543:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buffer_out[8];
data/nut-2.7.4/drivers/tripplite_usb.c:616:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char tmp_value[9];
data/nut-2.7.4/drivers/tripplite_usb.c:617:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var_name[20], err_msg[80];
data/nut-2.7.4/drivers/tripplite_usb.c:623:3: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(err_msg, "Error reading '%c' value", *msg);
data/nut-2.7.4/drivers/tripplite_usb.c:635:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], cmd_W[]="Wx";
data/nut-2.7.4/drivers/tripplite_usb.c:659:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[256], cmd_N[]="N\0x", cmd_G[] = "G";
data/nut-2.7.4/drivers/tripplite_usb.c:694:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[256], cmd_N[]="N\0x", cmd_K[] = "K\0";
data/nut-2.7.4/drivers/tripplite_usb.c:716:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char k_cmd[10], buf[10];
data/nut-2.7.4/drivers/tripplite_usb.c:757:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char buf[10];
data/nut-2.7.4/drivers/tripplite_usb.c:803:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
offdelay = atoi(val);
data/nut-2.7.4/drivers/tripplite_usb.c:812:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
new_unit_id = atoi(val);
data/nut-2.7.4/drivers/tripplite_usb.c:827:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outlet_name[80];
data/nut-2.7.4/drivers/tripplite_usb.c:828:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char index_str[10], *first_dot, *next_dot;
data/nut-2.7.4/drivers/tripplite_usb.c:841:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
index = atoi(index_str);
data/nut-2.7.4/drivers/tripplite_usb.c:865:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
startdelay = atoi(val);
data/nut-2.7.4/drivers/tripplite_usb.c:870:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
bootdelay = atoi(val);
data/nut-2.7.4/drivers/tripplite_usb.c:883:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char proto_value[9], f_value[9], p_value[9], s_value[9],
data/nut-2.7.4/drivers/tripplite_usb.c:987:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char outlet_name[80];
data/nut-2.7.4/drivers/tripplite_usb.c:1094:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char b_value[9], d_value[9], l_value[9], s_value[9],
data/nut-2.7.4/drivers/tripplite_usb.c:1398:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char msg[256];
data/nut-2.7.4/drivers/tripplite_usb.c:1432:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *regex_array[6];
data/nut-2.7.4/drivers/tripplite_usb.c:1456:19: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
r = comm_driver->open(&udev, &curDevice, regex_matcher, NULL);
data/nut-2.7.4/drivers/tripplite_usb.c:1478:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
offdelay = atoi(value);
data/nut-2.7.4/drivers/tripplite_usb.c:1496:16: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
startdelay = atoi(getval("startdelay"));
data/nut-2.7.4/drivers/tripplite_usb.c:1498:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
bootdelay = atoi(getval("rebootdelay"));
data/nut-2.7.4/drivers/tripplitesu.c:220:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[SMALLBUF];
data/nut-2.7.4/drivers/tripplitesu.c:267:11: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
count = atoi(buffer);
data/nut-2.7.4/drivers/tripplitesu.c:326:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:337:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:349:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:355:47: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("input.transfer.low", "%d", atoi(ptr));
data/nut-2.7.4/drivers/tripplitesu.c:363:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:370:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (!ptr || val == atoi(ptr))
data/nut-2.7.4/drivers/tripplitesu.c:375:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
high = atoi(ptr);
data/nut-2.7.4/drivers/tripplitesu.c:381:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:387:48: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("input.transfer.high", "%d", atoi(ptr));
data/nut-2.7.4/drivers/tripplitesu.c:395:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:404:8: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
low = atoi(ptr);
data/nut-2.7.4/drivers/tripplitesu.c:406:21: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (!ptr || val == atoi(ptr))
data/nut-2.7.4/drivers/tripplitesu.c:413:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:419:30: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (sensitivity[i].code == atoi(response)) {
data/nut-2.7.4/drivers/tripplitesu.c:430:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parm[20];
data/nut-2.7.4/drivers/tripplitesu.c:443:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parm[20];
data/nut-2.7.4/drivers/tripplitesu.c:444:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:455:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (!ptr || atoi(ptr) != mode) {
data/nut-2.7.4/drivers/tripplitesu.c:464:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parm[20];
data/nut-2.7.4/drivers/tripplitesu.c:530:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
set_transfer_voltage_low(atoi(val));
data/nut-2.7.4/drivers/tripplitesu.c:535:29: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
set_transfer_voltage_high(atoi(val));
data/nut-2.7.4/drivers/tripplitesu.c:552:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:577:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:600:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoi(ptr));
data/nut-2.7.4/drivers/tripplitesu.c:604:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoi(ptr));
data/nut-2.7.4/drivers/tripplitesu.c:609:19: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoi(ptr));
data/nut-2.7.4/drivers/tripplitesu.c:612:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
min_low_transfer = atoi(ptr);
data/nut-2.7.4/drivers/tripplitesu.c:615:23: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
max_low_transfer = atoi(ptr);
data/nut-2.7.4/drivers/tripplitesu.c:618:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
min_high_transfer = atoi(ptr);
data/nut-2.7.4/drivers/tripplitesu.c:621:24: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
max_high_transfer = atoi(ptr);
data/nut-2.7.4/drivers/tripplitesu.c:624:22: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ups.outlet_banks = atoi(response);
data/nut-2.7.4/drivers/tripplitesu.c:673:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char response[MAX_RESPONSE_LENGTH];
data/nut-2.7.4/drivers/tripplitesu.c:691:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
switch (atoi(ptr)) {
data/nut-2.7.4/drivers/tripplitesu.c:722:36: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("ups.load", "%d", atoi(ptr));
data/nut-2.7.4/drivers/tripplitesu.c:726:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
(double) atoi(ptr) / 10.0);
data/nut-2.7.4/drivers/tripplitesu.c:730:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
(double) atoi(ptr) / 10.0);
data/nut-2.7.4/drivers/tripplitesu.c:734:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
(double) atoi(ptr) / 10.0);
data/nut-2.7.4/drivers/tripplitesu.c:742:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (ptr && atoi(ptr) == 2)
data/nut-2.7.4/drivers/tripplitesu.c:745:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (ptr && atoi(ptr))
data/nut-2.7.4/drivers/tripplitesu.c:749:47: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("battery.temperature", "%d", atoi(ptr));
data/nut-2.7.4/drivers/tripplitesu.c:752:42: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("battery.charge", "%d", atoi(ptr));
data/nut-2.7.4/drivers/tripplitesu.c:754:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (ptr2 && atoi(ptr2) > 0 && atoi(ptr2) <= 99 &&
data/nut-2.7.4/drivers/tripplitesu.c:754:33: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (ptr2 && atoi(ptr2) > 0 && atoi(ptr2) <= 99 &&
data/nut-2.7.4/drivers/tripplitesu.c:755:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoi(ptr) <= atoi(ptr2))
data/nut-2.7.4/drivers/tripplitesu.c:755:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
atoi(ptr) <= atoi(ptr2))
data/nut-2.7.4/drivers/tripplitesu.c:761:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
(double) atoi(ptr) / 10.0);
data/nut-2.7.4/drivers/tripplitesu.c:765:27: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
(double) atoi(ptr) / 10.0);
data/nut-2.7.4/drivers/tripplitesu.c:774:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
if (ptr && atoi(ptr))
data/nut-2.7.4/drivers/tripplitesu.c:781:28: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
(double) atoi(ptr) / 10.0);
data/nut-2.7.4/drivers/tripplitesu.c:785:31: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
"%03.1f", (double) atoi(ptr) / 10.0);
data/nut-2.7.4/drivers/tripplitesu.c:792:7: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
r = atoi(response);
data/nut-2.7.4/drivers/tripplitesu.c:805:48: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("ambient.temperature", "%d", atoi(ptr));
data/nut-2.7.4/drivers/tripplitesu.c:808:45: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
dstate_setinfo("ambient.humidity", "%d", atoi(ptr));
data/nut-2.7.4/drivers/tripplitesu.c:830:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char parm[20];
data/nut-2.7.4/drivers/upscode2.c:126:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char has_uppm_p[100];
data/nut-2.7.4/drivers/upscode2.c:470:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int temp = atoi(str);
data/nut-2.7.4/drivers/upscode2.c:505:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int temp = atoi(str);
data/nut-2.7.4/drivers/upscode2.c:513:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int temp = atoi(str);
data/nut-2.7.4/drivers/upscode2.c:521:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int temp = atoi(str);
data/nut-2.7.4/drivers/upscode2.c:809:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dtbuf[UPSC_BUFLEN];
data/nut-2.7.4/drivers/upscode2.c:815:3: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char tmbuf[UPSC_BUFLEN];
data/nut-2.7.4/drivers/upscode2.c:1075:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[UPSC_BUFLEN];
data/nut-2.7.4/drivers/upscode2.c:1141:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[UPSC_BUFLEN];
data/nut-2.7.4/drivers/upscode2.c:1142:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[UPSC_BUFLEN];
data/nut-2.7.4/drivers/upscode2.c:1178:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[UPSC_BUFLEN];
data/nut-2.7.4/drivers/upscode2.c:1179:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[UPSC_BUFLEN];
data/nut-2.7.4/drivers/upscode2.c:1223:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char var[UPSC_BUFLEN];
data/nut-2.7.4/drivers/upscode2.c:1224:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char val[UPSC_BUFLEN];
data/nut-2.7.4/drivers/upsdrvctl.c:67:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
maxstartdelay = atoi(val);
data/nut-2.7.4/drivers/upsdrvctl.c:75:15: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
maxretry = atoi(val);
data/nut-2.7.4/drivers/upsdrvctl.c:78:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
retrydelay = atoi(val);
data/nut-2.7.4/drivers/upsdrvctl.c:98:26: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp->maxstartdelay = atoi(val);
data/nut-2.7.4/drivers/upsdrvctl.c:101:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
tmp->sdorder = atoi(val);
data/nut-2.7.4/drivers/upsdrvctl.c:136:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char pidfn[SMALLBUF];
data/nut-2.7.4/drivers/upsdrvctl.c:181:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmdline[LARGEBUF];
data/nut-2.7.4/drivers/upsdrvctl.c:260:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[8];
data/nut-2.7.4/drivers/upsdrvctl.c:261:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dfn[SMALLBUF];
data/nut-2.7.4/drivers/upsdrvctl.c:339:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *argv[9];
data/nut-2.7.4/drivers/upsdrvctl.c:340:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char dfn[SMALLBUF];
data/nut-2.7.4/drivers/usb-common.c:265:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[10];
data/nut-2.7.4/drivers/usbhid-ups.c:417:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/nut-2.7.4/drivers/usbhid-ups.c:441:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/nut-2.7.4/drivers/usbhid-ups.c:456:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/nut-2.7.4/drivers/usbhid-ups.c:469:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/nut-2.7.4/drivers/usbhid-ups.c:484:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char buf[20];
data/nut-2.7.4/drivers/usbhid-ups.c:618:11: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
value = atol(val);
data/nut-2.7.4/drivers/usbhid-ups.c:672:11: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
value = atol(val);
data/nut-2.7.4/drivers/usbhid-ups.c:719:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp [MAX_STRING_SIZE];
data/nut-2.7.4/drivers/usbhid-ups.c:893:14: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
pollfreq = atoi(val);
data/nut-2.7.4/drivers/usbhid-ups.c:923:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char *regex_array[6];
data/nut-2.7.4/drivers/usbhid-ups.c:964:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ret = comm_driver->open(&udev, &curDevice, subdriver_matcher, &callback);
data/nut-2.7.4/drivers/usbhid-ups.c:979:20: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
interrupt_size = atoi(val);
data/nut-2.7.4/drivers/usbhid-ups.c:1363:21: [2] (misc) open:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
ret = comm_driver->open(&udev, &curDevice, subdriver_matcher, NULL);
data/nut-2.7.4/drivers/victronups.c:101:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[ LENGTH_TEMP ];
data/nut-2.7.4/drivers/victronups.c:240:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[ LENGTH_TEMP ];
data/nut-2.7.4/drivers/victronups.c:241:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char test_result[ LENGTH_TEMP ];
data/nut-2.7.4/drivers/victronups.c:282:10: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
flags = atoi (temp+3);
data/nut-2.7.4/drivers/victronups.c:304:9: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
switch(atoi(temp+3))
data/nut-2.7.4/drivers/victronups.c:519:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char temp[ LENGTH_TEMP ], *usd = NULL; /* = NULL je dulezite jen pro prekladac */
data/nut-2.7.4/drivers/victronups.c:527:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
sdwdelay=atoi(usd);
data/nut-2.7.4/include/parseconf.h:54:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[PCONF_ERR_LEN]; /* local buffer for errors */
data/nut-2.7.4/server/conf.c:124:12: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
maxage = atoi(arg[1]);
data/nut-2.7.4/server/conf.c:130:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
maxconn = atoi(arg[1]);
data/nut-2.7.4/server/conf.c:165:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
certrequest = atoi(arg[1]);
data/nut-2.7.4/server/conf.c:225:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/server/conf.c:256:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[SMALLBUF];
data/nut-2.7.4/server/conf.c:314:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char statefn[SMALLBUF];
data/nut-2.7.4/server/conf.c:412:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char chkfn[SMALLBUF];
data/nut-2.7.4/server/conf.c:417:6: [2] (misc) fopen:
Check when opening files - can an attacker redirect it (via symlinks),
force the opening of special file type (e.g., device files), move things
around to create a race condition, control its ancestors, or change its
contents? (CWE-362).
f = fopen(chkfn, "r");
data/nut-2.7.4/server/desc.c:96:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/server/netget.c:50:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char esc[SMALLBUF];
data/nut-2.7.4/server/netget.c:118:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/server/netinstcmd.c:37:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char sockcmd[SMALLBUF], esc[SMALLBUF];
data/nut-2.7.4/server/netlist.c:229:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char esc[SMALLBUF];
data/nut-2.7.4/server/netset.c:37:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char cmd[SMALLBUF], esc[SMALLBUF];
data/nut-2.7.4/server/netset.c:118:17: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
int inewval = atoi(newval);
data/nut-2.7.4/server/netssl.c:100:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char errmsg[SMALLBUF];
data/nut-2.7.4/server/netssl.c:159:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[SMALLBUF];
data/nut-2.7.4/server/netssl.c:170:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buffer[256];
data/nut-2.7.4/server/sockdebug.c:91:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/server/sockdebug.c:157:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/server/sstate.c:109:41: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
state_addrange(ups->inforoot, arg[1], atoi(arg[2]), atoi(arg[3]));
data/nut-2.7.4/server/sstate.c:109:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
state_addrange(ups->inforoot, arg[1], atoi(arg[2]), atoi(arg[3]));
data/nut-2.7.4/server/sstate.c:121:41: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
state_delrange(ups->inforoot, arg[1], atoi(arg[2]), atoi(arg[3]));
data/nut-2.7.4/server/sstate.c:121:55: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
state_delrange(ups->inforoot, arg[1], atoi(arg[2]), atoi(arg[3]));
data/nut-2.7.4/server/sstate.c:254:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/server/upsd.c:92:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char pidfn[SMALLBUF];
data/nut-2.7.4/server/upsd.c:99:9: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
static char str[40];
data/nut-2.7.4/server/upsd.c:315:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char ans[NUT_NET_ANSWER_MAX+1];
data/nut-2.7.4/server/upsd.c:506:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/server/user.c:466:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char fn[SMALLBUF];
data/nut-2.7.4/tools/nut-scanner/nut-scanner.c:185:15: [2] (integer) atol:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
timeout = atol(optarg)*1000*1000; /*in usec*/
data/nut-2.7.4/tools/nut-scanner/nut-scanner.c:289:32: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
ipmi_sec.cipher_suite_id = atoi(optarg);
data/nut-2.7.4/tools/nut-scanner/nutscan-device.c:29:7: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char * nutscan_device_type_strings[TYPE_END - 1] = {
data/nut-2.7.4/tools/nut-scanner/nutscan-device.h:56:14: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern const char * nutscan_device_type_strings[TYPE_END - 1];
data/nut-2.7.4/tools/nut-scanner/nutscan-display.c:28:1: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char * nutscan_device_type_string[TYPE_END]= {
data/nut-2.7.4/tools/nut-scanner/nutscan-init.c:62:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char current_test_path[LARGEBUF];
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:48:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(addr1->s6_addr,addr2->s6_addr,sizeof(addr.s6_addr));
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:49:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(addr2->s6_addr,addr.s6_addr,sizeof(addr.s6_addr));
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:67:2: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy( &in6.sin6_addr, ip, sizeof(struct in6_addr) );
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:83:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char host[SMALLBUF];
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:108:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ip->start6,&s_in6->sin6_addr,sizeof(struct in6_addr));
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:136:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ip->stop6,&s_in6->sin6_addr,sizeof(struct in6_addr));
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:179:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char host[SMALLBUF];
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:222:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char host[SMALLBUF];
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:242:13: [2] (integer) atoi:
Unless checked, the resulting number can exceed the expected range
(CWE-190). If source untrusted, check both minimum and maximum, even if the
input had no minus sign (large numbers can roll over into negative number;
consider saving to an unsigned value if that is intended).
mask_val = atoi(mask);
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:261:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ip.start6,&s_in6->sin6_addr,sizeof(struct in6_addr));
data/nut-2.7.4/tools/nut-scanner/nutscan-ip.c:307:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(&ip.stop6,&s_in6->sin6_addr,sizeof(struct in6_addr));
data/nut-2.7.4/tools/nut-scanner/nutscan-serial.c:122:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char str_tmp[128];
data/nut-2.7.4/tools/nut-scanner/scan_avahi.c:233:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[6];
data/nut-2.7.4/tools/nut-scanner/scan_avahi.c:374:4: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char a[AVAHI_ADDRESS_STR_MAX], *t;
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:52:17: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
extern unsigned char AUT[4];
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:193:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char answer[256];
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:194:11: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
unsigned char sbuf[128];
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:284:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[128];
data/nut-2.7.4/tools/nut-scanner/scan_ipmi.c:385:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char port_id[64];
data/nut-2.7.4/tools/nut-scanner/scan_ipmi.c:541:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(port_id, "id%x", ipmi_id);
data/nut-2.7.4/tools/nut-scanner/scan_ipmi.c:595:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp_sec, sec, sizeof(nutscan_ipmi_t));
data/nut-2.7.4/tools/nut-scanner/scan_nut.c:131:8: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
const char *query[4];
data/nut-2.7.4/tools/nut-scanner/scan_nut.c:214:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/tools/nut-scanner/scan_snmp.c:265:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,response->variables->val.string,
data/nut-2.7.4/tools/nut-scanner/scan_snmp.c:302:4: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(buf,session->community,
data/nut-2.7.4/tools/nut-scanner/scan_snmp.c:684:3: [2] (buffer) memcpy:
Does not check for buffer overflows when copying to destination (CWE-120).
Make sure destination can always hold the source data.
memcpy(tmp_sec, sec, sizeof(nutscan_snmp_t));
data/nut-2.7.4/tools/nut-scanner/scan_usb.c:145:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[256];
data/nut-2.7.4/tools/nut-scanner/scan_usb.c:227:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(string,"%04X",dev->descriptor.idVendor);
data/nut-2.7.4/tools/nut-scanner/scan_usb.c:230:5: [2] (buffer) sprintf:
Does not check for buffer overflows (CWE-120). Use sprintf_s, snprintf, or
vsnprintf. Risk is low because the source has a constant maximum length.
sprintf(string,"%04X",
data/nut-2.7.4/tools/nut-scanner/scan_xml_http.c:113:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/tools/nut-scanner/scan_xml_http.c:138:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char buf[SMALLBUF];
data/nut-2.7.4/tools/nut-scanner/scan_xml_http.c:139:2: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
char string[SMALLBUF];
data/nut-2.7.4/clients/cgilib.c:31:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buflen = strlen(buf) + 2;
data/nut-2.7.4/clients/cgilib.c:71:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(query) == 0)
data/nut-2.7.4/clients/cgilib.c:116:7: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ch = fgetc(stdin);
data/nut-2.7.4/clients/cgilib.c:135:8: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ch = fgetc(stdin);
data/nut-2.7.4/clients/cgilib.c:138:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buf) != 0) {
data/nut-2.7.4/clients/nutclient.cpp:106:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
size_t read(void* buf, size_t sz)throw(nut::IOException);
data/nut-2.7.4/clients/nutclient.cpp:109:14: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
std::string read()throw(nut::IOException);
data/nut-2.7.4/clients/nutclient.cpp:301:16: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
size_t Socket::read(void* buf, size_t sz)throw(nut::IOException)
data/nut-2.7.4/clients/nutclient.cpp:319:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ssize_t res = ::read(_sock, buf, sz);
data/nut-2.7.4/clients/nutclient.cpp:355:21: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
std::string Socket::read()throw(nut::IOException)
data/nut-2.7.4/clients/nutclient.cpp:376:15: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
size_t sz = read(&buff, 256);
data/nut-2.7.4/clients/nutclient.cpp:734:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
res = _socket->read();
data/nut-2.7.4/clients/nutclient.cpp:754:18: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return _socket->read();
data/nut-2.7.4/clients/upsclient.c:566:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read(fd, buf, buflen);
data/nut-2.7.4/clients/upsclient.c:698:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(ups, buf, strlen(buf)) != 0) {
data/nut-2.7.4/clients/upsclient.c:1111:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(upsd_errlist[i].text))) {
data/nut-2.7.4/clients/upsclient.c:1144:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf);
data/nut-2.7.4/clients/upsclient.c:1149:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(buf);
data/nut-2.7.4/clients/upsclient.c:1186:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(ups, cmd, strlen(cmd)) != 0) {
data/nut-2.7.4/clients/upsclient.c:1238:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(ups, cmd, strlen(cmd)) != 0) {
data/nut-2.7.4/clients/upscmd.c:149:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(ups, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upscmd.c:264:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(username) > 1) {
data/nut-2.7.4/clients/upscmd.c:265:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
username[strlen(username) - 1] = '\0';
data/nut-2.7.4/clients/upscmd.c:290:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(ups, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upscmd.c:308:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(ups, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upsimage.c:66:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(var) > MAX_CGI_STRLEN) || (strlen(value) > MAX_CGI_STRLEN))
data/nut-2.7.4/clients/upsimage.c:66:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(var) > MAX_CGI_STRLEN) || (strlen(value) > MAX_CGI_STRLEN))
data/nut-2.7.4/clients/upsimage.c:203:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
gdImageString(im, gdFontMediumBold, width - strlen(lbltxt)*gdFontMediumBold->w, y,
data/nut-2.7.4/clients/upsimage.c:262:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(width - strlen(text)*gdFontMediumBold->w)/2,
data/nut-2.7.4/clients/upsimage.c:296:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(width - strlen(msg)*gdFontMediumBold->w)/2,
data/nut-2.7.4/clients/upsimage.c:302:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(height + strlen(msg)*gdFontMediumBold->w)/2,
data/nut-2.7.4/clients/upslog.c:179:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(format); i++)
data/nut-2.7.4/clients/upslog.c:215:17: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((!arg) || (strlen(arg) < 1)) {
data/nut-2.7.4/clients/upslog.c:284:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(logformat); i++) {
data/nut-2.7.4/clients/upslog.c:321:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ofs = strlen(cmd) + 1;
data/nut-2.7.4/clients/upslog.c:334:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(logcmds[j].name)) == 0) {
data/nut-2.7.4/clients/upsmon.c:197:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((ups->upsname == NULL) || (strlen(ups->upsname) == 0)) {
data/nut-2.7.4/clients/upsmon.c:205:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(&ups->conn, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upsmon.c:241:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(&ups->conn, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upsmon.c:256:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(&ups->conn, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upsmon.c:276:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((ups->upsname == NULL) || (strlen(ups->upsname) == 0)) {
data/nut-2.7.4/clients/upsmon.c:285:39: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(&ups->conn, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upsmon.c:472:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = upscli_sendline(&ups->conn, buf, strlen(buf));
data/nut-2.7.4/clients/upsmon.c:611:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(250000);
data/nut-2.7.4/clients/upsmon.c:1582:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(buf, SDMAGIC, strlen(SDMAGIC)))
data/nut-2.7.4/clients/upsmon.c:1668:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(fd, &ch, 1);
data/nut-2.7.4/clients/upsmon.c:1869:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
configfile = xrealloc(configfile, strlen(configfile) + 1);
data/nut-2.7.4/clients/upsmon.c:1876:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(optarg, "fsd", strlen(optarg)))
data/nut-2.7.4/clients/upsmon.c:1878:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(optarg, "stop", strlen(optarg)))
data/nut-2.7.4/clients/upsmon.c:1880:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(optarg, "reload", strlen(optarg)))
data/nut-2.7.4/clients/upsrw.c:73:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(ups, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upsrw.c:112:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(user) > 1) {
data/nut-2.7.4/clients/upsrw.c:113:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
user[strlen(user) - 1] = '\0';
data/nut-2.7.4/clients/upsrw.c:142:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
newval[strlen(newval) - 1] = '\0';
data/nut-2.7.4/clients/upsrw.c:147:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(ups, temp, strlen(temp)) < 0) {
data/nut-2.7.4/clients/upsrw.c:162:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(ups, temp, strlen(temp)) < 0) {
data/nut-2.7.4/clients/upssched.c:262:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(pipefd[0], &ch, 1);
data/nut-2.7.4/clients/upssched.c:283:2: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(0007);
data/nut-2.7.4/clients/upssched.c:340:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(conn->fd, buf, strlen(buf));
data/nut-2.7.4/clients/upssched.c:342:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((ret < 1) || (ret != (int) strlen(buf))) {
data/nut-2.7.4/clients/upssched.c:460:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(conn->fd, &ch, 1);
data/nut-2.7.4/clients/upssched.c:655:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(250000);
data/nut-2.7.4/clients/upssched.c:708:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(250000);
data/nut-2.7.4/clients/upssched.c:718:28: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(pipefd, enc, strlen(enc));
data/nut-2.7.4/clients/upssched.c:721:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((ret < 1) || (ret != (int) strlen(enc))) {
data/nut-2.7.4/clients/upssched.c:731:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(pipefd, buf, sizeof(buf));
data/nut-2.7.4/clients/upsset.c:73:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(value) > HARD_UPSVAR_LIMIT_LEN)
data/nut-2.7.4/clients/upsset.c:478:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(&ups, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upsset.c:500:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(&ups, buf, strlen(buf)) < 0)
data/nut-2.7.4/clients/upsset.c:523:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(upscommand) == 0)
data/nut-2.7.4/clients/upsset.c:533:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(&ups, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upsset.c:890:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (upscli_sendline(&ups, buf, strlen(buf)) < 0) {
data/nut-2.7.4/clients/upsstats.c:54:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(var) > MAX_CGI_STRLEN) || (strlen(value) > MAX_CGI_STRLEN))
data/nut-2.7.4/clients/upsstats.c:54:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(var) > MAX_CGI_STRLEN) || (strlen(value) > MAX_CGI_STRLEN))
data/nut-2.7.4/clients/upsstats.c:218:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((imgargs) && (strlen(imgargs) > 0))
data/nut-2.7.4/clients/upsstats.c:243:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(out) == 0)
data/nut-2.7.4/clients/upsstats.c:257:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(in) < 3)
data/nut-2.7.4/clients/upsstats.c:552:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s)) {
data/nut-2.7.4/clients/upsstats.c:559:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(s)) {
data/nut-2.7.4/common/common.c:219:9: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
mask = umask(022);
data/nut-2.7.4/common/common.c:229:2: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(mask);
data/nut-2.7.4/common/common.c:284:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
size_t len = strlen(dst);
data/nut-2.7.4/common/common.c:608:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
return read(fd, buf, buflen);
data/nut-2.7.4/common/parseconf.c:142:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
wbuflen = strlen(ctx->wordbuf);
data/nut-2.7.4/common/parseconf.c:165:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(ctx->arglist[argpos], ctx->wordbuf, wbuflen);
data/nut-2.7.4/common/parseconf.c:172:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
wbuflen = strlen(ctx->wordbuf);
data/nut-2.7.4/common/parseconf.c:518:20: [1] (buffer) fgetc:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
while ((ctx->ch = fgetc(ctx->f)) != EOF) {
data/nut-2.7.4/common/parseconf.c:557:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
linelen = strlen(line);
data/nut-2.7.4/common/parseconf.c:593:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
srclen = strlen(src);
data/nut-2.7.4/common/setenv.c:19:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffer = xmalloc(strlen(value) + strlen(name) + 2);
data/nut-2.7.4/common/setenv.c:19:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buffer = xmalloc(strlen(value) + strlen(name) + 2);
data/nut-2.7.4/common/setenv.c:21:2: [1] (buffer) strcat:
Does not check for buffer overflows when concatenating to destination
[MS-banned] (CWE-120). Consider using strcat_s, strncat, strlcat, or
snprintf (warning: strncat is easily misused). Risk is low because the
source is a constant character.
strcat(buffer, "=");
data/nut-2.7.4/common/snprintf.c:683:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
r_length = strlen(result);
data/nut-2.7.4/common/snprintf.c:805:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return(strlen(str));
data/nut-2.7.4/common/snprintf.c:830:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return(strlen(str));
data/nut-2.7.4/common/state.c:48:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (node->safesize < (strlen(etmp) + 1)) {
data/nut-2.7.4/common/state.c:49:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
node->safesize = strlen(etmp) + 1;
data/nut-2.7.4/common/state.c:187:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (node->rawsize < (strlen(val) + 1)) {
data/nut-2.7.4/common/state.c:188:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
node->rawsize = strlen(val) + 1;
data/nut-2.7.4/common/state.c:204:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(*nptr)->rawsize = strlen(val) + 1;
data/nut-2.7.4/common/str.c:62:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(string, string + 1, strlen(string));
data/nut-2.7.4/common/str.c:86:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr = &string[strlen(string) - 1];
data/nut-2.7.4/common/str.c:114:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memmove(string, string + 1, strlen(string));
data/nut-2.7.4/common/str.c:129:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr = &string[strlen(string) - 1];
data/nut-2.7.4/common/str.c:573:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(string) != strspn(string, "-+.0123456789Ee")) {
data/nut-2.7.4/common/str.c:579:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(string) != strspn(string, "-+.0123456789ABCDEFabcdefXxPp")) {
data/nut-2.7.4/common/upsconf.c:38:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((arg[0][0] == '[') && (arg[0][strlen(arg[0])-1] == ']')) {
data/nut-2.7.4/common/upsconf.c:42:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
arg[0][strlen(arg[0])-1] = '\0';
data/nut-2.7.4/drivers/apc-hid.c:76:4: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(tweak_max_report[i]))) {
data/nut-2.7.4/drivers/apc-hid.c:453:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr1 += strlen("FW:");
data/nut-2.7.4/drivers/apc-hid.c:458:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr2 += strlen("USB FW:");
data/nut-2.7.4/drivers/apcsmart-old.c:317:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsloc = ptr[strlen(ptr) - 1];
data/nut-2.7.4/drivers/apcsmart-old.c:345:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
endtemp = &temp[0] + strlen(temp);
data/nut-2.7.4/drivers/apcsmart-old.c:596:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (j = 0; j < strlen(compat_tab[i].cmdchars); j++)
data/nut-2.7.4/drivers/apcsmart-old.c:661:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(cmds); i++)
data/nut-2.7.4/drivers/apcsmart-old.c:825:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(UPSDELAY);
data/nut-2.7.4/drivers/apcsmart-old.c:856:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(CMDLONGDELAY);
data/nut-2.7.4/drivers/apcsmart-old.c:870:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(UPSDELAY);
data/nut-2.7.4/drivers/apcsmart-old.c:883:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(CMDLONGDELAY);
data/nut-2.7.4/drivers/apcsmart-old.c:896:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(CMDLONGDELAY);
data/nut-2.7.4/drivers/apcsmart-old.c:993:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strval || !strlen(strval) || strlen(strval) > SDCNT)
data/nut-2.7.4/drivers/apcsmart-old.c:993:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strval || !strlen(strval) || strlen(strval) > SDCNT)
data/nut-2.7.4/drivers/apcsmart-old.c:995:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(strval); i++) {
data/nut-2.7.4/drivers/apcsmart-old.c:1007:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(strval); i++) {
data/nut-2.7.4/drivers/apcsmart-old.c:1232:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(UPSDELAY);
data/nut-2.7.4/drivers/apcsmart-old.c:1234:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(val); i++) {
data/nut-2.7.4/drivers/apcsmart-old.c:1242:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(UPSDELAY);
data/nut-2.7.4/drivers/apcsmart-old.c:1246:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = strlen(val); i < APC_STRLEN; i++) {
data/nut-2.7.4/drivers/apcsmart-old.c:1254:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(UPSDELAY);
data/nut-2.7.4/drivers/apcsmart-old.c:1317:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(CMDLONGDELAY);
data/nut-2.7.4/drivers/apcsmart.c:141:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(upsval) >= sizeof(temp)) {
data/nut-2.7.4/drivers/apcsmart.c:618:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret != (int)strlen(code))
data/nut-2.7.4/drivers/apcsmart.c:638:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(1300000);
data/nut-2.7.4/drivers/apcsmart.c:688:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
char temp[strlen(upsval) + 1], *vidx[APC_PACK_MAX], *com, *curr;
data/nut-2.7.4/drivers/apcsmart.c:930:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsloc = ptr[strlen(ptr) - 1];
data/nut-2.7.4/drivers/apcsmart.c:960:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
endtemp = &temp[0] + strlen(temp);
data/nut-2.7.4/drivers/apcsmart.c:1196:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (j = 0; j < strlen(apc_compattab[i].cmdchars); j++)
data/nut-2.7.4/drivers/apcsmart.c:1255:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(cmds); i++)
data/nut-2.7.4/drivers/apcsmart.c:1479:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cnt = strlen(awd);
data/nut-2.7.4/drivers/apcsmart.c:1606:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(val);
data/nut-2.7.4/drivers/apcsmart.c:1762:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(val) > APC_STRLEN) {
data/nut-2.7.4/drivers/apcsmart.c:1787:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr = temp + strlen(temp);
data/nut-2.7.4/drivers/apcsmart.c:1788:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = strlen(val); i < APC_STRLEN; i++)
data/nut-2.7.4/drivers/apcsmart.c:2039:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ptr->nlen0 = strlen(ptr->name) + 1;
data/nut-2.7.4/drivers/apcupsd-ups.c:127:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if((int)strlen(data)>(int)nut_data[i].info_len)
data/nut-2.7.4/drivers/apcupsd-ups.c:182:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if(read(p.fd,&n,2)!=2)
data/nut-2.7.4/drivers/apcupsd-ups.c:203:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if(read(p.fd,bfr,x)!=x)
data/nut-2.7.4/drivers/bcmxcp.c:2016:9: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(namebuf, cmdname, sizeof(namebuf));
data/nut-2.7.4/drivers/bcmxcp.c:2374:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(namebuf, varname, sizeof(namebuf));
data/nut-2.7.4/drivers/bcmxcp_ser.c:57:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(250000);
data/nut-2.7.4/drivers/bcmxcp_ser.c:282:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(90000);
data/nut-2.7.4/drivers/bcmxcp_ser.c:284:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(500000);
data/nut-2.7.4/drivers/bcmxcp_ser.c:287:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(500000);
data/nut-2.7.4/drivers/bcmxcp_ser.c:305:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(90000);
data/nut-2.7.4/drivers/bcmxcp_ser.c:307:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(500000);
data/nut-2.7.4/drivers/bcmxcp_ser.c:310:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(500000);
data/nut-2.7.4/drivers/belkin-hid.c:549:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((hd->Product) && (strlen(hd->Product) > 0)) {
data/nut-2.7.4/drivers/belkin-hid.c:563:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(mfr) == 0) {
data/nut-2.7.4/drivers/belkin-hid.c:580:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(serial) < 1) {
data/nut-2.7.4/drivers/belkin.c:49:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ser_send(upsfd, "~00%c%03d%s%s", cmd, (int)strlen(data) + 3, subcmd, data);
data/nut-2.7.4/drivers/belkin.c:90:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(in); i++) {
data/nut-2.7.4/drivers/belkin.c:116:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(25000);
data/nut-2.7.4/drivers/belkin.c:140:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(5000 * cnt);
data/nut-2.7.4/drivers/belkin.c:163:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(25000);
data/nut-2.7.4/drivers/belkin.c:187:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(5000 * cnt);
data/nut-2.7.4/drivers/belkin.c:415:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(1500000);
data/nut-2.7.4/drivers/belkinunv.c:497:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(1000000);
data/nut-2.7.4/drivers/belkinunv.c:507:6: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
r = read(fd, buf, 127);
data/nut-2.7.4/drivers/belkinunv.c:525:7: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
r = read(fd, &buf[count], n-count);
data/nut-2.7.4/drivers/belkinunv.c:528:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/drivers/belkinunv.c:552:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/drivers/bestfcom.c:213:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(50000);
data/nut-2.7.4/drivers/bestfcom.c:265:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsdebugx(3, "f response: %d %s", (int)strlen(fstring), fstring);
data/nut-2.7.4/drivers/bestfcom.c:416:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsdebugx(1, "failed f response. strlen: %d", (int)strlen(fstring));
data/nut-2.7.4/drivers/bestfcom.c:585:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(rstring) < 300 ) {
data/nut-2.7.4/drivers/bestfcom.c:664:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsdebugx(3, "fc response: %d %s", (int)strlen(fcstring), fcstring);
data/nut-2.7.4/drivers/bestfcom.c:750:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(rstring) < 80 ) {
data/nut-2.7.4/drivers/bestfortress.c:130:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (buf, s, len);
data/nut-2.7.4/drivers/bestfortress.c:145:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (buf, s, len);
data/nut-2.7.4/drivers/bestfortress.c:155:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy (buf, s, len);
data/nut-2.7.4/drivers/bestfortress.c:179:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(d_usec);
data/nut-2.7.4/drivers/bestfortress.c:246:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(temp+2);
data/nut-2.7.4/drivers/bestfortress.c:341:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int len = strlen(data);
data/nut-2.7.4/drivers/bestups.c:152:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((ret > 0) && (buf[0] != '(') && (strlen(buf) >= 25) &&
data/nut-2.7.4/drivers/bestups.c:153:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(strlen(buf) <= 27))
data/nut-2.7.4/drivers/bestups.c:255:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(250000);
data/nut-2.7.4/drivers/bestups.c:290:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((ret > 0) && (temp[0] == '(') && (strlen(temp) == 46)) {
data/nut-2.7.4/drivers/bestups.c:336:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(200000);
data/nut-2.7.4/drivers/blazer.c:209:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(val, "0123456789.") != strlen(val)) {
data/nut-2.7.4/drivers/blazer.c:336:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(val, "0123456789.") != strlen(val)) {
data/nut-2.7.4/drivers/blazer_ser.c:183:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/drivers/blazer_usb.c:64:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(tmp); i += ret) {
data/nut-2.7.4/drivers/blazer_usb.c:138:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(tmp); i += ret) {
data/nut-2.7.4/drivers/blazer_usb.c:184:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(tmp); i += ret) {
data/nut-2.7.4/drivers/clone-outlet.c:197:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(fd, dumpcmd, strlen(dumpcmd));
data/nut-2.7.4/drivers/clone-outlet.c:199:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret != (int)strlen(dumpcmd)) {
data/nut-2.7.4/drivers/clone-outlet.c:240:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(upsfd, buf, strlen(buf));
data/nut-2.7.4/drivers/clone-outlet.c:242:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret == (int)strlen(buf)) {
data/nut-2.7.4/drivers/clone-outlet.c:260:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(upsfd, buf, sizeof(buf));
data/nut-2.7.4/drivers/clone.c:211:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(fd, dumpcmd, strlen(dumpcmd));
data/nut-2.7.4/drivers/clone.c:213:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret != (int)strlen(dumpcmd)) {
data/nut-2.7.4/drivers/clone.c:254:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(upsfd, buf, strlen(buf));
data/nut-2.7.4/drivers/clone.c:256:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret == (int)strlen(buf)) {
data/nut-2.7.4/drivers/clone.c:274:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(upsfd, buf, sizeof(buf));
data/nut-2.7.4/drivers/dstate.c:120:2: [1] (access) umask:
Ensure that umask is given most restrictive possible setting (e.g., 066 or
077) (CWE-732).
umask(0007);
data/nut-2.7.4/drivers/dstate.c:185:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(conn->fd, buf, strlen(buf));
data/nut-2.7.4/drivers/dstate.c:187:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret != (int)strlen(buf)) {
data/nut-2.7.4/drivers/dstate.c:188:60: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsdebugx(1, "write %d bytes to socket %d failed", (int)strlen(buf), conn->fd);
data/nut-2.7.4/drivers/dstate.c:211:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(conn->fd, buf, strlen(buf));
data/nut-2.7.4/drivers/dstate.c:213:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret != (int)strlen(buf)) {
data/nut-2.7.4/drivers/dstate.c:214:59: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsdebugx(1, "write %d bytes to socket %d failed", (int)strlen(buf), conn->fd);
data/nut-2.7.4/drivers/dstate.c:438:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(conn->fd, buf, sizeof(buf));
data/nut-2.7.4/drivers/dstate.c:858:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(status_buf) > 0) {
data/nut-2.7.4/drivers/dstate.c:909:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(alarm_buf) > 0) {
data/nut-2.7.4/drivers/dstate.c:919:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(alarm_buf) > 0) {
data/nut-2.7.4/drivers/dummy-ups.c:296:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(val) == 0)
data/nut-2.7.4/drivers/etapro.c:91:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!cp || *cp == '\0' || cp[strlen(cp) - 1] != '\r') {
data/nut-2.7.4/drivers/etapro.c:95:5: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cp[strlen(cp) - 1] = '\0'; /* remove the CR */
data/nut-2.7.4/drivers/gamatronic.c:68:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(lenbuf,buf+2,3);
data/nut-2.7.4/drivers/gamatronic.c:111:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(msgbuf, msg, ret);
data/nut-2.7.4/drivers/gamatronic.c:263:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(avail_list) == 0){
data/nut-2.7.4/drivers/isbmex.c:177:5: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
r=read(upsfd,buf,255);
data/nut-2.7.4/drivers/isbmex.c:183:7: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(500000);
data/nut-2.7.4/drivers/isbmex.c:188:10: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
rr=read(upsfd,buf+r,255-r);
data/nut-2.7.4/drivers/isbmex.c:216:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((int) strlen(s) < bytes_per_packet) {
data/nut-2.7.4/drivers/isbmex.c:222:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
{int i;for (i=0;i<strlen(s);i++) printf(" <%d>",(unsigned char)s[i]);}
data/nut-2.7.4/drivers/isbmex.c:330:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(50000);
data/nut-2.7.4/drivers/libhid.c:656:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(token) == strspn(token, "1234567890abcdefABCDEF"))
data/nut-2.7.4/drivers/libhid.c:663:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(token) == strspn(token, "[1234567890]"))
data/nut-2.7.4/drivers/masterguard.c:77:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen( source );
data/nut-2.7.4/drivers/masterguard.c:107:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen( source );
data/nut-2.7.4/drivers/masterguard.c:339:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( name, buf + 16, 30 );
data/nut-2.7.4/drivers/masterguard.c:341:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( firmware, buf + 4, 5 );
data/nut-2.7.4/drivers/masterguard.c:356:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( name, buf + 4, 12 );
data/nut-2.7.4/drivers/masterguard.c:358:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy( firmware, buf, 4 );
data/nut-2.7.4/drivers/masterguard.c:385:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = strlen( buf );
data/nut-2.7.4/drivers/masterguard.c:402:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = strlen( buf );
data/nut-2.7.4/drivers/masterguard.c:413:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = strlen( buf );
data/nut-2.7.4/drivers/masterguard.c:468:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen( name ) > 0 )
data/nut-2.7.4/drivers/masterguard.c:470:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( strlen( firmware ) > 0 )
data/nut-2.7.4/drivers/masterguard.c:511:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = strlen( buf );
data/nut-2.7.4/drivers/mge-hid.c:1411:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(model) < 1) && (HIDGetItemValue(udev, "UPS.Flow.[4].ConfigApparentPower", &value, mge_utab) == 1 )) {
data/nut-2.7.4/drivers/mge-hid.c:1415:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(model) > 0) {
data/nut-2.7.4/drivers/mge-shut.c:565:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int now = read (upsfd, bytes, size - readen);
data/nut-2.7.4/drivers/mge-shut.c:958:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return strlen(string);
data/nut-2.7.4/drivers/mge-shut.c:1147:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, HIDpath, strlen(HIDpath));
data/nut-2.7.4/drivers/mge-shut.c:1147:24: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strncpy(buf, HIDpath, strlen(HIDpath));
data/nut-2.7.4/drivers/mge-shut.c:1148:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf[strlen(HIDpath)] = '\0';
data/nut-2.7.4/drivers/mge-shut.c:1321:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( (!strncmp(iProduct, model->iProduct, strlen(model->iProduct)))
data/nut-2.7.4/drivers/mge-shut.c:1322:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
&& (!strncmp(iModel, model->iModel, strlen(model->iModel))) )
data/nut-2.7.4/drivers/mge-utalk.c:258:20: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if( firmware && strlen(firmware) < 1 )
data/nut-2.7.4/drivers/mge-utalk.c:646:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(MGE_CONNECT_DELAY);
data/nut-2.7.4/drivers/mge-utalk.c:662:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(MGE_CONNECT_DELAY);
data/nut-2.7.4/drivers/mge-utalk.c:732:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( bytes_rcvd > 0 && strlen(buf) > 7 ) {
data/nut-2.7.4/drivers/mge-utalk.c:762:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(buf) > 7 ) {
data/nut-2.7.4/drivers/mge-utalk.c:776:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(buf) > 7 ) {
data/nut-2.7.4/drivers/mge-utalk.c:787:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(buf) > 15 ) { /* second "byte", skip <SP> */
data/nut-2.7.4/drivers/mge-utalk.c:803:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ( strlen(buf) > 7 ) {
data/nut-2.7.4/drivers/mge-utalk.c:879:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(500000);
data/nut-2.7.4/drivers/mge-utalk.c:895:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(MGE_CHAR_DELAY);
data/nut-2.7.4/drivers/mge-utalk.c:910:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(MGE_CHAR_DELAY);
data/nut-2.7.4/drivers/mge-utalk.c:917:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(MGE_REPLY_DELAY);
data/nut-2.7.4/drivers/mge-xml.c:1378:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(val) == 0) {
data/nut-2.7.4/drivers/microdowell.c:227:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(10000) ; /* small delay (1/100 s) */
data/nut-2.7.4/drivers/microdowell.c:308:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000) ; /* small delay (1/10 s) for next retry */
data/nut-2.7.4/drivers/microdowell.c:972:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(10000) ; /* small delay (1/100 s)) */
data/nut-2.7.4/drivers/netxml-ups.c:313:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ne_xml_parse(parser, buf, strlen(buf));
data/nut-2.7.4/drivers/netxml-ups.c:733:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ne_set_request_body_buffer(request, buf, strlen(buf));
data/nut-2.7.4/drivers/netxml-ups.c:817:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = ne_sock_fullwrite(sock, buf, strlen(buf) + 1);
data/nut-2.7.4/drivers/netxml-ups.c:1594:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ssize_t read;
data/nut-2.7.4/drivers/netxml-ups.c:1599:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (0 > read) {
data/nut-2.7.4/drivers/netxml-ups.c:1605:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
if (0 == read)
data/nut-2.7.4/drivers/netxml-ups.c:1609:39: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ne_buffer_append(resp_body, buff, read);
data/nut-2.7.4/drivers/nut-libfreeipmi.c:927:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("Power Supply input lost (AC/DC)"))) {
data/nut-2.7.4/drivers/nut-libfreeipmi.c:950:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("Entity Present"))) {
data/nut-2.7.4/drivers/nut-libfreeipmi.c:955:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen("Entity Absent"))) {
data/nut-2.7.4/drivers/nutdrv_atcl_usb.c:481:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(170*1000);
data/nut-2.7.4/drivers/nutdrv_qx.c:301:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (val && (strspn(val, "0123456789 .") == strlen(val))) {
data/nut-2.7.4/drivers/nutdrv_qx.c:439:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(tmp); i += ret) {
data/nut-2.7.4/drivers/nutdrv_qx.c:486:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmdlen = strlen(cmd);
data/nut-2.7.4/drivers/nutdrv_qx.c:583:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(tmp); i += ret) {
data/nut-2.7.4/drivers/nutdrv_qx.c:632:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < strlen(tmp); i += ret) {
data/nut-2.7.4/drivers/nutdrv_qx.c:670:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(tmp);
data/nut-2.7.4/drivers/nutdrv_qx.c:891:4: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
read[SMALLBUF] = "";
data/nut-2.7.4/drivers/nutdrv_qx.c:939:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(command) > 3) {
data/nut-2.7.4/drivers/nutdrv_qx.c:964:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
tmp[2] = strlen(command) + 1;
data/nut-2.7.4/drivers/nutdrv_qx.c:968:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
memcpy(&tmp[4], command, strlen(command));
data/nut-2.7.4/drivers/nutdrv_qx.c:999:12: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
snprintf(read, sizeof(read), "read [%3d]", (int)i);
data/nut-2.7.4/drivers/nutdrv_qx.c:999:25: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
snprintf(read, sizeof(read), "read [%3d]", (int)i);
data/nut-2.7.4/drivers/nutdrv_qx.c:1000:19: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
upsdebug_hex(5, read, &buf[i], ret);
data/nut-2.7.4/drivers/nutdrv_qx.c:1007:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return (int)strlen(buf);
data/nut-2.7.4/drivers/nutdrv_qx.c:1239:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (qx_process(item, strlen(value) > 0 ? value : NULL)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1246:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(item->value) > 0) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1303:54: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upslogx(LOG_INFO, "%s(%s, %s)", __func__, varname, strlen(val) ? val : "[NULL]");
data/nut-2.7.4/drivers/nutdrv_qx.c:1305:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(val)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1325:40: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(value, "0123456789 .") != strlen(value)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1337:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(value)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1345:51: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (rvalue = item->info_rw; rvalue != NULL && strlen(rvalue->value) > 0; rvalue++) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1407:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(value)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1413:53: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (envalue = item->info_rw; envalue != NULL && strlen(envalue->value) > 0; envalue++) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1469:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (aux < (int)strlen(value)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1496:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (qx_process(item, strlen(value) > 0 ? value : NULL)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1503:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(item->value) > 0) {
data/nut-2.7.4/drivers/nutdrv_qx.c:1902:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/drivers/nutdrv_qx.c:2219:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (testing[i].answer_len > 0 && strlen(testing[i].answer) < (size_t)testing[i].answer_len) {
data/nut-2.7.4/drivers/nutdrv_qx.c:2358:52: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (envalue = item->info_rw; envalue != NULL && strlen(envalue->value) > 0; envalue++) {
data/nut-2.7.4/drivers/nutdrv_qx.c:2378:65: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upslogx(LOG_INFO, "%s, settable values:%s", item->info_type, strlen(buf) > 0 ? buf : " none");
data/nut-2.7.4/drivers/nutdrv_qx.c:2389:50: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (rvalue = item->info_rw; rvalue != NULL && strlen(rvalue->value) > 0; rvalue++) {
data/nut-2.7.4/drivers/nutdrv_qx.c:2529:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(previous_item.command) > 0 && strlen(previous_item.answer) > 0 && !strcasecmp(previous_item.command, item->command)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:2529:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(previous_item.command) > 0 && strlen(previous_item.answer) > 0 && !strcasecmp(previous_item.command, item->command)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:2534:38: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
retcode = qx_process_answer(item, strlen(item->answer));
data/nut-2.7.4/drivers/nutdrv_qx.c:2740:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(item->answer)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:2753:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd[command ? (strlen(command) >= SMALLBUF ? strlen(command) + 1 : SMALLBUF) : (item->command && strlen(item->command) >= SMALLBUF ? strlen(item->command) + 1 : SMALLBUF)];
data/nut-2.7.4/drivers/nutdrv_qx.c:2753:48: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd[command ? (strlen(command) >= SMALLBUF ? strlen(command) + 1 : SMALLBUF) : (item->command && strlen(item->command) >= SMALLBUF ? strlen(item->command) + 1 : SMALLBUF)];
data/nut-2.7.4/drivers/nutdrv_qx.c:2753:100: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd[command ? (strlen(command) >= SMALLBUF ? strlen(command) + 1 : SMALLBUF) : (item->command && strlen(item->command) >= SMALLBUF ? strlen(item->command) + 1 : SMALLBUF)];
data/nut-2.7.4/drivers/nutdrv_qx.c:2753:136: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
cmd[command ? (strlen(command) >= SMALLBUF ? strlen(command) + 1 : SMALLBUF) : (item->command && strlen(item->command) >= SMALLBUF ? strlen(item->command) + 1 : SMALLBUF)];
data/nut-2.7.4/drivers/nutdrv_qx.c:2806:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(value) > 0)
data/nut-2.7.4/drivers/nutdrv_qx.c:2813:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(value) > 0)
data/nut-2.7.4/drivers/nutdrv_qx.c:2828:41: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(value, "0123456789 .") != strlen(value)) {
data/nut-2.7.4/drivers/nutdrv_qx.c:2843:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(value)) {
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:342:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (i != 7 || strlen(refined) != 28) {
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:359:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(value)) {
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:521:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789 .") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:539:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789 ") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:563:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_bestups.c:633:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_blazer-common.c:194:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(value)) {
data/nut-2.7.4/drivers/nutdrv_qx_blazer-common.c:288:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
int delay = strlen(value) > 0 ? strtol(value, NULL, 10) : 600;
data/nut-2.7.4/drivers/nutdrv_qx_mecer.c:176:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(item->answer) || strcasecmp(item->answer, "(NAK\r")) {
data/nut-2.7.4/drivers/nutdrv_qx_mecer.c:237:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(value) != strspn(value, "0123456789")) {
data/nut-2.7.4/drivers/nutdrv_qx_mecer.c:242:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
test_time = strlen(value) > 0 ? strtol(value, NULL, 10) : 600;
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:268:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(token == 10 && strlen(refined) != 46) ||
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:269:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(token == 11 && strlen(refined) != 55)
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:351:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789ABCDEFabcdef ") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:367:55: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789ABCDEFabcdef") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:383:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789ABCDEFabcdef ") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:405:56: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789ABCDEFabcdef ") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic-qs-hex.c:424:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "01") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:1850:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:1975:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(value) != strspn(value, "0123456789")) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:1980:11: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
delay = strlen(value) > 0 ? strtol(value, NULL, 10) : 600;
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2495:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789 .") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2640:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strlen(from->info_rw[i].value))
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2653:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789 .") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2678:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789 .") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2729:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789 .") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2759:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789 .") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:2783:42: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value+2, "0123489") != strlen(item->value+2)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3195:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "01") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3201:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0") == strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3207:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; i < (int)strlen(item->value); i++) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3529:9: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(warns) > 0) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3549:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(warns) > 0) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3552:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(unk) > 0) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3568:13: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
} else if (strlen(unk) > 0) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3583:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((ST_MAX_VALUE_LEN - 32) > strlen(warns)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3678:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "01") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3854:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789 .") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3871:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0") == strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:3968:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789 .") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:4029:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; strlen(item->info_rw[i].value) > 0; i++) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:4072:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; strlen(item->info_rw[i].value) > 0; i++) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:4100:45: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strspn(item->value, "0123456789 .") != strlen(item->value)) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:4139:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (i = 0; strlen(item->info_rw[i].value) > 0; i++) {
data/nut-2.7.4/drivers/nutdrv_qx_voltronic.c:4167:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(item->value) != strspn(item->value, "0123456789")) {
data/nut-2.7.4/drivers/oneac.c:124:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buffer) < 2) {
data/nut-2.7.4/drivers/oneac.c:142:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buffer) < 3)
data/nut-2.7.4/drivers/oneac.c:236:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(UpsFamily, buffer, FAMILY_SIZE);
data/nut-2.7.4/drivers/oneac.c:360:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer2, buffer+82, 2);
data/nut-2.7.4/drivers/oneac.c:371:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer2, buffer+5, 10);
data/nut-2.7.4/drivers/oneac.c:415:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer2, buffer, 3);
data/nut-2.7.4/drivers/oneac.c:419:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer2, buffer+4, 3);
data/nut-2.7.4/drivers/oneac.c:422:4: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer2, buffer+8, 2);
data/nut-2.7.4/drivers/oneac.c:661:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer2, buffer+19, 4);
data/nut-2.7.4/drivers/oneac.c:732:6: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buffer2, buffer, 2);
data/nut-2.7.4/drivers/oneac.c:963:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(strlen(setvalue) == GETX_DATE_RESP_SIZE) /* yymmdd (6 chars) */
data/nut-2.7.4/drivers/optiups.c:136:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(150000);
data/nut-2.7.4/drivers/powerp-bin.c:235:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/drivers/powerp-bin.c:335:37: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(s, modeltab[i].val, strlen(modeltab[i].val))) {
data/nut-2.7.4/drivers/powerp-bin.c:430:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(200000);
data/nut-2.7.4/drivers/powerp-bin.c:579:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(200000);
data/nut-2.7.4/drivers/powerp-bin.c:586:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsdebug_hex(4, " \\_", powpan_answer, strlen((char *)powpan_answer));
data/nut-2.7.4/drivers/powerp-bin.c:592:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsdebug_hex(4, " \\_", powpan_answer, strlen((char *)powpan_answer));
data/nut-2.7.4/drivers/powerp-txt.c:102:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsdebug_hex(3, "send", command, strlen(command));
data/nut-2.7.4/drivers/powerp-txt.c:104:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/drivers/powerp-txt.c:111:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsdebug_hex(4, " \\_", powpan_answer, strlen(powpan_answer));
data/nut-2.7.4/drivers/powerp-txt.c:117:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
upsdebug_hex(4, " \\_", powpan_answer, strlen(powpan_answer));
data/nut-2.7.4/drivers/powerp-txt.c:391:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(200000);
data/nut-2.7.4/drivers/powerpanel.c:169:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(10000);
data/nut-2.7.4/drivers/powerpanel.c:177:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(10000);
data/nut-2.7.4/drivers/rhino.c:518:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep( UPSDELAY ); /* delay between sent command */
data/nut-2.7.4/drivers/rhino.c:530:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep( UPSDELAY ); /* 15 seconds delay */
data/nut-2.7.4/drivers/riello_ser.c:99:13: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
int now = read (upsfd, bytes, size - readen);
data/nut-2.7.4/drivers/riello_usb.c:80:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(usec);
data/nut-2.7.4/drivers/safenet.c:300:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/drivers/serial.c:275:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
return ser_send_buf_pace(fd, d_usec, buf, strlen(buf));
data/nut-2.7.4/drivers/serial.c:330:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(d_usec);
data/nut-2.7.4/drivers/snmp-ups.c:395:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_snmp_sess.community_len = strlen(community);
data/nut-2.7.4/drivers/snmp-ups.c:420:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
g_snmp_sess.securityNameLen = strlen(g_snmp_sess.securityName);
data/nut-2.7.4/drivers/snmp-ups.c:464:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(u_char *) authPassword, strlen(authPassword),
data/nut-2.7.4/drivers/snmp-ups.c:491:30: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
(u_char *) privPassword, strlen(privPassword),
data/nut-2.7.4/drivers/snmp-ups.c:681:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(buf, str, buf_len-1);
data/nut-2.7.4/drivers/snmp-ups.c:684:5: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120). Risk is low because the source is a
constant string.
strncpy(buf, "UNKNOWN", buf_len-1);
data/nut-2.7.4/drivers/solis.c:290:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((strlen(strx) != 5) || (sscanf(strx, "%d:%d", &hora, &min) != 2)) {
data/nut-2.7.4/drivers/tripplite_usb.c:317:21: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(len <= 0) len = strlen(str);
data/nut-2.7.4/drivers/tripplite_usb.c:337:2: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy((char *)buf, (const char *)start, (len < (sizeof buf) ? len : (sizeof buf - 1)));
data/nut-2.7.4/drivers/tripplite_usb.c:579:15: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
if(!done) { usleep(1000*100); /* TODO: nanosleep */ }
data/nut-2.7.4/drivers/tripplite_usb.c:723:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = send_cmd((unsigned char *)k_cmd, strlen(k_cmd) + 1, (unsigned char *)buf, sizeof buf);
data/nut-2.7.4/drivers/tripplite_usb.c:725:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = send_cmd((unsigned char *)k_cmd, strlen(k_cmd) + 1, (unsigned char *)buf, sizeof buf);
data/nut-2.7.4/drivers/tripplite_usb.c:736:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = send_cmd((unsigned char *)k_cmd, strlen(k_cmd) + 1, (unsigned char *)buf, sizeof buf);
data/nut-2.7.4/drivers/tripplite_usb.c:738:43: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = send_cmd((unsigned char *)k_cmd, strlen(k_cmd) + 1, (unsigned char *)buf, sizeof buf);
data/nut-2.7.4/drivers/tripplite_usb.c:826:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!strncmp(varname, "outlet.", strlen("outlet."))) {
data/nut-2.7.4/drivers/tripplite_usb.c:838:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(index_str, first_dot + 1, index_chars);
data/nut-2.7.4/drivers/tripplite_usb.c:945:12: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
model += strlen(hd->Vendor);
data/nut-2.7.4/drivers/tripplite_usb.c:952:26: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for(model_end = model + strlen(model) - 1;
data/nut-2.7.4/drivers/tripplitesu.c:229:64: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snprintf(buffer, sizeof(buffer), "~00%c%03d%s%s", type, (int)(strlen(command) + strlen(parameters)), command, parameters);
data/nut-2.7.4/drivers/tripplitesu.c:229:82: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snprintf(buffer, sizeof(buffer), "~00%c%03d%s%s", type, (int)(strlen(command) + strlen(parameters)), command, parameters);
data/nut-2.7.4/drivers/tripplitesu.c:342:3: [1] (buffer) strncpy:
Easily used incorrectly; doesn't always \0-terminate or check for invalid
pointers [MS-banned] (CWE-120).
strncpy(response, val, MAX_RESPONSE_LENGTH);
data/nut-2.7.4/drivers/tripplitesu.c:558:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(3E5);
data/nut-2.7.4/drivers/tripplitesu.c:562:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
i = strlen(response);
data/nut-2.7.4/drivers/upscode2.c:1082:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(buf) == 0) {
data/nut-2.7.4/drivers/upscode2.c:1151:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(var) == 0) {
data/nut-2.7.4/drivers/upscode2.c:1154:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(var) == 0) {
data/nut-2.7.4/drivers/upscode2.c:1162:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(val) == 0) {
data/nut-2.7.4/drivers/upscode2.c:1190:7: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(var) == 0)
data/nut-2.7.4/drivers/usb-common.c:225:23: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (len = 0; len < strlen(str); len++) {
data/nut-2.7.4/drivers/usb-common.c:235:14: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
for (len = strlen(string); len > 0; len--) {
data/nut-2.7.4/drivers/victronups.c:89:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep (UPS_DELAY);
data/nut-2.7.4/drivers/victronups.c:501:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(UPS_DELAY);
data/nut-2.7.4/drivers/victronups.c:539:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep (UPS_LONG_DELAY);
data/nut-2.7.4/drivers/victronups.c:541:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep (UPS_LONG_DELAY);
data/nut-2.7.4/drivers/victronups.c:544:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep (UPS_LONG_DELAY);
data/nut-2.7.4/drivers/victronups.c:547:2: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep (UPS_DELAY);
data/nut-2.7.4/server/netset.c:84:19: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (aux < (int) strlen(newval)) {
data/nut-2.7.4/server/sockdebug.c:93:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(fd, buf, sizeof(buf));
data/nut-2.7.4/server/sockdebug.c:161:29: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(sockfd, buf, strlen(buf));
data/nut-2.7.4/server/sockdebug.c:163:35: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((ret < 0) || (ret != (int) strlen(buf))) {
data/nut-2.7.4/server/sstate.c:146:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(ups->sock_fd, cmd, strlen(cmd));
data/nut-2.7.4/server/sstate.c:148:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret != (int)strlen(cmd)) {
data/nut-2.7.4/server/sstate.c:212:27: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(fd, dumpcmd, strlen(dumpcmd));
data/nut-2.7.4/server/sstate.c:214:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret != (int)strlen(dumpcmd)) {
data/nut-2.7.4/server/sstate.c:260:8: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(ups->sock_fd, buf, sizeof(buf));
data/nut-2.7.4/server/sstate.c:385:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
ret = write(ups->sock_fd, buf, strlen(buf));
data/nut-2.7.4/server/sstate.c:387:18: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (ret == (int)strlen(buf)) {
data/nut-2.7.4/server/upsd.c:326:8: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
len = strlen(ans);
data/nut-2.7.4/server/upsd.c:515:9: [1] (buffer) read:
Check buffer boundaries if used in a loop including recursive loops
(CWE-120, CWE-20).
ret = read(client->sock_fd, buf, sizeof(buf));
data/nut-2.7.4/server/upsd.c:635:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (strlen(pidfn) > 0) {
data/nut-2.7.4/server/upsd.c:933:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(optarg, "reload", strlen(optarg)))
data/nut-2.7.4/server/upsd.c:935:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(optarg, "stop", strlen(optarg)))
data/nut-2.7.4/server/user.c:422:36: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if ((arg[0][0] == '[') && (arg[0][strlen(arg[0])-1] == ']')) {
data/nut-2.7.4/server/user.c:424:10: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
arg[0][strlen(arg[0])-1] = '\0';
data/nut-2.7.4/tools/nut-scanner/nutscan-init.c:73:44: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(!strncmp(dirp->d_name, base_libname, strlen(base_libname))) {
data/nut-2.7.4/tools/nut-scanner/nutscan-serial.c:80:46: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if (!strncmp(port_name, SERIAL_PORT_PREFIX, strlen(SERIAL_PORT_PREFIX))) {
data/nut-2.7.4/tools/nut-scanner/scan_avahi.c:277:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_size = strlen(device)+strlen(host_name)+
data/nut-2.7.4/tools/nut-scanner/scan_avahi.c:277:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_size = strlen(device)+strlen(host_name)+
data/nut-2.7.4/tools/nut-scanner/scan_avahi.c:287:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_size = strlen(device)+strlen(host_name)+1+1;
data/nut-2.7.4/tools/nut-scanner/scan_avahi.c:287:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_size = strlen(device)+strlen(host_name)+1+1;
data/nut-2.7.4/tools/nut-scanner/scan_avahi.c:329:16: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_size = strlen(host_name)+strlen(buf)+1+1;
data/nut-2.7.4/tools/nut-scanner/scan_avahi.c:329:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_size = strlen(host_name)+strlen(buf)+1+1;
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:218:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(90000);
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:220:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(500000);
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:237:5: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(250000); /* 500000? */
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:257:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:311:6: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:364:3: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/tools/nut-scanner/scan_eaton_serial.c:368:4: [1] (obsolete) usleep:
This C routine is considered obsolete (as opposed to the shell command by
the same name). The interaction of this function with SIGALRM and other
timer functions such as sleep(), alarm(), setitimer(), and nanosleep() is
unspecified (CWE-676). Use nanosleep(2) or setitimer(2) instead.
usleep(100000);
data/nut-2.7.4/tools/nut-scanner/scan_nut.c:185:15: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_size = strlen(answer[1])+strlen(hostname)+1+1;
data/nut-2.7.4/tools/nut-scanner/scan_nut.c:185:33: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
buf_size = strlen(answer[1])+strlen(hostname)+1+1;
data/nut-2.7.4/tools/nut-scanner/scan_snmp.c:398:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snmp_sess->community_len = strlen(sec->community);
data/nut-2.7.4/tools/nut-scanner/scan_snmp.c:402:31: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snmp_sess->community_len = strlen("public");
data/nut-2.7.4/tools/nut-scanner/scan_snmp.c:427:32: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
snmp_sess->securityNameLen = strlen(snmp_sess->securityName);
data/nut-2.7.4/tools/nut-scanner/scan_snmp.c:490:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(sec->authPassword),
data/nut-2.7.4/tools/nut-scanner/scan_snmp.c:533:6: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
strlen(sec->privPassword),
data/nut-2.7.4/tools/nut-scanner/scan_xml_http.c:159:34: [1] (buffer) strlen:
Does not handle strings that are not \0-terminated; if given one it may
perform an over-read (it could cause a crash if unprotected) (CWE-126).
if(sendto(peerSocket, scanMsg, strlen(scanMsg), 0,
ANALYSIS SUMMARY:
Hits = 1715
Lines analyzed = 109780 in approximately 3.33 seconds (32974 lines/second)
Physical Source Lines of Code (SLOC) = 71992
Hits@level = [0] 1437 [1] 474 [2] 1055 [3] 20 [4] 164 [5] 2
Hits@level+ = [0+] 3152 [1+] 1715 [2+] 1241 [3+] 186 [4+] 166 [5+] 2
Hits/KSLOC@level+ = [0+] 43.7826 [1+] 23.8221 [2+] 17.238 [3+] 2.58362 [4+] 2.30581 [5+] 0.0277809
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.